Security and privacy

How 1Password protects your privacy when downloading icons

1Password doesn’t collect any information when it downloads icons for your websites and software licenses.

The AgileBits image server

When 1Password wants to display on image or icon associated with a particular Login, it needs to have an image to display. Our Rich Icons server provides a store of these curated icons. There are hundreds of thousands of images (that’s counting several sizes per image) comprising gigabytes of data.

If you enable Rich Icons, 1Password will attempt to fetch icons from on Cachefly or on CloudFront depending on which version of 1Password you are using.

When you first start using 1Password on a new device, it may make many connections to one of those caching front-end servers for our Rich Icons. 1Password may try to fetch the icons needed for all of your Logins and Software licenses you have within your 1Password vaults.

Protecting your privacy

Our principle of Privacy by Design means that we do not want to know what Logins and Software Licenses you have in 1Password. We cannot lose, use, or abuse information that we don’t have. Nor do we have to worry about protecting sensitive data if we never have that data to protect. Thus we have set up our Rich Icons service to collect as little data as possible.

Because we use front-end caches, the actual connections to our servers all come from the caching front ends. Our servers do not see most of the requests, and the ones that we do see do not reveal the address of the originating request. We have also specifically configured our servers and caching to not log any information which could connect a request for an icon to a specific person or computer.

What we do collect

We do have logs (without meaningful IP addresses) of queries that are effectively cache misses on the CacheFly or CloudFront front end, and so we see what is being requested that isn’t on the server. We also know (because we are billed for the traffic) how much data is served over time.

We do not see the IP addresses for any connection, and, again, we only log “misses” without IP address. Logging the misses helps us see what images need to be added. Lastly, we receive direct feedback that also helps us fine tune things.

What we could collect

Our lack of data collection for Rich Icons is something that, in theory, we could silently change at our end. It is also something that you just have to take our word for. That is, we have no way to demonstrate to you that we aren’t collecting such data. To be very clear: we are not collecting any data on how anybody uses 1Password, but we are not in a position to say that it would be impossible for us to collect such data if we were compelled to. We want that fact to be transparent. We understand that until and unless this changes, some people may opt to turn Rich Icons off.

Toggling Rich Icons

  • 1Password for Mac: Preferences > General > “Show rich icons”

  • 1Password for iOS: Settings > General > “Show Rich Icons”

  • 1Password for Windows: Settings > General > “Use rich icons”

  • 1Password for Android: Settings > Display > “Show rich icons”

One thing to keep in mind when you make your decision is that someone in a position to capture information from your use of Rich Icons is almost certainly in a position to capture what websites you visit (including when you do so) without enabling Rich Icons. But we think the choice should ultimately be up to you.