The Short Version

Wisp Vault is a completely offline app. We do not have servers that store your data. We do not have accounts. We do not have analytics, ad networks, or tracking SDKs. Everything you put into the vault stays encrypted on your device. The only time anything leaves your phone is if you explicitly choose to back up to Google Drive — and even then, the backup is encrypted with a password only you know.

1. Who We Are

Wisp Vault (“Wisp,” “the app,” “we,” “us”) is an Android application that lets you store photos, videos, files, audio recordings, notes, and passwords inside a locally-encrypted private vault. The app is published and maintained by the developer reachable at Contact@wispdev.uk.

This Privacy Policy explains what data the app handles, where that data lives, and what choices you have. It applies to anyone who downloads or uses the Wisp Vault Android app.

2. What Data We Collect

None — on our end. Wisp Vault does not collect, transmit, sell, or share any personal information with us or any third party as a result of using the core app. We have no servers that receive your data. We have no analytics that report your usage back to us.

However, some data is necessarily stored on your own device for the app to function:

None of the above is transmitted off the device by Wisp.

3. Permissions the App Requests

Wisp requests only the permissions strictly required to function. Each is used solely for the purpose described:

Wisp does not request location, contacts, SMS, call logs, accessibility services, or any background tracking permissions.

4. Optional Third-Party Services

The following services are optional. They are only activated if you explicitly choose to use them.

4.1 Google Drive Backup

If you choose to enable Google Drive backup, Wisp asks you to sign in with Google so it can upload an encrypted ZIP file of your vault to your own Google Drive account. The ZIP is encrypted with a password you set inside the app — Wisp does not transmit that password to Google or anywhere else. Google's handling of files in your Drive is governed by their own privacy policy. You can disconnect Google Drive from inside Wisp at any time.

4.2 Subscription / Payments (RevenueCat & Google Play Billing)

If you purchase Wisp Pro, the transaction is processed by Google Play Billing. Wisp uses RevenueCat to verify and manage your subscription status. RevenueCat receives an anonymous app-generated identifier and your subscription receipt — not your name, email, or any vault content. You can review RevenueCat's privacy practices at revenuecat.com/privacy.

4.3 Advertising (Free Tier)

The free tier of Wisp may display ads via Google AdMob. Ads appear only on the dashboard and never on lock screens, decoy skins, or while viewing your vault content. Wisp Pro removes ads entirely. AdMob may collect a limited amount of advertising data subject to Google's privacy policy. You can opt out of personalized ads on Android via Settings » Google » Ads.

4.4 In-App Browser

The in-app browser is a standard Android WebView. Browsing activity inside this WebView is not recorded by Wisp. Cookies and cache from the in-app browser are stored in the app's private storage and can be cleared at any time. When you download a file through the in-app browser, that file is saved directly into your encrypted vault.

5. How Your Data Is Protected

No security system is perfect. Make sure to remember your PIN, take encrypted backups, and keep your device's operating system up to date.

6. Dead Man's Switch & Panic Wipe

Wisp offers an optional “Dead Man's Switch” that, after a prolonged period of no access, can either auto-unlock the vault (for example so family can recover content if something happens to you) or permanently wipe it — your choice. Wisp also offers an optional “Panic Wipe” code that instantly and permanently erases the entire vault when entered. The configuration of these features is stored entirely on your device. We do not have any way to trigger, override, or read their state remotely — and wiped data cannot be recovered by anyone.

7. Data Loss & Your Responsibility

Because Wisp is zero-knowledge and fully local, we cannot reset your PIN, restore your files, or recover anything on your behalf — ever. You are solely responsible for:

Any loss of data while using the app — for any reason — is your responsibility, and the developer is not liable for it. This is explained during onboarding and set out in full in our Terms & Conditions.

8. Children's Privacy

Wisp Vault is not directed at children under 13 (or the equivalent minimum age in your jurisdiction). The app does not knowingly collect personal information from children.

9. Your Rights

Because Wisp does not collect or store your data on any server we operate, the typical “please delete my data” request doesn't apply — the data is already only on your device. You retain full control:

10. Data Retention

We do not retain any of your personal data because we do not receive it. Anything stored on your device persists until you delete the app or remove items from inside the vault.

11. Changes to This Policy

We may update this Privacy Policy from time to time, for example if we introduce new optional features. When we do, the “Last updated” date at the top of this page will change. Significant changes will be highlighted inside the app where reasonable.

12. Contact

Questions, concerns, or just want to say hi? Get in touch — we'll usually respond within a couple of working days.