What zero-knowledge means
Imagine sealing your belongings in a box, locking it, and handing the box to a storage company — but keeping the only key in your pocket. The company keeps the box safe and gives it back whenever you ask. They never open it. They couldn't if they tried.
That is zero-knowledge. Your password becomes a key on your own device, and your data is locked with that key before it ever reaches us. What we receive and store is a sealed box of scrambled bytes. We have zero knowledge of what's inside — not the messages, not the photos, not even the file names.
Why it matters
Most services that store your memories can read them. They have to trust their own staff, their own policies, and every government or hacker who might compel or breach them. “We promise not to look” is only ever a promise — and promises can be broken, sold, subpoenaed, or quietly amended in an update to the terms.
Vault removes the promise from the equation. There is nothing for us to be careless with, nothing to hand over, nothing to monetise. Your memories belong to you in the most literal sense: only your key can turn them back into something readable. This is what Hathworth means by sovereignty — your data, like your capital, answering to you alone.
What happens if you forget your password
We will be honest, because honesty is the whole architecture: we cannot reset it for you. There is no “forgot password” email that quietly lets us back in, because there is no back in. If we could recover your password, so could someone pretending to be you — and so could we, under pressure. The lock that protects you is the same lock that binds us.
That is why Vault asks you to set aside a backup at signup. With it, a forgotten password is a small inconvenience. Without it, your vault stays sealed — safe, and unreadable, even to its owner.
How the recovery phrase works
At signup, Vault shows you 24 ordinary words in a fixed order. Those words are a second way to rebuild your key — a spare cut from the same lock. They are generated on your device and never sent to us, so they share the same protection as everything else: we don't have them, and we can't lose them for you.
Write them on paper and keep them somewhere only you can reach — a drawer, a safe, with a will. If you ever forget your password, entering those 24 words in order lets you set a new one and open your vault again. Treat them exactly as you would the words that protect a hardware wallet: written down, offline, and never typed into a website that isn't Vault.
Why this is a feature, not a limitation
It is tempting to read “we can't recover it for you” as a missing feature. It is the opposite. The same wall that keeps us out is the wall that keeps everyone else out: the data broker, the breach, the overreaching request, the future owner of a company you never agreed to trust.
A safe that the manufacturer can open is not really your safe. Vault chooses the harder, quieter path — a little more responsibility for you, in exchange for ownership that is real rather than promised. The responsibility of the key is the proof that the vault is yours.
This is not a privacy policy. It is a technical commitment. The architecture itself makes reading your data impossible — not just against our rules.