Digital Online Vault Security | Digital Online Vault

JavaScript seems to be disabled in your browser.
You must have JavaScript enabled in your browser to utilize the functionality of this website.

How is Digital Online Vault Secure?

Designed to protect the privacy of your data. Digital Online Vault powered by SecureSafe employs a range of security measures including renowned encryption methods, strong user authentication and data storage in redundant data centers.

What better place to store your data than a former military bunker in the Swiss mountains
Our data centers are compliant will all banking guidelines and regulations

Digital Online Vault powered by SecureSafe uses several redundant data centers, which are compliant with the security requirements of the Swiss banking commission. So this means that your data is protected physically and digitally using the highest standards possible.

Highly Secure Login

Easily enable two-step authentication to reinforce your password with a one-time SMS code

Like modern online banking solutions, we offer you a 2-factor authentication (mobile TAN) to further protect your privacy online. If you activate this feature, you will receive an additional login code by an SMS text message each time you log in to your SecureSafe. A new, unique code is created for each login to protect your SecureSafe account even if someone finds out your password.

SMS Authentication for mobile devices

Our apps for iPhone, iPad and Android also offer you 2-factor authentication. To make it even easier and more secure for you to use this extra layer of protection, our invention, DoubleSec, automates the second step of the authentication process on all mobile devices.
The strong SMS authentication is included in all paid SecureSafe subscriptions.

Maximum Password Protection

Protected by the Secure Remote Password Protocol

Your data is protected by the Secure Remote Password Protocol. This highly efficient security protocol created by Stanford University (RFC 2945) ensures that your Digital Online Vault powered by SecureSafe is extremely well protected from internet attacks.

Digital Online Vault powered by SecureSafe can never access your password

In order to keep your data highly protected, Digital Online Vault powered by SecureSafe can never access your login information. This means that we are also unable to help if you forget your password. To be safe, print out your personal Login Recovery Code as soon as you open an account and store it somewhere safe.

Need help choosing strong passwords?

Your Digital Online Vault indicates whether a password is truly strong or not. It also suggests easy to remember yet strong passwords based on a method SecureSafe developed in cooperation with the Zürich University of Applied Sciences.

Full Encryption for Your Data

Customer specific encryption

All your data is encrypted using a selection of highly secure and internationally renowned encryption methods. The key required to decrypt your data is created directly from your password using PBKDF#2 (RFC-2898). Your SecureSafe online safe is therefore fully protected from malicious hackers.

Secure for the long-term

Furthermore, we use AES-256 and RSA-2048 encryption standards. These encryption methods are designed to provide a maximum level of protection for many years to come.

Encryption in the memory of your computer  

We encrypt the passwords you store in SecureSafe in the memory of your computer while you are working. A password is temporarily decrypted and displayed only when you actually use and view it.

Highly Secure Apps

AES-256 encryption on iPhone, iPad and Android Apps

We do not rely on the protection provided by Apple or Google. Instead, we use AES-256 to encrypt all the data on your mobile phone. This is why our users have remained protected from recent attacks on iPhone and Android systems.

Data Transport Protection

Double protection for your data in transport

SecureSafe uses EV SSL certificates. EV certificates are only given to companies that have been fully verified. You can recognize the EV certificate from the green background color in the address field of your browser.

Additional encryption of your passwords

In addition to SSL protection, SecureSafe uses a session key to encrypt particularly sensitive data such as your user data and passwords saved in SecureSafe. This additional encryption provides extra protection against random attacks, for example at internet cafés or airports.

Privacy by Design

Privacy by design is our promise to you: we have embedded privacy directly into the design and architecture of the SecureSafe application. As a result, we can ensure that your personal data stays protected at all times.

We Take a Stand for PRIVACY

End-to-End Encryption

User

Strong user authentication:

Your username and password is protected with the Secure Remote Password Protocol (SRP).
You can activate 2-factor authentication with SecureSafe Password PRO, SILVER and GOLD. With the DSwiss innovation DoubleSec you can automate an SMS authentication on your iPhone, iPad or Android device.

Encryption on a user’s computer and in apps:

SecureSafe encrypts all passwords that are temporarily loaded in the memory of any computer that you use with a secure session key AES-256.
All data that is locally stored on your iPhone, iPad or Android device is encrypted with AES-256 keys so that the apps can be used in offline mode.

Secure document viewing:

You can securely view PDF files and images directly in the file safe without leaving traces on the local drive of the computer.

Transport

Highest protection of essential data:

User credentials, metadata and password safe entries are doubly protected (AES-256).
In addition to SSL protection, SecureSafe creates a session key during SRP authentication to encrypt particularly sensitive data such as your user data and passwords saved in SecureSafe.
In contrast to other services, SecureSafe NEVER has to buffer your personal password or elements derived directly from it.

File encryption with SSL:

EV certificates are only given to companies that have been fully verified. You can verify the EV certificate by the background color in the address field of your browser.

Data Center

The best server security:

Your data is protected through disaster recovery management through triple application mirroring across two data centers.
24h monitoring and alert escalation procedures prevent server problems.
SecureSafe applications are designed following NIST security standards.
OS and third party applications are constantly updated and strengthened.
System penetration testing by top security experts ensure our systems integrity.
The World’s leading vulnerability assessment center, McAfee, performs daily checks on SecureSafe.

Rigorous data center security:

Our data centers are characterized by the highest level of security and are also compliant to Swiss banking commission security standards.