Kaizen Vault
Privacy
Your vault contents never leave your device. We only hold what is needed to sign you in and to pass an encrypted share between two people for a short time.
What stays on your device
- Every login, note, card, API key, and authenticator code.
- Your master PIN and every key derived from it.
- The trusted contacts you have verified.
What the server holds
- Your email and account status, so we can sign you in.
- One-way hashes of sign-in tokens, never the tokens themselves.
- Your public identity keys, so other people can encrypt a share to you.
- An encrypted share, for at most 24 hours, until the recipient opens it or the link expires. We cannot read it.
What we never do
- No analytics, attribution, or crash-reporter tools.
- No third-party trackers.
- No selling your data. There is nothing useful to sell.
Delete your data
Use Settings then Wipe vault to destroy local data and release the server-side device binding. To remove your account on the server, email privacy@kaizenstudio.tech.