Three non-negotiable pillars that define how Cleverpass handles your data.
We never know your master password. It's never sent to any server. Only you can decrypt your vault.
We don't store your data. Your encrypted vault lives exclusively in your own Google Drive account.
Encryption and decryption happen entirely on your device. Data is encrypted before it ever leaves your phone.
A multi-layer encryption process that keeps your vault locked — even from us.
Your vault is encrypted using AES-256, the same standard used by governments and banks worldwide. It's effectively unbreakable with current technology.
Your master password is never stored directly. It's processed through PBKDF2 with a high iteration count and a unique salt, turning it into a strong cryptographic key.
The encryption key is derived on your device. Only the already-encrypted blob is sent to Google Drive — Google sees gibberish, not your passwords.
Every password entry uses a unique initialization vector (IV), ensuring that identical passwords produce different ciphertexts. No patterns, no shortcuts for attackers.
Unlike most password managers that store your data on their own servers, Cleverpass uses your personal device or optionally your Google Drive. This means:
On supported devices, you can unlock your vault using Face ID or fingerprint. Your biometric data never leaves your device — it's handled entirely by the OS secure enclave.
A clear picture of the threats Cleverpass is designed to defeat.