We believe your data is yours alone. Our zero-cloud, military-grade architecture guarantees total privacy.
100% Offline & Local Operation: PassLocker does not connect to the cloud to store, sync, or backup passwords. All user credentials and account metadata remain exclusively on your local machine.
No Data Collection: There are no backend database servers, no telemetry logging of credentials, and no cloud integrations. We have absolutely zero visibility, access, or custody of your passwords.
No Account Recovery: Because PassLocker operates 100% offline, there is no server-side "password reset" mechanism. If you forget your Master Password, your vault remains securely locked forever.
All credentials are fully encrypted locally using the AES-256-GCM symmetric encryption algorithm before ever being saved to your disk.
Decryption keys are rigorously derived from your Master Password using PBKDF2 with 100,000 iterations and SHA-256 hashing.
After 5 incorrect attempts, PassLocker initiates a progressive lockout timer (60s, 120s, etc.) to halt automated cracking attempts locally.