Last updated: 9 July 2026
KryVault is anonymous encrypted storage. This policy explains exactly what we can and cannot see. The short version: your files are encrypted on your own device before they ever reach us, so we hold only scrambled data we have no way to read.
We never ask for your name, email, or phone number. A randomly generated 28-character key is your entire account. We do not store that key, or anything that could be used to recreate it.
Our hosting provider may briefly process connection metadata (such as IP address) to deliver requests and block abuse, as any web service does. We use a rate limit to stop mass vault creation. We do not link this metadata to the contents of any vault, because we cannot read those contents.
A free vault stays active for 90 days, followed by a 30-day read-only grace period so you can take your data out. After that, the encrypted data is deleted. You can delete any file, note, or your entire vault yourself at any time. Because we cannot identify you, deletion is done by you from inside the vault using your key.
If we receive a valid legal order, we can only ever hand over what we hold: encrypted blobs, their sizes, and timestamps. We have no key and no plaintext, by design. Specific unlawful content is removed when a valid order identifies it.
If this policy changes in a way that affects you, we will update the date above. Continued use of the service means you accept the current version.