Your passwords, backup codes, licenses, and private documents — organized and encrypted, not scattered across notes apps and screenshots.
Your private things, encrypted and offline.
An encrypted, offline vault for the private things you'd hate to lose — passwords, keys, licenses, and notes. It lives on your machine, never a cloud.
Your vault is a single encrypted file — back it up and carry it between machines whenever you like.
- No account
- No cloud
- Encrypted locally
not a passwords.txt For everyone with something worth protecting.
Your everyday private life and your work both live in one local vault — encrypted, offline, and entirely yours.
Not a browser extension — nothing injected into web pages, nothing to phish, nothing syncing behind your back.
Your .env files, API keys, and per-environment config — kept
beside the project that uses them, and exported when your app needs it.
your keys, off the internet One vault for your accounts, notes, files, links, and config.
Keep the private things worth protecting in one place — then let the app organize them, generate strong secrets, and remind you to back them up.
What you can keep
Accounts & credentials
Logins, usernames, secrets, and profile links for the services you use.
Bookmarks
Dashboards, docs, and any site you want to keep — grouped and kept beside the project they belong to.
Secure files & certificates
Store files and certificates, and track which certificates are valid, expiring, or expired.
Environment variables & config
Environment variables, API keys, and any name-to-value pair, organized by project and environment.
Secure notes
Everyday codes, numbers, and one-off notes — labeled, grouped, and encrypted.
What it does for you
Built-in password generator
Generate strong passwords or memorable passphrases — tune length, character sets, or word count — right where you save them, fully offline.
Local backup and restore
Create encrypted vault snapshots and restore them without an account or remote service. Restore checks the snapshot first and keeps a copy of your current vault, rolling back automatically if anything fails.
Recovery Key
Get a Recovery Key at setup. Save it, and you can regain access even if you forget your master password.
Separate project workspaces
Keep every client, side project, or part of your life in its own tidy workspace — all inside one encrypted vault.
Environment-aware entries
Label and filter values by environment — local, staging, production, or any name you choose — or keep them environment-free.
Import and export .env
Bring an existing .env file into a project and export one environment when your app needs it.
Local-first is a design choice, not a magic word.
LocnLock keeps its responsibilities narrow and tells you where the boundaries are.
Everything is encrypted
Your names, secrets, notes, accounts, and files are scrambled with AES-256-GCM — unreadable without your master password.
Only keys you hold unlock it
Your master password — hardened with Argon2 — and the Recovery Key you save at setup are the only ways in, and neither ever leaves your device.
Ten-minute auto-lock
Inactivity clears the unlocked session and returns the app to its lock screen.
Copied secrets don't linger
Copying a sensitive value schedules the clipboard to clear itself after a short window, so a secret doesn't sit there.
A safety net only you hold
We can never unlock your vault — there's no backdoor. But your Recovery Key, saved at setup, can restore access if you forget your master password.
A little non-secret info stays readable
A few details — environment tags, dates, and ordering — stay readable so lists sort instantly. Your names, notes, and secrets stay encrypted; even search decrypts them only in memory, never into an index.
Windows first. macOS next.
LocnLock is coming to Windows through the Microsoft Store. macOS is next, on the Mac App Store — no date to promise yet, but it's on the way.
Every package is certified and signed by the Store. LocnLock is never offered as a download from a website — treat any such installer as fake.
Get notified
We'll email you the day the Mac app is ready — no spam, unsubscribe anytime.
Pay once. No subscription.
LocnLock is a one-time $29 purchase on the Microsoft Store — less than a year of most subscriptions, then it's yours for good.
$29
one-time, on the Microsoft Store
Every feature included — no tiers, no account, no subscription, ever.
- All features — passwords, accounts, notes, links, files, and config
- Personal and commercial use
- No account or subscription required
- Refunds handled by the Microsoft Store
macOS is planned for later on the Mac App Store for $34; pricing is per platform, so a Windows purchase doesn't include macOS.
Questions worth asking before trusting a vault.
Is LocnLock cloud-based?
No. LocnLock is an offline desktop app. It does not require an account, backend, cloud sync, or telemetry.
Where is my data stored — can I move it?
Everything lives in a single encrypted file in the app's local data folder on your computer — no server, no cloud. To move it to another machine, use the built-in Backup and Restore: export an encrypted snapshot, then restore it on the other device. It stays offline the whole time.
Can I sync across devices?
No — LocnLock has no cloud sync, by design. To use your vault on another machine, move it manually with Backup and Restore. Your data never leaves your device unless you export it yourself.
