Security

Security

Security

Your information is private. And it stays that way.

At Veault, safety isn't about vague marketing buzzwords, but about a fundamentally different approach: a zero-knowledge architecture where you're the only one who can access your data. Below, you can find out exactly how we technically achieve this.

About Image
About Image

Strong encryption

AES‑256 + PBKDF2 protect your safe from any form of access.

About Image

Strong encryption

AES‑256 + PBKDF2 protect your safe from any form of access.

Kies een sterk wacthwoord met Veault's wachtwoord tool
Kies een sterk wacthwoord met Veault's wachtwoord tool
Kies een sterk wacthwoord met Veault's wachtwoord tool

Zero-Knowledge

We can't see your data. Only you have the key.

About Image
About Image

Zero-Knowledge

We can't see your data. Only you have the key.

About Image

Why Veault is fundamentally safer

Most digital services store your data on their own servers — which means they can access it. Veault does things differently. Thanks to our zero-knowledge, self-sovereign architecture, we cannot technically access the contents of your vault. And that's exactly the point.

Veault Check

You always stay the owner

Veault Check

You always stay the owner

Veault Check

Only you have the password

Veault Check

Only you have the password

Veault Check

Your safe is encrypted right on your device

Veault Check

Your safe is encrypted right on your device

Veault Check

We only keep the encrypted file (without the key)

Veault Check

We only keep the encrypted file (without the key)

Why Veault is fundamentally safer

Most digital services store your data on their own servers — which means they can access it. Veault does things differently. Thanks to our zero-knowledge, self-sovereign architecture, we cannot technically access the contents of your vault. And that's exactly the point.

Veault Check

You always stay the owner

Veault Check

Only you have the password

Veault Check

Your safe is encrypted right on your device

Veault Check

We only keep the encrypted file (without the key)

Encryption

Encryption

Encryption

How your vault is technically secured

How your vault is technically secured

How your vault is technically secured

Everything happens locally on your device

You enter your details through the browser. That browser encrypts everything locally with a password that you choose yourself. So, your information never leaves your device without encryption.

Everything happens locally on your device

You enter your details through the browser. That browser encrypts everything locally with a password that you choose yourself. So, your information never leaves your device without encryption.

Everything happens locally on your device

You enter your details through the browser. That browser encrypts everything locally with a password that you choose yourself. So, your information never leaves your device without encryption.

Strong encryption

We use AES-256 encryption, a standard that's also used by governments for secret information.

Strong encryption

We use AES-256 encryption, a standard that's also used by governments for secret information.

Strong encryption

We use AES-256 encryption, a standard that's also used by governments for secret information.

Strong password protection

We use PBKDF2 with a high iteration count to slow down brute-force attacks. Your password is converted into a secret key that's impossible to guess — as long as it's chosen wisely.

Strong password protection

We use PBKDF2 with a high iteration count to slow down brute-force attacks. Your password is converted into a secret key that's impossible to guess — as long as it's chosen wisely.

Strong password protection

We use PBKDF2 with a high iteration count to slow down brute-force attacks. Your password is converted into a secret key that's impossible to guess — as long as it's chosen wisely.

No passwords sent

The password you choose to encrypt your Vault is never sent to our servers. Never. Period.

No passwords sent

The password you choose to encrypt your Vault is never sent to our servers. Never. Period.

No passwords sent

The password you choose to encrypt your Vault is never sent to our servers. Never. Period.

No passwords sent

The password you choose to encrypt your Vault is never sent to our servers. Never. Period.

0

%

Of your data gets encrypted locally before it reaches our servers.

0

%

Of your data gets encrypted locally before it reaches our servers.

0

%

Of your data gets encrypted locally before it reaches our servers.

0

bit AES encryption key (AES-256).

0

bit AES encryption key (AES-256).

0

bit AES encryption key (AES-256).

0

%

GDPR-compliant hosting on European servers.

0

%

GDPR-compliant hosting on European servers.

0

%

GDPR-compliant hosting on European servers.

0

Saved vault passwords. Not encrypted, not hashed. Only you know it.

0

Saved vault passwords. Not encrypted, not hashed. Only you know it.

0

Saved vault passwords. Not encrypted, not hashed. Only you know it.

What if…?

Veault is designed with the idea that anything can go wrong — except your privacy.


What if someone tries to break into our servers? We take our own security very seriously, but should someone gain access, they'll only find an encrypted file that's useless to them. Since the encryption happens entirely locally, your vault is completely unreadable without your password.


What if an employee has bad intentions? Even then, there's nothing to take. Our architecture prevents anyone — even internally — from having access to your data. We simply have no access.


