Security model
Nothing leaves this device.
And you can verify that.
Most privacy claims ask for your trust. This page asks for your scrutiny instead: here is exactly how QuietStor is built, in terms you can check.
The one rule everything follows
Decrypted bytes never leave the app's own process. Not to a server (there is none), not to an analytics SDK (there are none), not even to other system services. Every design decision below exists to keep that sentence true.
The specifications
| Layer | Implementation |
|---|---|
| File encryption | AES-256-GCM, chunked streaming (large videos are encrypted and played without temporary plaintext files) |
| Key protection | Android Keystore — hardware-backed (TEE / StrongBox) where the device supports it |
| Key derivation | PBKDF2-SHA256, 600,000 iterations |
| Metadata | SQLCipher encrypted database |
| Recovery | 12-word recovery phrase (BIP39 wordlist), generated on-device at vault creation |
| Exports | Standard ZIP AES-256 (AE-2) — opens with 7-Zip, WinRAR, macOS. No proprietary format |
| Network | INTERNET permission absent from the app — enforced by Android, not by policy |
| Screen protection | FLAG_SECURE (no screenshots, no screen recording of vault content) + auto-lock |
What "no cloud" means here
Some vaults say "no cloud" and mean "optional cloud". QuietStor has no server component at all: nothing to sync to, nothing to breach, nothing to subpoena. If you want an off-device copy, you make one — a sealed, encrypted export that you store wherever you choose, and that stays unreadable without your password.
What we can never do
We cannot see your files, reset your PIN, or recover your data. Zero-knowledge is a limitation we chose on purpose. Your safety net is yours: the 12-word phrase restores access on any phone, and the safety copy protects you against loss or theft of the device itself. Keep both, and you can always come back.
Don't take our word for it
Run the same five checks we apply to every vault — airplane mode, permissions, tracker scan, privacy-policy audit, export test — on the verification page. QuietStor is built to pass all five with the app's own tools.
Made in France · GDPR is architecture here, not an afterthought · Questions: support@quietstor.app