Your Legacy, Protected byBanking-Grade Security
We use Zero-Knowledge encryption architecture. This means we cannot read your data even if we wanted to.
View Audit LogCore Security Architecture
Three layers of protection ensure your legacy remains private, secure, and accessible only to those you trust.
Client-Side Encryption
Your data is encrypted on your device using AES-256-GCM before it ever touches our servers. We never see your data in plaintext.
Industry-standard AES-256-GCM with authenticated encryption ensuring both confidentiality and integrity.
Zero-Knowledge Privacy
LegacyGuard does not store your master password or encryption keys. Only you have access to your data.
PBKDF2-HMAC-SHA256 key derivation with 600,000 iterations (OWASP 2023 recommendation) ensures your password never leaves your device unencrypted.
Shamir's Secret Sharing
Your master key is mathematically split among your chosen guardians. A threshold (e.g., 3 of 5) is required to reconstruct it.
Cryptographically secure secret sharing ensures no single guardian can access your data alone.
Technical Deep Dive
Transparency is the foundation of trust. Explore the technical details behind our security implementation.
Compliance & Trust
We meet the highest industry standards for security and data protection.
Full compliance with European data protection regulations
Banking-grade AES-256-GCM encryption
Transparent codebase available for audit
Independently verified security controls
Frequently Asked Questions
Your questions about security, privacy, and data protection answered.