FAQs

All your documents, memories and Vault items are encrypted at rest in our databases, which are hosted in AWS (Amazon), using an Amazon managed encryption key. 

Any data that you add to your Vault has an additional layer of encryption. Vault items are always encrypted on your device using your Vault Key before being sent to our servers. Your Vault Key is a 256-bit encryption key that only you (and eventually your executor) have. This helps protect you against a mass data leak. If an attacker does manage to break into our servers, your Vault items should still be safe as they are encrypted with a key that the attacker a) doesn’t have and b) can’t find on our servers.