Wisp Vault is a completely offline app. We do not have servers that store your data. We do not have accounts. We do not have analytics, ad networks, or tracking SDKs. Everything you put into the vault stays encrypted on your device. The only time anything leaves your phone is if you explicitly choose to back up to Google Drive — and even then, the backup is encrypted with a password only you know.
1. Who We Are
Wisp Vault (“Wisp,” “the app,” “we,” “us”) is an Android application that lets you store photos, videos, files, audio recordings, notes, and passwords inside a locally-encrypted private vault. The app is published and maintained by the developer reachable at Contact@wispdev.uk.
This Privacy Policy explains what data the app handles, where that data lives, and what choices you have. It applies to anyone who downloads or uses the Wisp Vault Android app.
2. What Data We Collect
None — on our end. Wisp Vault does not collect, transmit, sell, or share any personal information with us or any third party as a result of using the core app. We have no servers that receive your data. We have no analytics that report your usage back to us.
However, some data is necessarily stored on your own device for the app to function:
- Vault contents. The photos, videos, files, audio recordings, notes, and passwords you import. These are encrypted with AES-256 and stored only in the app's private storage on your device.
- Your PIN, optional gesture pattern, optional decoy PIN, and optional panic wipe code. Stored in the Android secure keystore.
- Optional Intruder Selfie photos. If you enable Intruder Selfie, a front-camera photo taken on a failed unlock attempt is stored only inside the app's private storage on your device. These photos are never transmitted anywhere and you can delete them at any time.
- App settings. Theme preference, chosen decoy skin, Dead Man's Switch configuration, sort order, etc.
- Biometric authentication state. Wisp asks Android to authenticate you with your fingerprint or face. Wisp itself never receives, sees or stores your biometric data — Android only tells the app a yes / no answer.
None of the above is transmitted off the device by Wisp.
3. Permissions the App Requests
Wisp requests only the permissions strictly required to function. Each is used solely for the purpose described:
- Photos & Media access. So you can import existing photos, videos and files into the encrypted vault. Wisp only reads the items you explicitly pick.
- Camera. So you can capture photos and videos directly into the vault, bypassing your regular camera roll — and, if you enable the optional Intruder Selfie feature, so the app can photograph failed unlock attempts. Those photos never leave your device.
- Microphone. So you can record private voice notes directly into the vault.
- Storage. So you can mass-import or export ZIP backups of your vault, and download files via the in-app browser into your vault.
- Biometric / Use Fingerprint. So you can unlock the vault with your fingerprint or face. The biometric check happens entirely inside Android.
- Internet. Used only for: (a) the in-app browser when you choose to use it, (b) optional Google Drive backup when you choose to enable it, and (c) checking your subscription status with our payment processor.
Wisp does not request location, contacts, SMS, call logs, accessibility services, or any background tracking permissions.
4. Optional Third-Party Services
The following services are optional. They are only activated if you explicitly choose to use them.
4.1 Google Drive Backup
If you choose to enable Google Drive backup, Wisp asks you to sign in with Google so it can upload an encrypted ZIP file of your vault to your own Google Drive account. The ZIP is encrypted with a password you set inside the app — Wisp does not transmit that password to Google or anywhere else. Google's handling of files in your Drive is governed by their own privacy policy. You can disconnect Google Drive from inside Wisp at any time.
4.2 Subscription / Payments (RevenueCat & Google Play Billing)
If you purchase Wisp Pro, the transaction is processed by Google Play Billing. Wisp uses RevenueCat to verify and manage your subscription status. RevenueCat receives an anonymous app-generated identifier and your subscription receipt — not your name, email, or any vault content. You can review RevenueCat's privacy practices at revenuecat.com/privacy.
4.3 Advertising (Free Tier)
The free tier of Wisp may display ads via Google AdMob. Ads appear only on the dashboard and never on lock screens, decoy skins, or while viewing your vault content. Wisp Pro removes ads entirely. AdMob may collect a limited amount of advertising data subject to Google's privacy policy. You can opt out of personalized ads on Android via Settings » Google » Ads.
4.4 In-App Browser
The in-app browser is a standard Android WebView. Browsing activity inside this WebView is not recorded by Wisp. Cookies and cache from the in-app browser are stored in the app's private storage and can be cleared at any time. When you download a file through the in-app browser, that file is saved directly into your encrypted vault.
5. How Your Data Is Protected
- AES-256 encryption for every file imported into the vault. Files are encrypted before being written to disk.
- Secure key storage. Encryption keys and your PIN are held in Android Keystore / Secure Store — not in plain files.
- App-private storage. Vault files sit in the app's sandboxed storage area, invisible to other apps and to your normal gallery / file manager.
- Screenshot & screen-recording block. By default, Android's FLAG_SECURE prevents screenshots and recordings inside Wisp and hides the app in the recent-apps preview. You can toggle this in settings.
- Optional gesture pattern unlock as a backup if you forget your PIN.
- Optional Intruder Selfie so you can see who attempted to open your vault.
- Optional Panic Wipe code that instantly and permanently erases the vault if you are ever forced to open it.
- Decoy disguise skins so even the app icon and visible UI don't reveal that you have a vault.
No security system is perfect. Make sure to remember your PIN, take encrypted backups, and keep your device's operating system up to date.
6. Dead Man's Switch & Panic Wipe
Wisp offers an optional “Dead Man's Switch” that, after a prolonged period of no access, can either auto-unlock the vault (for example so family can recover content if something happens to you) or permanently wipe it — your choice. Wisp also offers an optional “Panic Wipe” code that instantly and permanently erases the entire vault when entered. The configuration of these features is stored entirely on your device. We do not have any way to trigger, override, or read their state remotely — and wiped data cannot be recovered by anyone.
7. Data Loss & Your Responsibility
Because Wisp is zero-knowledge and fully local, we cannot reset your PIN, restore your files, or recover anything on your behalf — ever. You are solely responsible for:
- Remembering your credentials — your PIN, gesture pattern, decoy PIN, panic code and backup passwords.
- Keeping backups — using the encrypted ZIP export or optional Google Drive backup regularly.
- Understanding destructive features — the Panic Wipe code and the Dead Man's Switch (wipe mode) permanently destroy your vault with no confirmation and no recovery.
Any loss of data while using the app — for any reason — is your responsibility, and the developer is not liable for it. This is explained during onboarding and set out in full in our Terms & Conditions.
8. Children's Privacy
Wisp Vault is not directed at children under 13 (or the equivalent minimum age in your jurisdiction). The app does not knowingly collect personal information from children.
9. Your Rights
Because Wisp does not collect or store your data on any server we operate, the typical “please delete my data” request doesn't apply — the data is already only on your device. You retain full control:
- Delete. Removing the app from your phone deletes the encrypted vault and every setting.
- Export. You can export your vault as a password-protected ZIP at any time.
- Revoke cloud access. You can disconnect Google Drive at any time from inside the app. To also revoke Wisp's access from Google's side, visit your Google Account permissions page.
- Cancel subscription. Manage or cancel Wisp Pro at any time from the Google Play Store.
10. Data Retention
We do not retain any of your personal data because we do not receive it. Anything stored on your device persists until you delete the app or remove items from inside the vault.
11. Changes to This Policy
We may update this Privacy Policy from time to time, for example if we introduce new optional features. When we do, the “Last updated” date at the top of this page will change. Significant changes will be highlighted inside the app where reasonable.
12. Contact
Questions, concerns, or just want to say hi? Get in touch — we'll usually respond within a couple of working days.