PicoPouch
Sign in

Frequently Asked Questions

Guidance on secure AI agents, digital legacy protocols, and zero-knowledge privacy.

How do AI agents access my vault safely?

PicoPouch agents run locally on your device, not in the cloud. They only decrypt specific items you authorize for a single task (e.g., 'renew my car insurance').

Your unencrypted secrets never leave your device, ensuring that even if an agent helps you, it cannot leak your data.

How does the Digital Legacy (Death Document) feature work?

You can define a 'Legacy Protocol' that activates if you fail to check in for a set period (e.g., 30 days).

Once triggered, your vault keys are securely transferred to your nominated beneficiaries, ensuring your family isn't locked out of critical life admin details.

How does pricing work while paid tiers are in pre-launch?

The free Pouch tier is available now and includes core encrypted vault capabilities with one trusted co-owner.

Paid tiers are rolled out behind feature flags in phases so we can validate reliability and support quality before full release.

Can I use PicoPouch for both personal and business accounts?

Yes. PicoPouch is designed for households and side-hustle operators who need one secure system for personal and business continuity.

You can organize records by category, assign ownership context, and keep clear handover instructions for trusted people.

How does Trusted Access differ from Legacy Protocol?

Trusted Access is for day-to-day collaboration with a spouse, family member, or business partner.

Legacy Protocol is for continuity and inheritance scenarios, where broader access is activated only under defined trigger conditions.

What does "Zero-Knowledge" actually mean for me?

Zero-Knowledge means we do not have the keys to your vault, only you do.

If someone gained access to our servers, they would find scrambled, unreadable data. We never possess the master key required to unlock your passwords, documents, or notes.

What happens if I lose my Master Password?

Because PicoPouch uses a local-first, zero-knowledge architecture, your Master Password is never stored on our servers.

That is a core security guarantee, but it also means we cannot reset or recover it for you. If the password is lost, access to the encrypted pouch data is also lost.

Use a secure physical backup or recovery phrase stored in a safe place.

Is my data encrypted before it leaves my computer?

Yes. PicoPouch follows a local-first model where encryption happens in your browser or app before network transfer.

By the time your data reaches cloud storage, it is already a locked encrypted pouch.

What specific encryption standards do you use?

We use industry-standard modern cryptography for confidentiality and integrity.

  • AES-256-GCM: authenticated encryption for confidentiality and tamper detection.
  • PBKDF2 with 600,000 iterations: key stretching to harden derived keys against brute-force guessing.
How does the "Digital Illumination" theme affect my security?

Digital Illumination is a visual system for adaptive light and dark themes, but it also supports secure operation through better legibility.

Clearer visibility helps reduce user mistakes like mistyping secrets or making accidental destructive actions.

Does PicoPouch use trackers or sell my data?

No. PicoPouch does not use third-party advertising trackers and does not sell personal data.

We only collect the minimum account data needed to operate the product, such as your email for authentication.