Technical Architecture & Security Model
What Is App Vault?
App Vault lets you run web services — email, banking, social accounts, tools — in fully isolated, password-protected browser environments on your Windows PC. Each app lives in its own sealed container. Nothing crosses over between them, and nothing leaves your machine.
Your data stays on your computer
Everything App Vault knows about you — your app entries, your passwords, your license — is stored locally on your machine. There’s no account to create, no cloud sync, and no server that holds your information.
The app makes network requests in exactly three situations: when you manually activate your license, when you manually check for updates, and once per app to fetch its icon. That’s it. There’s no background activity, no usage reporting, and no automatic pinging of our servers when you launch the app.
Every app is its own browser
When you open an app through the vault, it runs in a completely separate browser environment — its own cookies, its own login state, its own storage. Nothing is shared between apps. You could have four different Gmail accounts open at the same time and they’ll never interfere with each other.
Each app also remembers your session independently, so you stay logged in between uses just as you would in a normal browser.
A note on WebRTC
WebRTC is the browser technology behind video and audio calls. It has a known privacy issue: it can expose your real IP address even if you’re on a VPN. We disable it by default on every app. If you need it for something like a video conferencing tool, you can turn it on for that specific app — but for email, banking, and most everyday use, it stays off.
Passwords are never stored
When you set a password on an app, App Vault doesn’t store the password itself — it stores a one-way cryptographic fingerprint of it. There’s no way to reverse that fingerprint back into your original password.
Each app also gets its own unique identifier that gets mixed into this fingerprint. So even if you use the same password across multiple apps, each stored fingerprint looks completely different. Someone who got hold of your credential files wouldn’t be able to tell you’d reused a password.
When you unlock an app, your password is checked against the stored fingerprint and then immediately discarded — it’s never written to disk and never sent anywhere.
When you delete an app, everything associated with it is gone for good: credentials, session data, cached icon, all of it. No soft delete, no recovery. That’s intentional.
Your license works offline
Activating your license requires a one-time connection to our server. After that, the app verifies your Pro status entirely on your device — no repeated check-ins, no internet required.
If you reinstall the app, your license re-validates without counting as a new device activation. You get three device activations in total, and reinstalling on the same machine doesn’t use one up.
Pro licenses cover 12 months of updates from your purchase date. Once activated, even that check happens locally — your device compares the build date of any new version against your entitlement date without contacting our servers. If your update window has passed, versions you already have installed keep working. You’d only need to renew to access newer releases.
The app only does what it needs to
App Vault is built with Tauri, a Rust-based desktop framework. Beyond the technical choice, what that means in practice is that the app operates under strict rules about what it’s allowed to do.
The main interface can’t run scripts from the web, can’t load external resources, and can only make network requests to the two ZUMODO domains mentioned above. Websites you visit inside vault windows follow their own rules, completely separate from ours.
At the OS level, the app only has access to its own data folder. It can’t browse your file system, access your clipboard, or use your microphone or camera.
Vault windows look like a normal browser
Each app window presents itself as a standard desktop browser. This isn’t about bypassing anything — it’s about making sure websites don’t flag or limit your vault sessions simply because the window looks unusual. Your experience should be identical to a normal browser visit.
Updates only happen when you ask
A lot of apps quietly check for updates every time you open them. App Vault doesn’t. The updater is disabled by default — the only way an update check happens is if you click the button yourself. We made this choice deliberately so that launching the app doesn’t send any signal to our servers about when you use it or what version you’re on.
Reset any app to a clean slate
Every app in your vault has a session reset option. It wipes all browser data for that app — cookies, login state, cached storage — instantly. Once reset, opening the app is like opening it in a fresh browser for the first time.
At a glance
| Feature | Status |
|---|---|
| Local-only storage | ✅ |
| No telemetry or analytics | ✅ |
| No background network calls | ✅ |
| Password never stored — hash only | ✅ |
| Per-app unique cryptographic salt | ✅ |
| Isolated browser sessions per app | ✅ |
| WebRTC disabled by default | ✅ |
| Manual update check only | ✅ |
| Strict Content Security Policy | ✅ |
| License works offline after activation | ✅ |
| Full data wipe on app delete | ✅ |
| 3-device cap with non-destructive re-validation | ✅ |