A document vault you pay once for. No subscriptions. No email collection. AES-GCM-256 encryption that means we genuinely can't read your files.
File contents are encrypted in your browser with AES-GCM-256 before upload. Your encryption key is derived from your recovery key β we never see it, never store it. Filenames and tags stay readable so search works (we're upfront about that below).
Authentication is a 16-digit recovery key, Mullvad style. We don't ask for your email at signup. We don't track you. We can't identify you to anyone.
We promise at least 5 years of storage from purchase, and our intent is to keep going at no additional cost to existing customers beyond that. If we ever wind down, you get 90 days notice and a one-click export. No "lifetime" claims we can't back up.
From purchase to encrypted upload in under five minutes.
Pay $29, $59, or $99 once. After purchase we show you a 16-digit recovery key β exactly once. Save it in a password manager.
Enter your recovery key to unlock the vault. Drag in PDFs and text files. Your browser encrypts them locally before sending β we only ever see ciphertext.
Tag, search, set review reminders. Download decrypts files in your browser. Export all your files anytime with a one-click zip.
A document moves from your browser to our servers β but only the encrypted version ever reaches us.
Your file is encrypted with AES-GCM-256 in your browser before it leaves. The server only ever sees ciphertext β we never hold the key.
Most "encrypted" cloud storage products encrypt your files after they're uploaded β meaning the company holds the keys and could technically decrypt your files if compelled.
We don't hold the keys. Your AES-GCM-256 encryption key is derived from your recovery key inside your browser, using PBKDF2-SHA256 with 600,000 iterations (the OWASP-recommended minimum). The derived key never leaves your device. The server stores ciphertext only.
If a court orders us to decrypt your files, we mathematically cannot comply β we don't have what we'd need to. This is the same model used by Bitwarden, Mullvad, and Proton.
Most cloud storage is a subscription that deletes your files if you stop logging in. We built the opposite.
| Vault | Google Drive | Dropbox | iCloud | |
|---|---|---|---|---|
| Pay once, no subscription | Yes | Subscription | Subscription | Subscription |
| Files kept even if you go inactive | Yes | Deleted after 2 yrs | Deleted after inactivity | Tied to active account |
| Encrypted in your browser before upload | Yes | No | No | No |
| No email or name required to sign up | Yes | Required | Required | Required |
| Provider can't read your file contents | Yes | Can access | Can access | Can access* |
| Published shutdown & data-export commitment | Yes | No | No | No |
Comparisons reflect each provider's standard consumer plans and publicly stated policies as of mid-2026. Google may delete personal accounts inactive for 2 years; Dropbox closes and deletes inactive accounts after notice. *Apple offers Advanced Data Protection as an opt-in for some iCloud categories, but it's off by default and excludes several data types. Policies change β verify current terms with each provider.
No subscriptions. No tier upgrades pestering you. Buy what you need, that's it.
We use Stripe to handle payments. Stripe collects your card details and email for their own records; we never see either. After payment, you land directly on our domain to receive your recovery key β it never appears in any email. Additional checkout options may follow once we've validated this one.