TL;DR (Too Long; Didn't Read): Stealth Vault is a 100% offline app. It does not connect to the internet, does not use external servers, does not have accounts, and collects zero analytics, telemetry, or user data. All files you lock are encrypted locally on your own device and cannot be accessed by anyone, including the developer.
1. Information We Collect (Or Rather, Don't Collect)
Because Stealth Vault operates entirely offline on your mobile device, we do not collect, transmit, store, or share any personal information, files, metadata, or logs. Specifically:
- No Cloud Storage: Your locked files are never uploaded to any cloud storage or remote servers. Decryption and access occur purely on-device.
- No Accounts: You do not need to create an account, sign up with an email, or link a social profile to use the app.
- No Analytics or Telemetry: There are no third-party tracking SDKs, Google Analytics, Firebase Crashlytics, or marketing cookies embedded within the application.
2. On-Device Data Storage & Encryption
Any file (photo, video, audio, or document) that you import into the Stealth Vault is immediately subjected to the following security protocols:
- AES-256-GCM Encryption: Files are encrypted using AES (Advanced Encryption Standard) in Galois/Counter Mode with 256-bit keys.
- Hardware-Backed Cryptography: Keys are generated and sealed inside your device's Android KeyStore System (Hardware Security Module / TrustZone), keeping them isolated from application memory.
- SQLCipher Database: Metadata about your folders, files, and settings is stored in a local SQLite database encrypted with SQLCipher.
3. Device Permissions & How They Are Used
Stealth Vault requests specific permissions on your Android device to perform its security functions. Here is exactly why they are needed:
A. Storage / Manage External Storage Permission
Required to search, select, import, and export files to and from the vault. Once files are imported, the app deletes the unencrypted originals from your public gallery/directories (subject to user confirmation) and secures them in the app's private sandbox storage.
B. Camera Permission
Used exclusively for the Intruder Selfie feature. When enabled, if an incorrect PIN is entered, the app uses CameraX to silently capture a snapshot of the person holding the device. This photo is saved directly into the encrypted, private local vault database so you can view it. It is never transmitted off your device.
C. Accessibility Service API
Used solely for the App Locker module. It allows the app to monitor which application is currently active in the foreground. If the active app is on your lock list, Stealth Vault displays a fake crash screen overlay.
Important Notice on Accessibility: The Accessibility Service is used strictly locally. It does not record keystrokes, capture screen content, monitor login credentials, or send any accessibility data over the network.
4. Data Loss & Recovery
Because Stealth Vault is completely decentralized and offline:
- No Password Recovery: There is no backup server to reset your password or PIN. If you forget your PIN, your encrypted data cannot be recovered.
- Wipe and Reset: If you trigger the Emergency Wipe (by entering the wrong PIN 5 consecutive times), all encryption keys and local files will be permanently deleted and are unrecoverable.
- Device Uninstallation: Deleting the Stealth Vault app from your device will also delete the app's secure private folder and all encrypted files stored within it. Always export/restore your files before uninstalling.
5. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. However, the fundamental principleβthat the app remains 100% offline with zero data collectionβwill never change. Any updates to this policy will be posted on this website.
6. Contact Us
If you have any questions about this Privacy Policy, you can open an issue on the official GitHub Repository:
https://github.com/Subhan-Haider/Security-Vault