A credential vault encrypted on your device with AES-256-GCM. We host the ciphertext — only you hold the key.
Even with full database access, your secrets remain mathematical noise.
Authenticated symmetric encryption. Every secret tamper-evident, even from us.
Memory-hard key derivation. Your master password is never transmitted.
Server only ever stores ciphertext. Decryption happens exclusively on your device.
Argon2id derives a 256-bit key. Your password never leaves the device.
Each secret gets a unique IV and is sealed with AES-256-GCM in your browser.
Only the encrypted blob travels to our servers. Even we see nothing.
Copied secrets vanish from your clipboard after 12 seconds.
Cryptographic randomness, configurable charset, instantly stored.
Vault re-locks after inactivity. No persistent plaintext, ever.
Encrypted blob syncs everywhere. Decrypt only on trusted devices.