Frequently Asked Questions

Answers to common questions about FactorCat — accounts, security, vaults, billing, and troubleshooting.

Updated

Account & Sign-in

How do I create an account?

Download FactorCat on your phone (iOS or Android), then sign in with Google, Apple, or email. You can also sign up from the web dashboard. Your account is created automatically on first sign-in.

Can I sign in with multiple methods?

Yes. If you sign in with Google and later sign in with Apple using the same email address, FactorCat links both to the same account. You can use either method going forward.

How do I connect my phone to my browser?

Install the FactorCat browser extension, then either sign in with the same account on both devices (automatic linking) or scan a pairing QR code from the extension with your phone. See How It Works for a walkthrough.

Security Model

Can FactorCat see my Locked Vault factors?

No. Locked Vaults use zero-knowledge encryption — your master key is generated on your phone and never leaves your device. FactorCat’s servers store encrypted data but cannot decrypt it. Only someone with your master key can access your Locked Vault factors.

Are Cloud Vault factors secure?

Yes. Cloud Vault factors are encrypted at rest and only accessible to authenticated sessions. The difference from Locked Vault is that FactorCat manages the encryption keys, which allows features like automatic recovery, web dashboard access, and server-side TOTP generation for the approval flow.

How does the approval flow work?

When the browser extension needs an MFA code, it sends a push notification to your phone. You tap Approve, and the code is filled automatically. If someone has your password but not your phone, they can’t get the code. See How the approval flow works for details.

Cloud Vault vs Locked Vault

What’s the difference between Cloud Vault and Locked Vault?

Cloud Vault — FactorCat manages the encryption keys. Your factors sync across devices automatically, recover on sign-in, and work with the web dashboard TOTP viewer. Secure and convenient for most accounts.

Locked Vault — You hold the encryption key (your master key). FactorCat cannot decrypt your factors. Recovery requires your 12-word recovery phrase or QR code. Best for high-security accounts where you want zero-knowledge encryption.

Both vault types are free. You can have factors in both at the same time.

What happens if I lose my phone?

Cloud Vault factors are safe — sign in on a new device and they’re available immediately.

Locked Vault factors have two safety nets. First, your phone’s OS backup (iCloud Keychain or Google Backup) likely includes your master key — restoring to a new device usually just works. Second, if you saved your recovery phrase or QR code, you can enter it on any new device to restore your vaults.

If your OS backup fails and you didn’t save your recovery key, Locked Vault factors cannot be recovered. FactorCat uses zero-trust encryption — we never had your master key, so there is no reset or backdoor. This is the cost of zero-trust security, and it’s how most phone-based authenticators work. See Emergency Kit & Recovery for the full recovery process and how to protect yourself.

Can I move a factor between vault types?

Yes. On the mobile app, open a factor, tap Move to vault, and choose the target vault. You can move factors in any direction — Cloud to Locked, Locked to Cloud, or between vaults of the same type. The factor is re-encrypted for the target vault automatically.

Moving a factor from Locked Vault to Cloud Vault means FactorCat will manage its encryption key going forward. Moving from Cloud to Locked means only your master key can decrypt it. The app makes this clear during the move.

Do I need a Locked Vault?

Not necessarily. Cloud Vault is secure and convenient for most people. Locked Vault is for users who specifically want zero-knowledge encryption — meaning FactorCat has no technical ability to access their factors, even under a court order or data breach.

If you’re not sure, start with Cloud Vault. You can always move individual factors to a Locked Vault later.

Pricing & Billing

Is FactorCat free?

Yes. The free tier includes up to 50 factors across Cloud and Locked Vaults, the approval flow, browser auto-fill, and cloud multi-device sync. Most personal users will never hit the cap.

What does Pro include?

Pro unlocks unlimited factors, multiple Locked Vaults, full anonymous link sharing (multiple factors per link, configurable expiry, vault-aware approval), and early access to new features. Supporter includes limited anonymous link sharing (1 factor, 7-day expiry). See Pricing for details.

What is the Supporter tier?

Supporter is a voluntary contribution that helps sustain development. Supporters get a badge and access to anonymous link sharing for one factor at a time. It’s not required — think of it as buying the developer a coffee, monthly.

Browser Extension

Which browsers are supported?

Chrome is supported at launch. Firefox support is coming a few weeks after public launch.

Does the extension store my factors?

No. The extension never holds TOTP secrets. It requests codes through the approval flow (phone push) or from the server (for Cloud Vault factors with approval disabled). The extension is a display and auto-fill surface, not a secret store.

Mobile App

Do I need the mobile app?

For the full experience, yes. The mobile app generates and stores your master key (for Locked Vaults), handles approval notifications, and is where you add new factors via QR scanning. You can use the web dashboard without the mobile app, but approval-based auto-fill requires it.

Can I use FactorCat without an account?

Yes. The mobile app works as a standalone authenticator without signing in — your factors are stored locally on your device. To sync across devices, use the browser extension, or access the web dashboard, you need to sign in.

Common Problems

Push notifications aren’t working

Make sure notifications are enabled for FactorCat in your phone’s settings. On iOS, check Settings > Notifications > FactorCat. On Android, check Settings > Apps > FactorCat > Notifications. If notifications are enabled but still not arriving, try force-closing and reopening the app.

Approval timed out

If the approval notification doesn’t arrive or you don’t respond in time, the behavior depends on your vault settings. Cloud Vaults set to “Required unless offline” will fall back to server-generated codes automatically. Cloud Vaults set to “Always required” will fail. You can adjust this per vault in Settings > Vaults. See Security Model for details.

The extension isn’t detecting MFA fields

The extension detects standard TOTP input fields. Some sites use non-standard implementations that may not be detected automatically. You can always open the extension popup and copy the code manually. If a specific site consistently isn’t detected, let us know.

Data, Privacy & Deletion

What data does FactorCat collect?

FactorCat stores your account info (email, OAuth provider), vault metadata (vault names, factor names, domains), and encrypted factor secrets. For Cloud Vaults, FactorCat manages the encryption keys. For Locked Vaults, only you hold the key. See our Privacy Policy for the complete picture.

How do I delete my account?

Go to Settings > Account > Delete Account in the mobile app or web dashboard. This permanently deletes your account, all vaults, all factors, and all associated data. This action cannot be undone. You can also request deletion at www.factorcat.com/delete-account.

Secure your accounts with FactorCat

Auto-fill MFA codes in your browser. Free for up to 50 factors.

Get started free See platforms