End-to-end encrypted

Passwords that
stay yours.

A password manager where the server only sees ciphertext. Your master password never leaves your phone.

How it works

Built around one idea

You're the only one who should be able to read your vault.

End-to-end encrypted
AES-GCM with keys derived from your master password locally. The server stores opaque blobs.
Biometric unlock
Face ID or Touch ID after the first unlock. Master password only needed on new devices.
Cross-device sync
Sign in on any device with email and master password. Same vault, instantly.
No tracking
No analytics, no ads, no tracking pixels. Just your vault and a sync server.

The server never sees your secrets

Your master password derives an encryption key on your device using PBKDF2. The vault is encrypted with AES-GCM before it ever leaves your phone. Even a full server breach would leak only ciphertext.

PBKDF2-SHA256 AES-GCM-256 Argon2 (roadmap) Zero-knowledge sync