FAQ

Frequently Asked Questions

Everything people usually want to know before trusting a password manager with their credentials. If your question isn't here, use the contact form at the bottom.

Can you see my passwords?

No. Your vault is encrypted on your device using AES-256-GCM before anything leaves your browser. The encryption key is derived from your master password locally — we never receive it. What we store is ciphertext that is mathematically unreadable without your key. Not even us.

What happens if I forget my master password?

Your vault becomes permanently inaccessible. This is an unavoidable consequence of zero-knowledge encryption — because we cannot decrypt your vault, we also cannot recover it. We strongly recommend storing your master password somewhere safe offline, such as written down and locked away.

How does breach monitoring work without sending my passwords?

We use a technique called k-anonymity via Have I Been Pwned. Your password is hashed locally, and only the first 5 characters of that hash are sent to the API. The API returns all hashes matching those 5 characters, and we check for a match entirely on your device. Your actual password never leaves the browser.

What happens to my data if HexVault shuts down?

If we ever discontinue the service, you will receive at least 90 days notice with full ability to export your vault data. You can export at any time from the vault settings — we will never lock you in. Your data is yours.

Has HexVault been independently audited?

Not yet. HexVault is currently in early access and a formal third-party security audit is planned before public launch. In the meantime, the architecture is fully documented on our security page. We believe in transparency over marketing claims.

Is my data backed up?

Yes. Encrypted vault data is backed up automatically. The backups are also encrypted — because we only ever store ciphertext, the backups are as secure as the live data. We also recommend using the vault export feature periodically as your own personal backup.

Can I import from another password manager?

Import from CSV and other major password managers is in active development and planned for the public launch. Early access members will get access as soon as it is ready. If you need to migrate urgently, contact us and we will help.

What is HexGuard?

HexGuard is HexVault's built-in AI security engine. It continuously analyses your vault, scores every password, identifies breach exposure, flags reuse, and fixes issues with a single action. It explains everything in plain English. Available on Pro and Enterprise plans.

Still have a question?

Get in touch and we will get back to you within one business day.

Ask a Question