Data is encrypted/decrypted in the browser using AES256-GCM, PBKDF2 for key derivation. 2FA only supports Time-based One-time Password (TOTP). No library, no dependency, works offline.