Feature: Encrypted File Storage
End-to-end encrypted file storage and sharing with zero-knowledge security built for business.
All files stored in Keeper are encrypted with AES-256 at the record level. Keys are generated locally on the device and protected by Keeper's zero-knowledge architecture. Only the user who owns the record, or the individuals the record is shared with, can decrypt the attached files.
Keeper derives authentication keys with PBKDF2 using 1,000,000 rounds from the user's master password, generating encryption keys locally. Admins can enforce Multi-Factor Authentication (MFA) and connect existing Identity Providers (IdPs) using Keeper SSO Connect®.
Easily share vault items across teams with fine-grained permissions and role-based access. For external users, like vendors or contractors, use One-Time Share to grant secure, time-limited access without requiring a Keeper account.
Keep employee records, contracts, financial documents, creative assets and more organized in a single location. Files are private by default, accessible only to authorized users and available across web, desktop and mobile.
Keeper enables admins to securely transfer passwords, passkeys, credentials and files to designated managers, to ensure that critical access is retained from former employees. Simply lock the vault of the decommissioned employee, transfer the contents to the recipient and delete the old account.
Keeper Secrets Manager is an SDK for DevOps users. Using Secure File Storage, engineers can upload digital certificates and SSH keys as file attachments, and then use Keeper's CI/CD and IAC tools to easily and securely retrieve files during automation workflows.
Keeper's bidirectional sharing enables users to send an encrypted link to any recipient, including non-Keeper users, to upload file attachments and enter any other requested information. The changes are saved directly in the Keeper Vault.
Keeper applies a zero-trust access model and zero-knowledge encryption architecture. Every access request is fully authenticated and authorized, and only end users can decrypt data. Keeper cannot access vault contents, supporting full data sovereignty and regulatory compliance.
Integrate CI/CD pipelines, DevOps tools, custom software and multi-cloud environments into a fully-managed, zero-knowledge platform to secure infrastructure secrets and reduce secrets sprawl.
Employees access credentials, passkeys, secrets and encrypted files from a unified and intuitive vault interface. This simplifies workflows, reduces training costs and strengthens adoption across the organization. Keeper integrates with all major IdPs to streamline provisioning and access control.
Secure File Storage in Keeper allows you to upload and store sensitive files, photos, videos and documents directly in your Keeper Vault. All files are encrypted using zero-knowledge encryption; only the user has access to the decryption keys. This ensures that Keeper cannot access your files, maintaining complete privacy and security.
Files are encrypted locally on the user's device before they are uploaded to the Keeper Cloud and remain encrypted in transit and at rest.
Keeper can securely store virtually any type of file, including:
You can upload files as attachments to any vault record or store them in a dedicated "File Attachment" record type.
Individual file attachments can be up to 100MB each. The total amount of storage depends on your Keeper subscription plan.
There's no limit to the number of files you can store, as long as you stay within your storage quota.
Yes, Keeper supports secure sharing of files with people who don't use Keeper through the One-Time Share feature. This allows you to create a time-limited, single-use link to a specific vault record (including its file attachments) without requiring the recipient to sign up for Keeper.
You must accept cookies to use Live Chat.