Privacy Policy

1. Zero-Knowledge Architecture

IronLockBox is built as a zero-knowledge storage system. This means that your encryption keys are generated and stored exclusively on your device. We never have access to your plain-text data, your master password, or your file names.

2. Data We Collect

To provide the service, we collect minimal information:

• Email address (for account identification and recovery instructions).
• Hashed authentication credentials (not your master password).
• Billing information for one-time storage pack purchases (processed securely via encrypted partners).
• Storage metadata (total usage volume only, not file content).

3. How Your Data is Stored

Files uploaded to IronLockBox are split into atomic units, encrypted using AES-256-GCM, and distributed across multiple high-redundancy data centers. We cannot reconstruct your files without your device-stored keys.

4. Cookies and Tracking

We use essential session cookies only to keep you authenticated. We do not use third-party marketing trackers, pixel tags, or targeted advertising systems within the vault environment.

5. Your Rights

Since we do not have access to your data, we cannot "sell" or "share" it. You have the right to export your data and delete your account at any time. Due to our encryption model, if you lose your master key and recovery phrases, we cannot recover your data for you.