Security model

Nothing leaves this device.
And you can verify that.

Most privacy claims ask for your trust. This page asks for your scrutiny instead: here is exactly how QuietStor is built, in terms you can check.


The one rule everything follows

Decrypted bytes never leave the app's own process. Not to a server (there is none), not to an analytics SDK (there are none), not even to other system services. Every design decision below exists to keep that sentence true.

The specifications

LayerImplementation
File encryptionAES-256-GCM, chunked streaming (large videos are encrypted and played without temporary plaintext files)
Key protectionAndroid Keystore — hardware-backed (TEE / StrongBox) where the device supports it
Key derivationPBKDF2-SHA256, 600,000 iterations
MetadataSQLCipher encrypted database
Recovery12-word recovery phrase (BIP39 wordlist), generated on-device at vault creation
ExportsStandard ZIP AES-256 (AE-2) — opens with 7-Zip, WinRAR, macOS. No proprietary format
NetworkINTERNET permission absent from the app — enforced by Android, not by policy
Screen protectionFLAG_SECURE (no screenshots, no screen recording of vault content) + auto-lock

What "no cloud" means here

Some vaults say "no cloud" and mean "optional cloud". QuietStor has no server component at all: nothing to sync to, nothing to breach, nothing to subpoena. If you want an off-device copy, you make one — a sealed, encrypted export that you store wherever you choose, and that stays unreadable without your password.

What we can never do

We cannot see your files, reset your PIN, or recover your data. Zero-knowledge is a limitation we chose on purpose. Your safety net is yours: the 12-word phrase restores access on any phone, and the safety copy protects you against loss or theft of the device itself. Keep both, and you can always come back.

Don't take our word for it

Run the same five checks we apply to every vault — airplane mode, permissions, tracker scan, privacy-policy audit, export test — on the verification page. QuietStor is built to pass all five with the app's own tools.

Made in France · GDPR is architecture here, not an afterthought · Questions: support@quietstor.app