VaultKeep Privacy Policy
Effective date: May 22, 2026
Last updated: May 22, 2026
VaultKeep ("we", "us", "the app") is published by Cloakware. This policy explains what data the app handles, what it does not, and the rights you have over your data. VaultKeep is designed with one principle: your files are yours alone.
1. DATA WE COLLECT: None.
VaultKeep does not collect, store, transmit, or share any personal data, files, contact info, identifiers, location, device IDs, account info, usage analytics, or metadata. There are no user accounts and no sign-in.
2. INTERNET ACCESS: None.
VaultKeep has no INTERNET permission in its Android manifest. The app is technically incapable of transmitting any data off your device. You can verify this on the Play Store listing or by inspecting the installed APK.
3. ENCRYPTION.
All vault files are encrypted on-device using AES-256-GCM with keys generated and protected by the Android Keystore (hardware-backed where the device supports it). The encryption key never leaves your device. We do not have any copy of your data or your keys, and we cannot decrypt your vault.
4. ANALYTICS, ADS, AND CRASH REPORTING: None.
VaultKeep contains no analytics SDK, no advertising SDK, no crash reporting SDK, and no third-party tracking libraries of any kind.
5. PERMISSIONS WE REQUEST AND WHY.
- Photos and videos (READ_MEDIA_IMAGES /
READ_MEDIA_VIDEO, or READ_EXTERNAL_STORAGE
on Android 12 and below): used only to let
you import the photos or videos you pick.
The library is never scanned automatically
or in the background.
- Camera (CAMERA): used only when you tap
"Scan document" so VaultKeep can capture an
image you choose to store. No photos are
taken in the background.
- Biometric / fingerprint (USE_BIOMETRIC,
USE_FINGERPRINT): used only to unlock the
app when you have enabled biometric unlock.
No biometric data leaves your device; the
OS performs the match.
- Google Play Billing (com.android.vending.
BILLING): used only to process the optional
one-time "VaultKeep Pro" purchase. This is
an Android IPC API to the installed Play
Store app and is not an internet permission.
Purchase processing is handled by Google
under Google's privacy policy.
6. FILES ACCESS.
Documents (PDF, Office, text, etc.) are accessed
only when you select them using Android's built-
in file picker. VaultKeep imports an encrypted
copy into private app storage. You can choose to
delete the original from where you picked it; if
deletion is not allowed by the source app you
will see a clear message.
7. WHERE YOUR DATA LIVES.
All encrypted files and the local database live
in private app storage on your device. They are
not written to public storage, external SD card
shared folders, or the cloud. Decrypted previews
are kept in memory when possible; when a temp
file is required to view or share, it is written
only to the app-private cache and removed when
no longer needed.
8. BACKUPS.
You may optionally create a passphrase-protected
backup file (.vkbackup). The backup is encrypted
with the password you choose. We never see this
password and cannot recover it if you forget it.
A backup file is only created when you tap
"Export Backup" and choose where to save it.
9. DATA SHARING.
We do not share, sell, rent, or transfer any personal data, because we never collect any.
10. DATA RETENTION AND DELETION.
Because no data is sent off your device, there is nothing for us to delete on a server. To delete all data, uninstall VaultKeep — all encrypted files and settings are removed from your device by Android.
11. CHILDREN'S PRIVACY.
VaultKeep is intended for general audiences and is not directed at children under 13 (or under the equivalent minimum age in your jurisdiction).
We do not knowingly collect any data from anyone, including children.
12. YOUR RIGHTS (GDPR / UK GDPR / CCPA / CPRA).
Because VaultKeep does not collect or process any personal data, there is no profile, no log, and no record of you on our side. You retain all rights to your data automatically — your data never leaves your device. If you have a question about your rights, contact us at the address below.
13. SECURITY DISCLOSURES.
If you believe you have found a security issue,
please email us at the address below and we will
investigate and respond.
14. CHANGES TO THIS POLICY.
If we change this policy in a meaningful way, we
will update the "Effective date" above and post
the new version at the URL shown on the Play
Store listing. Continued use of the app after the
effective date means you accept the new policy.
15. CONTACT.
Email: sj3463460@gmail.com