Zero-knowledge · Role-based access · SAML SSO

Shared Password Vault
for Technical Teams

A zero-knowledge vault where your team can securely share passwords, API keys, SSH keys and credentials — with individual accounts, role-based access and a complete audit trail. Not a shared login. A proper team vault.

Start free Team password manager →

How a shared vault works

Zero-knowledge sharing — no one gets access to secrets they shouldn't have.

1

Create an organisation vault

Set up a vault for your team. Add members with appropriate roles — Admin, Member or Read-only.

2

Add shared secrets

Store passwords, API keys, SSH keys, recovery codes and notes. Each item is encrypted in your browser before being stored.

3

Team members decrypt locally

Authorised members fetch the encrypted items and decrypt them in their browser. The server never sees plaintext.

4

Audit every access

Every view, copy, edit and deletion is logged. See who accessed what and when — at any time.

What you can share

Passwords & logins

Website credentials, admin accounts, shared service logins.

API keys & tokens

Stripe, AWS, GitHub, Twilio, OpenAI — any API key.

SSH private keys

Server access keys with hostname and passphrase.

TOTP / 2FA seeds

Shared 2FA seeds for team accounts.

Recovery codes

Backup codes for shared accounts.

Secure notes

Encrypted free-text for deployment notes, runbooks, secrets.

Frequently asked questions

How does sharing work if everything is zero-knowledge?+

When you share a secret with a team member, the item is encrypted so that any authorised member can decrypt it using their own vault key. Each team member has their own account and their own vault key — they do not share a master password.

What roles can team members have?+

SealedKeys supports Admin (full access including member management), Member (read and write access to vault items) and Read-only (can view and copy but not edit or delete). Contractors are typically given Read-only access.

What happens when someone leaves the team?+

Remove their account from the organisation. From that point, they can no longer access the vault. The audit log shows which items they accessed — so you know which credentials to rotate as part of offboarding.

Is there a limit on team size?+

The free plan supports up to 3 members per organisation. The Pro plan at £3.49/user/month supports unlimited members.

Can I have multiple separate vaults for different teams?+

Yes. You can create multiple organisations within SealedKeys — for example, one for engineering, one for operations and one for contractors — each with separate member lists and access controls.

Related

Team password managerContractor accessZero-knowledge explained

Give your team a proper shared vault

25 items free. Up to 3 team members. No credit card required.

Start free See pricing →