And suppose a government forces us to release data? We hand over exactly what we have: an encrypted file without the key. Because we don't have your password and never store your data unencrypted, there's nothing we can give away. Even if we wanted to, it's technically impossible.

Veault Check

Break-in on our servers? Rest assured, no one can access your safe without your password.

Veault Check

Break-in on our servers? Rest assured, no one can access your safe without your password.

Veault Check

Malicious employees? Not possible — we can't technically access your data.

Veault Check

Malicious employees? Not possible — we can't technically access your data.

Veault Check

Request from the government? We can't hand over anything except encrypted, unreadable data.

Veault Check

Request from the government? We can't hand over anything except encrypted, unreadable data.

What if…?

Veault is designed with the idea that anything can go wrong — except your privacy.


What if someone tries to break into our servers? We take our security very seriously, but if someone does gain access, all they’ll find is an encrypted file they can't do anything with. Because the encryption happens entirely on your local device, your safe is completely unreadable without your password.


What if an employee has bad intentions? There’s nothing for them to take, either. Our architecture ensures that no one — not even internally — has access to your information. We simply don’t have access.


And what if a government demands we hand over data? We give exactly what we have: an encrypted file without a key. Since we don’t have your password and never store your data unencrypted, we can't disclose anything. Even if we wanted to, it’s technically impossible.

Veault Check

Break-in on our servers? Rest assured, no one can access your safe without your password.

Veault Check

Malicious employees? Not possible — we can't technically access your data.

Veault Check

Request from the government? We can't hand over anything except encrypted, unreadable data.

Our blog

Our blog

Our blog

How your vault is technically secured

What are passphrases and why are they better than passwords?

What makes a passphrase so secure? Discover why these clever password phrases are better than traditional passwords and how entropy ensures unbreakable protection for your digital life.

What are passphrases and why are they better than passwords?

What makes a passphrase so secure? Discover why these clever password phrases are better than traditional passwords and how entropy ensures unbreakable protection for your digital life.

What are passphrases and why are they better than passwords?

What makes a passphrase so secure? Discover why these clever password phrases are better than traditional passwords and how entropy ensures unbreakable protection for your digital life.

How Veault Truly Keeps Your Digital Legacy Safe: A Detailed Behind-the-Scenes Look

Discover how Veault truly secures your digital legacy. Learn about our zero-knowledge encryption, strong password protection, and layered security for complete peace of mind.

How Veault Truly Keeps Your Digital Legacy Safe: A Detailed Behind-the-Scenes Look

Discover how Veault truly secures your digital legacy. Learn about our zero-knowledge encryption, strong password protection, and layered security for complete peace of mind.

How Veault Truly Keeps Your Digital Legacy Safe: A Detailed Behind-the-Scenes Look

Discover how Veault truly secures your digital legacy. Learn about our zero-knowledge encryption, strong password protection, and layered security for complete peace of mind.

Show more

Show more

Show more

Your role in security

Veault is designed so that no one—not even us—can access your data. But that also means: you are the only one with the key. Therefore, choosing and storing a good password is crucial.


When you lock your vault, we default to suggesting a strong passphrase using the Diceware method. This is a series of random, recognizable words such as:

senator-ranging-curable-stylized-stove-swapping

Such a passphrase is a lot harder to guess than a normal password but much easier to remember. You don't need to remember strange symbols or capital letters—just six random words.

Would you prefer to choose your own password? You can do that. We’ll show you how strong your password is and provide tips to make it safer.

Once you lock your vault, all encryption happens on your device. Your data is secured before anything goes to our servers. And because we never see your password, we can never open your vault. Please note: this also means we can't reset your password if you forget it!

You can also download your vault as an encrypted file. That way, you'll always have your own copy, independent of our system.

Your role in security

Veault is designed so that no one—not even us—can access your data. But that also means: you are the only one with the key. Therefore, choosing and storing a good password is crucial.


When you lock your vault, we default to suggesting a strong passphrase using the Diceware method. This is a series of random, recognizable words such as:

senator-ranging-curable-stylized-stove-swapping

Such a passphrase is a lot harder to guess than a normal password but much easier to remember. You don't need to remember strange symbols or capital letters—just six random words.

Would you prefer to choose your own password? You can do that. We’ll show you how strong your password is and provide tips to make it safer.

Once you lock your vault, all encryption happens on your device. Your data is secured before anything goes to our servers. And because we never see your password, we can never open your vault. Please note: this also means we can't reset your password if you forget it!

You can also download your vault as an encrypted file. That way, you'll always have your own copy, independent of our system.

You know what matters to you. Now's the time to make sure it's safely recorded.

Start with your vault

You know what matters to you. Now's the time to make sure it's safely recorded.

Start with your vault

You know what matters to you. Now's the time to make sure it's safely recorded.

Start with your vault