SECURITY FIRST
Why Your Data Is Safe
We built The Collective so that even we cannot access your vault. Not as a marketing claim โ as an architectural decision.
THE TECHNICAL TRUTH
Your data is encrypted before it leaves your device.
When you add a firearm to Ghost Vault, your serial number is encrypted on your phone or computer using AES-256-GCM โ the same standard used by the US military and financial institutions โ before it ever reaches our servers.
The encryption key is stored in your device's secure hardware enclave (iOS Keychain or Android Keystore). We never see it. We never touch it. We cannot recover it.
AES-256-GCM ยท Client-side ยท Hardware enclave key storage ยท enc: prefix on all encrypted fields ยท Zero server-side decryption
HOW IT WORKS
You add a firearm
Serial number entered on your device
Encrypted instantly
AES-256-GCM applied using your device key
Encrypted data sent
Only ciphertext leaves your device โ never plaintext
Stored encrypted
Our servers hold encrypted data we cannot read โ
What We Can โ and Cannot โ See
WE CANNOT READ
- โYour serial numbers
- โYour NFA documents
- โTrust records and beneficiaries
- โPurchase history and prices
- โSafe combinations
- โEstate planning instructions
- โVault encryption keys
- โYour location history
This data is encrypted on your device. Even if compelled by law, we can only produce encrypted ciphertext โ not readable data.
WE CAN SEE
- โYour username and email
- โYour subscription status
- โRange session metadata (dates, round counts)
- โCommunity posts you share
- โFFL finder search activity
We see only what you choose to share publicly. Your vault data is never part of this.
IF WE ARE COMPELLED BY LAW
We hand over encrypted ciphertext. Nothing more.
If The Collective receives a valid legal demand for your vault data, here is exactly what we produce: encrypted binary data that is mathematically unreadable without your device key.
We do not have your encryption key. We cannot produce readable serial numbers, NFA documents, or vault records โ because we genuinely do not have them.
Your device key never leaves your hardware enclave. Legal demands get ciphertext. That's the design.
We are not an FFL. We are not subject to ATF recordkeeping requirements. We are a software tool โ and we've designed it so that the most sensitive data never reaches us in readable form.
FOR MAXIMUM SECURITY
Go completely offline.
Ghost Vault is already zero-knowledge. But if you want complete sovereignty โ no servers, no cloud, no internet โ our desktop download runs entirely offline.
Your data lives only on your machine. AES-256 encrypted with a master password you control. No network connection required. Ever.
- โ No internet after download
- โ Data never leaves your machine
- โ AES-256 local encryption
- โ Master password you control
- โ Air-gap compatible
- โ Mac + Windows
Last sync: Never (offline)
All data encrypted locally
Protecting what comes after you.
Estate planning isn't just about your collection. It's about making sure your family isn't left confused, legally exposed, or missing critical information.
Trusted Contact
Designate someone who receives access when you trigger it โ or after inactivity. They get exactly what you want them to have. Nothing more.
Encrypted Safe Combinations
Store safe combinations, key locations, and private notes โ encrypted in your vault. Your trusted contact sees them only when you allow it.
NFA Legal Guidance
Auto-generated instructions specific to each item's registration type. Your family won't unknowingly possess NFA items illegally. The guidance explains exactly what to do โ and who to call.
Your vault is yours.
We built it that way on purpose.