Heivol Locker
A password and secret manager with no backdoor. Your vault is encrypted on your device with a passphrase only you know. Heivol servers store ciphertext — we literally cannot read it, and there is no admin reset path.
What we're building
Zero-knowledge by cryptography
Your vault is encrypted on-device with a master passphrase only you know. We hold only ciphertext — no master key, no admin reset, no exceptions. If you lose both passphrase and recovery code, the vault is gone and that's the point.
Passphrase + 24-word recovery code
Everyday unlock is a passphrase. If you forget it, a 24-word code you printed at signup restores access — no support ticket can do it for you. A MitID-anchored recovery path is planned for a later phase.
Chrome extension + web portal
V1 ships as a Chrome MV3 extension for autofill and a web portal for vault management. Firefox, Safari, and mobile apps follow once the crypto and sync core is proven.
Built on the Heivol substrate
Authenticated via heivol-id, synced over heivol-messaging, audited the same way our operator vault is. One identity across everything we build — no new account, no new trust model.