Kryptos Download
Zero-knowledge · On-device encryption

Your most private documents,
locked down by design.

Kryptos is a personal vault for Android that keeps your passports, IDs, payment cards, and notes encrypted on your device. We never see your data — only you can.

Get on Google Play See how it works →
  • AES-256 SQLCipher
  • NFC ePassport & EMV
  • Biometric unlock

Built on the standards trusted by

SQLCipher Google ML Kit Jetpack Compose JMRTD Material 3 Android Biometric
Features

One vault for everything that matters.

Passports, IDs, cards, API keys, notes, tax numbers — captured intelligently and stored under encryption only you can unlock.

Zero-knowledge encryption

Your data is encrypted locally with SQLCipher AES-256. We can't read it — and neither can anyone else.

Smart document scanning

Snap a passport or driver's license. Google ML Kit OCR extracts the fields automatically with locale-aware parsing.

NFC chip reading

Read electronic passports (ePassport) and EMV payment cards directly via NFC — no cloud round-trip.

Beautiful hero cards

Each document gets a high-fidelity, dedicated card UI — passports, licenses, credit cards, and more.

Encrypted Drive backup

Auto-backup to a hidden, private folder in your Google Drive. Pro adds a visible "KryptosBackups" folder.

Expiry reminders

Get notified before passports, cards, or licenses expire — powered by WorkManager, scheduled offline.

Biometric unlock

Lock your vault behind Android Biometrics — Fingerprint or Face Unlock — backed by hardware keystore.

Multi-account isolation

Multiple Google accounts, fully isolated — each with its own encrypted database on the same device.

Security

Designed so we never see your data.

Kryptos is built around a simple promise: your secrets stay on your device, encrypted with a key only you control.

  • SQLCipher AES-256 at rest
  • Keys held in Android Keystore (hardware-backed)
  • Biometric gate before any decrypt
  • Encrypted blob backups — Drive can't read them
  • No analytics on your vault contents. Ever.
Zero-knowledge by default Local-first · End-to-end encrypted backups 
db = SQLCipher.open(
  path: "vault.db",
  key:  Keystore.derive(user, biometric)
)
// We never see your key. We never see your rows.
backup = encrypt(db) → drive.upload()
Pricing

Free to use. Pro when you need more.

Free

$0up to 10 entries
  • ✓ Store up to 10 entries
  • ✓ OCR & NFC scanning
  • ✓ Biometric unlock
  • ✓ Hidden Drive AppData backup
  • ✓ Expiry reminders
Download free
Pro

Kryptos Pro

$1.99one-time · no subscription
  • Unlimited entries
  • ✓ Everything in Free
  • ✓ Backup to visible "KryptosBackups" folder
  • ✓ Easier restore & portability
  • ✓ Priority support
  • ✓ All future Pro features included
Unlock Pro — $1.99

Pay once. Yours forever. No recurring fees.

FAQ

Questions, answered.

Can the Kryptos team see my documents?

No. All data is encrypted locally on your device with a key derived from your biometric and stored in the Android Keystore. We have no servers that hold your plaintext data.

How does backup work if it's zero-knowledge?

Kryptos encrypts your entire vault into an opaque blob and uploads it to your Google Drive — either to the hidden AppData folder (free) or to a visible "KryptosBackups" folder (Pro). Google Drive only sees encrypted bytes.

What happens if I lose my phone?

Sign in with the same Google account on a new device, restore from Drive, and re-authenticate with biometrics. Your vault is back — without anyone in between ever decrypting it.

Which documents support NFC?

Modern electronic passports (ICAO 9303 ePassports via JMRTD) and contactless EMV payment cards. NFC reading depends on the chip — not every card exposes the same data.

Is Kryptos open about its security?

Yes. We use industry-standard primitives (SQLCipher AES-256, Android Keystore, Android Biometric) rather than rolling our own crypto.

See all FAQs →

Take control of your documents today.

Available on Android. Free download — Pro features optional.

Get on Google Play View on GitHub