Privacy Policy

Last updated: March 14, 2026

1. What Void Vault Is

Void Vault ("Void," "the App") is an encrypted file vault application for Android and iOS. It is designed to be fully offline-first — your files are encrypted and stored entirely on your device. There are no user accounts, no cloud storage, and no remote servers involved in storing your data.

2. Data Stored on Your Device

All data created or managed by Void Vault remains on your device:

  • Encrypted files — Files you import into the vault are encrypted using AES-256-GCM and stored locally on your device's file system.
  • PIN-derived keys — Your PIN is used to derive an encryption key via PBKDF2-SHA256. The PIN itself is never stored.
  • App settings — Preferences such as theme, view mode, and security settings are stored locally using SharedPreferences.
  • Security logs — If enabled, failed authentication attempts and optional intruder selfie photos are stored in an encrypted local database.

3. Data We Do NOT Collect

Void Vault does not collect, transmit, or store:

  • Personal information (name, email, phone number)
  • File names, file paths, directory names, or file contents
  • PIN digits, encryption keys, or any vault metadata
  • Location data
  • Device identifiers for tracking purposes
  • Advertising data

We cannot access your files, your PIN, or your encryption keys.

4. Third-Party Services

Void Vault uses the following third-party services:

  • Google Play Billing / Apple App Store — If you subscribe to Void Pro, the subscription is processed entirely by the platform's billing system. We do not process payments directly or store payment information.
  • Firebase Analytics (Google) — We collect anonymous usage statistics such as screen views, feature adoption (e.g. whether you use the grid or list view), and aggregate file counts. This helps us understand which features are used and improve the app. No file names, paths, vault contents, or personally identifiable information is ever included in analytics data.
  • Firebase Crashlytics (Google) — We collect crash reports including stack traces, device model, OS version, and app version. This allows us to identify and fix bugs. Crash reports never contain file names, paths, PIN digits, encryption keys, or any vault data. For more information on how Google processes this data, see Firebase Privacy.

Void Vault does not integrate any advertising networks.

5. Permissions

Void Vault requests the following permissions:

  • Storage access — Required to browse, import, and manage files on your device.
  • Camera — Used only for the optional intruder selfie feature, which silently captures a photo on failed authentication attempts. This feature is off by default and requires explicit user opt-in.
  • Biometric authentication — Used for optional fingerprint or face unlock to access the vault.

6. In-App Purchases

Void Pro is an optional subscription that unlocks premium features. Subscriptions are managed entirely by Google Play or Apple App Store. We do not have access to your payment details. You can manage or cancel your subscription through your device's platform settings at any time.

7. Data Deletion

Since all data is stored locally on your device:

  • Uninstalling the app removes all vault data, encrypted files, settings, and security logs from your device.
  • Vault Wipe — The app includes a built-in vault wipe feature that securely deletes all vault data without uninstalling.

8. Children's Privacy

Void Vault is not directed at children under 13. We do not knowingly collect any personal information from children. Since the app collects no personal information from any user, there is no children's data to address.

9. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. We encourage you to review this policy periodically.

10. Contact

If you have questions about this Privacy Policy, contact us at: admin@gelotto.io