> ## Documentation Index
> Fetch the complete documentation index at: https://docs.anchorage.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Key download preferences

> Control when and how you download private keys or recovery materials from Porto.

Porto allows authorized users to download private keys, recovery seeds, and other sensitive recovery materials. Key download preferences let you control where downloads are allowed and add restrictions based on your organization's security policies.

## Why download keys

You might download keys for:

* **Backup security** — Keep a secure offline copy of your recovery materials
* **Emergency access** — Regain access to your wallets if Porto becomes unavailable
* **Wallet migration** — Move assets to another custody provider or self-custody
* **Compliance** — Some organizations require proof of key export for audit purposes

## Key download settings

<Steps>
  <Step title="Open settings">
    From the home screen, tap **Settings**.
  </Step>

  <Step title="Select security or recovery">
    Navigate to **Security**, **Recovery**, or **Key management**.
  </Step>

  <Step title="Find key download preferences">
    Look for **Key download preferences**, **Export settings**, or **Recovery material downloads**.
  </Step>

  <Step title="Review current preferences">
    You'll see:

    * Whether key downloads are enabled for your account
    * Restrictions (device type, network requirements, approval needs)
    * Download history showing when keys were last exported
  </Step>

  <Step title="Adjust settings (if permitted)">
    If your role allows it, you can modify who can download keys and what restrictions apply.
  </Step>
</Steps>

## Download restrictions

Your organization may have set restrictions on key downloads:

| Restriction                | Meaning                                                           | Use case                                               |
| :------------------------- | :---------------------------------------------------------------- | :----------------------------------------------------- |
| **Device-only**            | Keys can only be downloaded to specific registered devices        | High security — limit downloads to known devices       |
| **Administrator approval** | Downloading keys requires an approver to authorize it             | Compliance — audit trail of who accessed keys and when |
| **Network restrictions**   | Keys can only be downloaded from certain IP addresses or networks | Security — prevent downloads from public Wi-Fi         |
| **Time-based**             | Downloads are only allowed during certain hours or days           | Operational security — restrict to business hours      |
| **One-time download**      | Recovery materials can only be downloaded once                    | Maximum security — force users to store them safely    |

If your organization has set restrictions, you'll see them listed in your key download settings.

## Download recovery materials

<Steps>
  <Step title="Open security settings">
    From the home screen, tap **Settings** > **Security**.
  </Step>

  <Step title="Select export or download keys">
    Look for **Download recovery codes**, **Export keys**, or **Backup recovery materials**.
  </Step>

  <Step title="Review what will be downloaded">
    You'll see what materials will be included:

    * Recovery seed phrase (for wallet recovery)
    * Private keys (for emergency wallet access)
    * Account recovery codes
    * Other sensitive materials
  </Step>

  <Step title="Check restrictions">
    Confirm any restrictions are met (correct device, network, time of day).
  </Step>

  <Step title="Request approval (if needed)">
    If your organization requires approvals, submit a request and wait for an approver to authorize the download.
  </Step>

  <Step title="Complete biometric authentication">
    Tap **Authenticate** and complete Face ID or Touch ID to authorize the download.
  </Step>

  <Step title="Save securely">
    The file will download as an encrypted PDF or text file. Save it to a secure location immediately.
  </Step>
</Steps>

<Warning>
  Downloaded recovery materials are extremely sensitive. Anyone with access to these files can potentially access your wallets. Store them:

  * In a safe or safety deposit box (printed copies)
  * In encrypted cloud storage with strong authentication
  * On an encrypted USB drive kept in a secure location
  * Never share or screenshot these materials
</Warning>

## Temporary download allows

If your organization has strict download restrictions, you may be able to request temporary permission to download keys:

<Steps>
  <Step title="Request temporary access">
    Go to **Settings** > **Key download preferences** and select **Request temporary download**.
  </Step>

  <Step title="Explain your need">
    Provide a reason for the download (backup, emergency, migration, etc.).
  </Step>

  <Step title="Wait for approval">
    An approver will review and authorize your request. You'll be notified when approved.
  </Step>

  <Step title="Download within the time window">
    If approved, you'll have a limited time window (usually 24-72 hours) to download your keys.
  </Step>

  <Step title="Access expires">
    After the time window closes, the download permission automatically expires for security.
  </Step>
</Steps>

## Download history

You can view when recovery materials have been downloaded:

1. **Open settings** — Go to **Settings** > **Security** > **Key download preferences**
2. **View download log** — Check the "Download history" section to see:
   * When downloads occurred
   * Which user downloaded (if applicable)
   * What materials were downloaded
   * From which device or IP address

This audit trail helps you detect suspicious activity.

## Preventing unauthorized downloads

If key downloads are a security concern for your organization:

* **Enable approvals** — Require admin approval for all key downloads
* **Restrict to specific devices** — Only allow downloads from designated secure devices
* **Disable downloads entirely** — Some organizations turn off key downloads to prevent keys ever leaving the system
* **Time-based windows** — Allow downloads only during specific times when you can monitor activity

Contact your organization's administrator to configure these settings.

## If you need to download keys

If you need to download private keys or recovery materials:

1. **Check your permissions** — Confirm your role allows key downloads
2. **Verify restrictions** — Ensure you meet any organizational restrictions
3. **Request approval if needed** — Submit a request and wait for authorization
4. **Use a secure device** — Download to a trusted, secure device
5. **Store immediately** — Move the files to secure offline storage right away
6. **Delete from the device** — Remove the downloaded files from your device once stored

## Emergency access without keys

If you lose your recovery keys and need to access your wallets:

1. **Use Porto normally** — Your vaults and wallets remain accessible through the Porto app
2. **Request key restoration** — Ask your organization's administrator for help recovering keys
3. **Use the organization recovery document** — If available, this can help restore access
4. **Contact Porto support** — For technical assistance with account recovery
