Privacy Policy
This page follows the site's plain, direct voice, but the specific terms below are a starting template and are subject to final legal review before publication — they are not yet a final, binding policy.
The short version
VaultMaster's vault is encrypted on your device before it is ever written to storage. There is no server-held copy of your vault, so there is nothing centralized for us to collect, store, or lose. This page describes the narrow set of data the marketing website and beta program do handle.
What we collect
If you submit your email address through the "Notify Me" form, we store that address solely to send you product updates you've asked for. We do not sell, rent, or share it with third parties.
Standard, anonymized web server logs (IP address, browser type, pages visited) may be retained temporarily for security and reliability purposes, consistent with typical hosting provider practice.
Early-access email signup
The section below describes the current, real behavior of the early-access signup form. Like the rest of this page, the exact wording is subject to final legal review before this policy is treated as final.
When you submit your email address through the Early Access form, here is exactly what happens and why:
- What's collected: only the email address you type in, plus the date and time you gave consent. We do not collect your IP address or browser/device information as part of this form.
- Why we collect it: solely to notify you when VaultMaster's early access opens and to send occasional, genuinely relevant launch updates — nothing else.
- Is it sold or shared: no. Your email is never sold, rented, or shared with third parties for marketing or any other purpose.
- How long it's kept: your address stays on the early-access list until you unsubscribe, until removal is requested through the process described below, or until the list itself is retired — for example, once VaultMaster's public launch and a real account system replace it.
- Your control over it: deletion and unsubscribe procedures will be documented before public launch. A self-service unsubscribe link will be added to every email once we begin sending them.
- Consent: submitting the form requires actively checking a consent box; consent is never pre-checked on your behalf.
What we never collect
- Your master password — it is never transmitted anywhere, by design.
- The contents of your vault — it is encrypted locally and never sent to a server.
- Biometric data — passkey/biometric verification happens on your device's own secure hardware, not on our infrastructure.
Cookies
This marketing site does not use tracking or advertising cookies by default. Any strictly necessary functional cookies (if introduced) will be disclosed here before use.
Policy updates
This is a pre-launch draft and remains subject to change. A finalized version, reviewed by qualified legal counsel, will be published before VaultMaster's public launch.