PRIVAULT

Zero-Knowledge Document Vault

Your Files,
Your Rules

Not Google Drive. Not Dropbox. A vault where files are encrypted before they ever leave your browser. Even we can't peek.Hack our server. You'll find nothing but gibberish.

Create Vault

Try to Break In↓

PDF

contract.pdf

2.3 MB - Encrypted

DOC

research-notes.docx

Updated 2h ago

PDF

startup-plan.pdf

Secure

XLS

financial-report.xlsx

1.1 MB

IMG

passport-scan.jpg

Encrypted

Scroll

100

SERVER FILE ACCESS

100

SERVER KEY ACCESS

AES-0

DOCUMENT ENCRYPTION

RSA-0

VAULT PROTECTION

Core Mission

We built the vault that cannot be opened. Not by us. Not by hackers. Not by governments.

Founded in 2026, Privault exists because "trust us" is not a security model. Every file is encrypted with AES-256-GCM in your browser before transmission. Your RSA-2048 private key never reaches our servers. Your password derivations use independent salts so auth and encryption stay separate. No backdoors. No recovery emails. No exceptions.

Start encrypting today→

The Challenge

We dare you to break in.

Most security products ask you to trust their word. We're asking you to try your luck.

Step 01

Upload a sensitive file

A contract. A passport scan. Your startup's financials. Something you'd never want leaked.

YOU GET THIS

Step 02

We'll give you DB access

We'll literally hand you a dump of our database. No redactions. No excuses.

Step 03

Try to read your file

Go ahead. Run it past every cryptoanalyst you know. All you'll find is AES-256-GCM ciphertext and wrapped keys that only exist in your browser's memory.

Still not convinced? Every line of code is open for inspection.

GitHub→

Specifications

Your Vault,
Your Keys

Every locking operation happens seamlessly inside your browser. Your master password never leaves your device, keeping you in complete control. It's private document storage that feels simple.

Create Secure Vault

Not Even We Can Read Them

Your files are locked in your browser before touching our servers. A subpoena? A hack? Doesn't matter. There's nothing to seize.

No Backdoors. No Exceptions.

Every line of crypto runs in your browser using standard Web Crypto APIs. We can't add a backdoor even if we wanted to — your keys never reach us.

Share Without Trusting

Share links where the decryption key lives in the URL fragment. It never touches our servers. Expire them. Limit downloads. Stay in control.

Your Password Is The Only Key

Forget your password? Your data is gone forever. That's not a bug — that's the whole point. If we could recover it, so could an attacker.

Cryptographic Strategies

Simple concepts, robust
protection across all your documents.

Strategy 01

Encrypt Before Upload

AES-256-GCM locks every file in your browser before a single byte leaves for our server. We store ciphertext. That's it.

Strategy 02

Every File Gets Its Own Key

A unique Data Encryption Key (DEK) is generated per file, then wrapped with your RSA-2048 public key. One leaked key = one file, not your whole vault.

Strategy 03

Dual-Path Password Derivation

Your password derives two independent secrets via PBKDF2 with separate salts. Compromising the auth path doesn't touch your encryption keys.

Strategy 04

Session Tokens, Not JWTs

No JWT signing. Login creates a random 32-byte token, SHA-256 hashed before storage. If our DB leaks, sessions can't be forged.

FAQ

Frequently Asked Questions

ENCRYPTED

Get Started

Stop trusting.
Start proving.

Create your vault in seconds. No credit card. No tracking. No "we take your privacy seriously" marketing fluff. Just encryption that actually works the way you think it does.

Create Your Vault

Your Files,Your Rules