Last updated: March 02, 2026

We can't see your data.Everything happens in your browser. We don't track you, we don't use analytics, and we don't collect personal information. This page explains the minimal technical data we do collect.

How PaperVault.xyz Protects Your Privacy

• Client-side encryption: All your sensitive data is encrypted in your browser before anything leaves your device
• Zero-knowledge: We literally cannot see your vault contents, passwords, or keys
• No tracking: No analytics, no cookies for tracking, no user profiling
• Open source: You can verify everything we're saying by checking the code

What We Collect

• If you email us: Your email address (obviously)
• If you use our hosted website: Basic server logs (IP address, browser type) for security and performance
• If you deploy your own instance: No data is collected from your usage

Functional cookies in the app

When you use the PaperVault.xyz app (for example, creating or unlocking a vault), we set a few short-lived cookies in your browser to remember your progress between steps (such as your vault name, description, and threshold settings). These cookies do not store sensitive data—no encryption keys, passwords, or vault contents. They are only used to make the workflow function correctly, are never used for tracking or analytics, and stay entirely on your device.

Open Source = Verifiable Privacy

You can (and should) run your own instance of PaperVault.xyz and verify the code yourself. The entire PaperVault.xyz application is open source at github.com/boazeb/papervault.

Questions?

Email us at support@papervault.xyz if you have questions.