Protect sensitive data of your users

  • Data breach-proof

    Keep your users safe from the most frequent methods of data breaches: "Pass the hash", Dictionary and Brute force attacks. You’ll never need to see or touch user passwords anymore

  • End-to-End encrypted

    Your app can seamlessly end-to-end encrypt app data for your users. This way, neither you nor your cloud provider can access sensitive data

Get started in minutes

It can't get any simpler: No cryptography expertise needed to use ZeroKit in your apps:

  • iOS
  • Android
  • Javascript

import ZeroKit

// 1. Init on iOS

let zeroKit = try! ZeroKit(config: ZeroKitConfig(apiUrl: URL(string: "yourTenantUrl")!))

// 2. Log in your patient: ZeroKit takes care of securely capturing your user’s password

zeroKit.login(with: userId, passwordField: passwordTextField, rememberMe: true) { result, userId in

print("Logged in as \(userId)")


// 3. Create new “tresor” for patient: sharing this tresor with doctors will grant them access to the patient's data

zeroKit.createTresor { result, newPatientTresorId in }

// 4. Encrypt patient’s Social Security Number on user's device when first entered

zeroKit.encrypt(plainText: socialSecurityNumber, inTresor: newPatientTresorId) { result, cipherText in

print("Encrypted text: \(cipherText)") // Now, you can store the encrypted SSN in your database!


// 5. Patient picks a doctor: iOS app shares patient’s tresor with doctor, who now can decrypt all her data.

zeroKit.share(tresorWithId: newPatientTresorId, withUser: doctorsUserId) { result, operationId in }

// Log in

Zerokit.getInstance().login(userId, passwordField).subscribe(result -> Log.d("Zerokit", String.format("Logged in as: %s", result.getUserId()));

// Create new tresor

Zerokit.getInstance().createTresor().subscribe(tresorId -> Log.d("Zerokit", String.format("New tresor id: %s", tresorId));

// Encrypt

Zerokit.getInstance().encrypt(tresorId, "text").subscribe(encryptedText -> Log.d("Zerokit", String.format("Encrypted text: %s", encryptedText));

// Share

Zerokit.getInstance().shareTresor(tresorId, userId).subscribe(operationId -> ());

// Initialize SDK

zkit_sdk.setup("", "/tenant-yourTenantId");

// Load the login iframe where we capture the users password

var zkit_login = zkit_sdk.getLoginIframe(document.getElementById('container'));

// Log the user in after they entered their password

zkit_login.login(userId).then(function () {

// Create a tresor this is an encrypted, sharable keychain.

return zkit_sdk.createTresor().then(function (tresorId) {

// Encrypt a some sensitive data using that keychain, e.g.: SSN

return zkit_sdk.encrypt(tresorId, text).then(function (encryptedText) {

// Save the encrypted data on your servers: only members of the tresor can decrypt it

return console.log('save-encrypted-text', { data : encryptedText });

}).then(function () {

// Add a member to a tresor, e.g.: the doctor that you grant access to

return zkit_sdk.shareTresor(tresorId, userId);




Hacker-proof encryption

  • $50K prize
  • 1056 hackers
  • 468 days
  • 0 hacks

“More than 1,000 hackers, including MIT, Stanford and Harvard have failed to break in”

See companies who use ZeroKit to make their apps secure

The Diary Corporation supports health organizations to reduce cost and improve the delivery of care in order to achieve the best possible outcomes. Their mobile care management platform The Diary CarePro™, automates care team workflow while promoting patient participation., Switzerland-based startup redefines the way people find and book the best healthcare provider as easy as we find and book restaurant tables or hotel rooms today. Beyond managing the discovery and booking process, Dr.Near.Me also end-to-end encrypts patient data and health records.

Caret transforms your address book into a useful view of your contacts' availability and status. Caret exchanges automated status updates with your approved contacts, such as call availability, calendar events, location triggers, local time and timezone information

Safetuned is a "zero knowledge" end-to-end encrypted module for Liferay, the open source enterprise portal and digital experience platform for healthcare organizations, banks, education and government - built by Platinum Liferay partner, Webtown

AYO is the most personal way to discover and connect with friends in real-time. AYO enables you to request anything you want to discuss or experience using live video streaming! You can also chat privately and securely using AYO's end-to-end encrypted, private messenger.

SDK Pricing

User authentication

Protect your user accounts with zero-knowledge user authentication

Free for up to 1,000 monthly active users

1¢ per monthly active users beyond

User authentication + Encryption

Protect your users' identity and data by end-to-end encryption beyond secure authentication

Free for first 1,000 operations

$89 for every 100,000 operations beyond

*Operations: encrypt, decrypt, share

For support, contact us at


“The security firm Tresorit offers increased privacy options to developers using Apple's CareKit platform. This option will help apps reach HIPAA compliance.”

Digital Trends

“Tresorit, the encrypted cloud storage company launches free end-to-end encryption services for nonprofits and activists to secure their communications and data.”

Business Insider

“Apple is increasing the security of CareKit, its health app framework, by offering an integration with ZeroKit, developed by security firm, Tresorit.”

tom's IT PRO

“Tresorit is among the top companies that compete in secure cloud storage, and it offers lots of flexibility for businesses.”


“More than 1,000 hackers, including MIT, Stanford and Harvard have failed
to break into Tresorit's system”

Tech Republic

“Tresorit is an enterprise cloud standout with security features galore”

  • Mashable Mashable
  • Digital Trends Digital Trends
  • Business Insider Business Insider
  • tom's IT PRO tom's IT PRO
  • Tech Republic Tech Republic