Home / Safety & Legal
Safety & Legal
Only test things you own or are explicitly authorized to test.
Reading, writing, scanning, or probing devices, tags, networks, or locks you don't own can be illegal and harmful.
The agreement in the app
Before any hardware tool unlocks, Fin asks you to accept a short, plain-English agreement: that you will only test what you own or are authorized to test. Hardware tools stay blocked until you accept, and the acceptance is stored locally.
What Fin will not do
- It won't clone or emulate real access cards, transit cards, hotel keys, or payment cards.
- The HCE demo uses a private toy AID and a clearly-labelled “learning” credential only.
- The NFC reader inspects tag structure; it is not a generic APDU attack console.
- BLE scanning never connects or pairs, and never runs in the background.
- Wi-Fi diagnostics never attempt to crack passwords or bypass Android's scan limits.
- The door-lock tool is a self-audit — it never touches a real lock.
Hidden-device awareness: stay grounded
The privacy sweep is awareness tooling, not a guaranteed detector. A magnetometer spike is not proof of hidden electronics, phone cameras may filter infrared, and BLE/Wi-Fi signals can come from neighboring rooms. Fin is deliberately careful not to encourage paranoia or draw definitive conclusions from weak signals.