Encryption can be tough to understand, but it doesn’t have to be opaque. At Encryptilock, we believe in transparency — clearly communicating how we protect your data, while keeping just enough under wraps to shield against potential attacks.
Our offline-first design isn’t just a philosophy — it’s a practical shield against modern threats. By storing your vault locally and avoiding the cloud entirely, we eliminate the most obvious attack surface: a centralized database of user credentials.
Field-Level Encryption
Encryptilock encrypts each sensitive field — including passwords, usernames, notes, and URLs — before it’s written to disk. These encrypted fields are stored inside an encrypted database. This double layer ensures your data remains secure even if the device is compromised.
Decryption only happens when:
- You open a record to view it
- You explicitly choose to show or copy a password
Otherwise, your data stays encrypted — even while the app is open.
Your Master Password is Never Stored
We never store your master password. Instead, we use the Argon2id key derivation function to transform your password into a cryptographic key used for encryption and decryption. This process happens entirely on your device.
If you forget your master password, there’s no recovery option — and that’s by design. Only you hold the keys.
Encryptilock is designed for people who value privacy, control, and security — without compromise. No accounts. No sync. No tracking. Just local-first security that puts you in charge.
