Security of your data is our Priority
Enpass is designed to keep your data safe and secure and protects your right to privacy.
Your data is protected by the world’s leading cryptography algorithm
Your data is fully encrypted with 256-bit AES with 100,000 rounds of PBKDF2-HMAC-SHA512 using the open-source encryption engine SQLCipher. This provides you with advanced protection against brute force and side channel attacks.
We don’t keep your encryption key or its derivative
The key that encrypts your data is derived from your master password which only you know. There is no record of your master password or its derivative with Enpass. If you forget your master password, there is no way to recover your data.
Sync your data with your preferred cloud provider
Optionally, you can sync your (encrypted) data across all your devices seamlessly through any of the supported clouds (iCloud, Dropbox, Google Drive, OneDrive, and WebDAV). Your data is always transmitted in encrypted format. Encryption and decryption always happens locally on your device.
We never keep your data on our servers
We do not save your Enpass data on our servers. Your data is only stored on your device(s) unless you specifically choose to sync it via your personal cloud storage (iCloud, Dropbox, Google Drive, OneDrive, and WebDAV).
Use Enpass with confidence
ISO 27001 certified
Enpass (ISMS) is ISO/IEC 27001 certified. By meeting certification requirements, Enpass reduces risks to information security and improves compatibility with data protection mandates. This includes guarding against both criminals data breaching the potential for data exposure caused by internal errors.
Comprehensive security audit
We regularly engage third-party security experts to perform audits and penetration tests. Most recently, CURE53 rigorously tested Enpass systems and source code in July 2022.
GDPR compliant
Enpass adheres to the guidelines for data protection set forth by the European Union in the General Data Protection Regulation (GDPR). We make sure your personal data is protected and our data protection practices remain transparent.
Frequently Asked Questions
100% of your data is encrypted with Enpass everywhere. You can open data file inside a binary editor and see it yourself. All you will see is nonsense, gibberish data ( encrypted with AES 256). For more information on Enpass security, check out the Enpass Security White Paper.
Your cloud always contains a copy of same encrypted data as on your device. We download the whole encrypted copy and decrypt it locally on your device for real sync operation to merge changes. Afterwards we upload the encrypted data on cloud. In a nutshell, your cloud is only a storage medium and no security related operation ( encryption or decryption ) is actually performed there. All such operations are performed locally on your device.
Your data is encrypted using the same standard as on your device, i.e. AES-256 with 100,000 rounds of PBKDF2-HMAC-SHA512 using SQLCipher engine. Even if an attacker gains access to your Enpass data file, it is unusable for him until your master password itself is compromised; otherwise it will take him years to crack and peep through your data.
Your Enpass data can only be decrypted by your master password. Please read more here to learn how we have used Fingerprint to unlock Enpass with best possible security.
Your Enpass data can only be decrypted by your master password. Please read more here to learn how we have used Touch ID to unlock Enpass with best possible security.
Enpass provides an option to conveniently share vault’s items with other users. However, the sharing security depends upon how you choose to share the item via a secure mode or an insecure mode. Please visit our help page here for more info.
If you have discovered a potential security issue with Enpass, we kindly ask you to go to this page right now..