What exactly is encrypted?
Everything sensitive is encrypted with AES-256-GCM: project names, entry keys, values, and notes, all account fields, your secure notes, and your saved links and files. Only structural metadata stays as local plaintext — environment labels, the sensitive flag, display order, timestamps, relationships, which features a project has switched on, and stored file sizes — so the app can sort and filter without unlocking your secrets.
How much does LocnLock cost?
LocnLock is a one-time $29 purchase on the Microsoft Store for Windows. A macOS version is planned for later on the Mac App Store for $34. There's no subscription. It's licensed per platform and includes both personal and commercial use — you may use it for your own work and business, but you can't resell or redistribute the app itself.
Do you offer refunds?
Purchases and refunds are handled by the Microsoft Store under its refund policy — LocnLock doesn't process payments or store any billing details.
Will macOS be supported?
macOS is planned for later, via the Mac App Store, but there is no announced release date. Windows is the current distribution target, delivered through the Microsoft Store.
Does it lock itself when I step away?
Yes. LocnLock auto-locks after 10 minutes of inactivity — a fixed window — clearing the unlocked session back to the lock screen. Secrets you copy are also wiped from the clipboard a short time after copying, so they don't linger.
Can a thief read my vault if my laptop is lost or stolen?
No. Your vault is encrypted with AES-256-GCM and only your master password — hardened with Argon2 — unlocks it. There's no vendor backdoor, so a stolen vault file stays unreadable; a strong, unique master password is what protects it.
With no cloud, how do I avoid losing my data?
Keep your own backups. Because everything is local, a lost or wiped device means lost data unless you have one — so use Backup and Restore to export an encrypted snapshot and keep it somewhere safe, like an external drive or your own cloud storage (Google Drive, OneDrive). The snapshot carries the same encryption as your vault, so your secrets stay unreadable there — only structural labels like environment names and timestamps are visible, the same as inside the vault. Restore checks the snapshot first and keeps a copy of your current vault, rolling back automatically if anything fails, so a bad backup can't destroy what you have. One thing to know: a backup opens with the master password and Recovery Key you had when you exported it, so export a fresh one after you change either.
What happens if I forget my master password?
You get a Recovery Key when you first set up your vault. Save it somewhere safe — with it you can reset your password and regain access even if you forget it. There's no vendor backdoor, so if you lose both your master password and your Recovery Key, the encrypted data can't be recovered by anyone.
Master password vs Recovery Key — what's the difference?
Your master password unlocks the vault every day. Your Recovery Key is a backup key — shown once at setup and replaceable anytime from inside the app — that resets a forgotten master password, and it keeps working after a reset.
What happens when I change my master password?
It's instant, and it never re-encrypts your data. Your vault is sealed with a random key that your password locks; changing your password just re-locks that key, so nothing in your vault has to be rewritten. Your Recovery Key keeps working too.
What if LocnLock stops being developed?
It keeps working. LocnLock has no server, account, or activation check, so the app runs offline exactly as installed, your vault file stays on your machine, and your backups keep restoring. Nothing about your data depends on us being around.
Is LocnLock a browser password manager?
No — and that's deliberate. It stores personal credentials, recovery codes, and private notes, but nothing injects into web pages and nothing syncs, so there's no browser-extension surface to phish. It's a vault, not an autofill tool.
Can I use it for a team?
LocnLock is a single-user, local app — there are no shared vaults, accounts, or multi-user features. Each person runs their own local vault.
Can two people share the same PC?
Yes — give each person a separate Windows (or macOS) user account. LocnLock keeps its vault in your own OS user profile, so each account automatically gets its own separate encrypted vault, with its own master password and Recovery Key; the other person can't open yours. A single shared OS login would share one vault by design (there are no in-app profiles), so separate OS accounts are the way to keep each person's vault private.
Built to be trusted — not trusted blindly.
LocnLock has no ad model, no analytics, and no servers that ever see your vault — so there is nothing of your data to sell, leak, or lose.
It's a one-time app built by an independent developer, Rahman Mubarok — sold once, not run as a service. The incentive is simple: make something worth paying for, not harvest your data or lock you into a subscription. We sell software, not your data.
And it's honest about the limits — a weak master password is still the weak link if someone copies your vault file. There is no vendor backdoor, which also means no one, us included, can recover a vault once both the master password and its Recovery Key are gone.
YOUR SECRETS. YOUR MACHINE.