EN DE
VeilVault Logo

Documentation

Frequently Asked Questions

← Back to Docs Back to VeilVault →

Frequently Asked Questions (FAQ)

This FAQ answers common questions about VeilVault’s design, security model, and limitations.

VeilVault is a security-first, offline-only password vault developed by CodeVeil.

What happens if I forget my master password?

If you forget your master password, your vault cannot be recovered.

VeilVault does not provide:

  • Password reset
  • Recovery emails
  • Backup keys
  • Server-side recovery

This is an intentional design decision to ensure that only you can access your data.

Can CodeVeil see or recover my passwords?

No.

  • CodeVeil has no access to your vault
  • There are no servers storing your data
  • There is no recovery mechanism

All encryption and decryption happen locally on your device.

Does VeilVault use the cloud in any way?

No.

VeilVault does not use:

  • Cloud storage
  • Sync services
  • User accounts
  • Remote servers

Your vault exists only on your device unless you explicitly export it.

Can I sync my vault between devices?

Not automatically.

Vault data is stored locally on a single device.
If you want to move data between devices, you must manually export and import your vault.

Is biometric unlock less secure than a master password?

Biometric unlock is a convenience feature, not a replacement for the master password.

  • The master password remains the primary security boundary
  • Biometrics are gated by the operating system
  • Biometrics can be revoked automatically for safety

Users in high-risk environments may choose to disable biometric unlock.

Does VeilVault block screenshots and screen recording?

VeilVault applies operating-system–level protections to restrict screenshots and screen recording while sensitive content is visible.

These protections:

  • Depend on OS enforcement
  • Do not apply on compromised or rooted devices
  • Do not protect against external recording

They are designed to reduce accidental or casual exposure, not to provide absolute protection.

What is the Decoy Vault?

The Decoy Vault is an optional feature that allows VeilVault to display non-sensitive data when unlocked with a separate password.

The Decoy Vault:

  • Does not hide the existence of VeilVault
  • Does not provide cryptographic deniability
  • Does not protect against forensic analysis

What happens when I use PanicHold or emergency wipe?

PanicHold immediately obscures sensitive content or locks the vault.

Emergency wipe permanently deletes local vault data.

  • Wipes are irreversible
  • Deleted data cannot be recovered
  • Licensing and app installation are not affected

Does VeilVault track my usage or behavior?

No.

VeilVault does not collect:

  • Analytics
  • Telemetry
  • Usage statistics
  • Behavioral data

Insights are calculated locally and never leave the device.

Are generated passwords stored automatically?

No.

Generated passwords are:

  • Created locally
  • Ephemeral by default
  • Stored only if you explicitly choose to save them

Is VeilVault open source?

No.

VeilVault is closed source.

Can VeilVault protect me if my phone is compromised?

No.

VeilVault assumes a non-rooted device and an uncompromised operating system.

Who is VeilVault for?

VeilVault is for users who:

  • Want an offline password manager
  • Prefer control over convenience
  • Accept responsibility for backups and access

← Back to Docs