How Veault Truly Keeps Your Digital Legacy Safe: A Detailed Behind-the-Scenes Look

How Veault Truly Keeps Your Digital Legacy Safe: A Detailed Behind-the-Scenes Look

We understand that arranging your digital legacy is a deeply personal and sensitive matter. When it comes to your most valuable information – from your online banking to cherished family photos and personal messages – you want absolute certainty that everything is kept safe, private, and exactly according to your wishes. At Veault, this is at the heart of our mission. We're here not just to help you organize; we're here to secure.


Your Privacy, Our Foundation: The Zero-Knowledge Principle

The backbone of Veault's security is our 'zero-knowledge' principle. This is more than just a feature; it's an architectural choice that guarantees your privacy from the moment you start filling your Veault.


What does this mean? It means that all the information you input is encrypted directly on your own computer. This encryption occurs with a password that you choose and never share. Only after your data is locally transformed into unreadable code on your device is this encrypted file sent to our servers.


The crucial consequence of this is that we, the Veault team, can never view your unencrypted data. We don't have your password, and under no circumstances can we decipher your information. The security is based on cryptography that enforces this, not on a promise. You maintain full and exclusive control over your data. Moreover, you always have the option to download your own encrypted Veault file, so you have a permanent offline copy.


The Digital Vault: State-of-the-Art Encryption

To transform your Veault into an impenetrable digital vault, we utilize the most advanced and globally recognized encryption technologies:


  • AES-256-GCM for Confidentiality and Integrity: For encrypting your data, we apply the Advanced Encryption Standard (AES) with a 256-bit key in Galois/Counter Mode (GCM). This is the absolute gold standard in symmetric encryption and is used worldwide by governments, financial institutions, and security organizations for their most sensitive information. The 256-bit key length makes the encryption virtually unbreakable with current computer power. GCM also ensures that the data not only remains secret but also allows us to verify if the data has been altered during transit or storage, guaranteeing that your encrypted Veault file is exactly as you stored it.

  • PBKDF2 for Ironclad Password Protection: Your chosen password is never directly used as an encryption key. Instead, we use PBKDF2 (Password-Based Key Derivation Function 2). This is a robust technique that converts your password, through a highly computationally intensive process involving up to 500,000 iterations, into a cryptographically strong key. This process makes it extremely difficult for attackers to guess your password through brute force attacks, even if they were to get hold of the encrypted file. Additionally, a unique, random 'salt' is added to each encryption, ensuring that even identical passwords result in completely different encryptions.

  • Total Randomness and Control: For crucial parts of the encryption, such as the 'salt' and 'Initialization Vector' (IV), we generate cryptographically safe random numbers. This ensures that each encryption is unique and unpredictable, which is essential for the strength of the algorithms used.

  • Storage Within the European Union: Your encrypted Veault is stored on servers strategically located within the European Union. These comply with the strictest European privacy regulations, such as the GDPR (General Data Protection Regulation).


Multilayer Protection: A Line of Defense Around Your Veault

Veault's security is not limited to encrypting your data. We apply a 'Defense-in-Depth' strategy, which means we implement multiple, independent security layers to create a robust line of defense:


  • Secure in Your Browser: The Veault application is built so that it only communicates with trusted sources. This helps prevent malicious code from entering your browser.

  • No Harmful Code Through Input: Everything you fill out in your Veault is thoroughly checked and 'cleaned' before being processed. This ensures that no one can issue harmful instructions through entered text.

  • The 'Data Endowment Model': A portion of your one-time purchase is allocated to our specially set-up fund. This fund is intended to cover the costs of securely maintaining your Veault online for decades. It demonstrates our commitment to the long-term care of your data.


What Does This Mean for You?

All these technical layers and principles boil down to one essential goal: peace of mind. You can use Veault knowing that your valuable and personal information is protected with leading security. We take the heavy technical work off your hands, so you can focus on recording your wishes, your life story, and those important messages for your family.


At Veault, we believe in full transparency and giving control to you. Your digital legacy deserves the very best protection, and that's exactly what we offer with Veault.


For those who want to dive deeper into the architecture, the cryptographic details, and all other security measures, we have an extensive whitepaper available. This paper delves deep into the technical aspects and our philosophy.

Blogs and articles

Blogs and articles

Blogs and articles

Check out our other blogs

'I wasn't grieving, I was a full-time manager of my father's life'

When Chantal's (46) father passed away, she thought the tears would be the hardest part. But no, her days were mostly filled with being on hold, tracking down customer numbers, and filling out forms.

'I wasn't grieving, I was a full-time manager of my father's life'

When Chantal's (46) father passed away, she thought the tears would be the hardest part. But no, her days were mostly filled with being on hold, tracking down customer numbers, and filling out forms.

'I wasn't grieving, I was a full-time manager of my father's life'

When Chantal's (46) father passed away, she thought the tears would be the hardest part. But no, her days were mostly filled with being on hold, tracking down customer numbers, and filling out forms.

Eva: I had received the key to Jeroen's digital life. But the doors remained closed.

Eva (52) believed her husband had everything perfectly organized. He left her one password for all accounts. Convenient, she thought. Until she discovered that this golden key was more like an entrance to a maze.

Eva: I had received the key to Jeroen's digital life. But the doors remained closed.

Eva (52) believed her husband had everything perfectly organized. He left her one password for all accounts. Convenient, she thought. Until she discovered that this golden key was more like an entrance to a maze.

Eva: I had received the key to Jeroen's digital life. But the doors remained closed.

Eva (52) believed her husband had everything perfectly organized. He left her one password for all accounts. Convenient, she thought. Until she discovered that this golden key was more like an entrance to a maze.

You know what matters to you. Now's the time to make sure it's safely recorded.

Start with your vault

You know what matters to you. Now's the time to make sure it's safely recorded.

Start with your vault

You know what matters to you. Now's the time to make sure it's safely recorded.

Start with your vault