Emergency Access

Life is unpredictable. Emergency Access lets you designate people you trust — a family member, a business partner, a close friend — who can request read-only access to your vault if something happens to you. Your data stays encrypted until you approve the request, and even then, Passwall never sees the decrypted content.

Think of it as a digital safety deposit box with a trusted key holder.

Why you need Emergency Access

Your vault holds the keys to your entire digital life — bank accounts, medical portals, business logins, crypto wallets, insurance documents. If you become incapacitated or pass away, that critical information could be locked away forever.

Emergency Access solves this problem without compromising security. Instead of writing your master password on a sticky note (please don't), you set up a cryptographically secure trust relationship with someone you choose. They can never peek at your data behind your back — every access request triggers a notification and requires your explicit approval.

Common use cases

  • Families — A spouse or adult child who can access essential accounts in a medical emergency.
  • Business partners — Ensure critical company credentials are recoverable if a key person is unreachable.
  • Digital estate planning — Part of a responsible digital legacy strategy alongside legal wills and powers of attorney.
  • Solo founders — Safeguard customer data and infrastructure secrets so your team is never locked out.

How it works

Emergency Access is built on a simple, auditable flow with five clear stages:

  1. Invite — You send an invitation to someone by email. They receive a notification that you'd like them to be your emergency contact.
  2. Accept — The invitee signs in to Passwall and accepts the invitation, confirming their identity.
  3. Confirm & Key Exchange — You confirm the relationship. Behind the scenes, your User Key is encrypted with the contact's RSA public key and stored on the server. This key exchange is the cryptographic foundation that makes zero-knowledge emergency recovery possible.
  4. Request & Approve — When the emergency contact needs access, they submit a recovery request. You receive a notification and can approve or reject it instantly.
  5. View Vault — Once approved, the contact decrypts your User Key with their own RSA private key and can view your personal vault in read-only mode. After the session, the access resets automatically.

Key principle

At every stage, you are in control. No one can access your vault without your explicit approval. Passwall cannot bypass this — the server never has your decrypted keys.

Setting it up

Setting up Emergency Access takes less than two minutes:

  1. Go to Settings → Emergency Access in the web vault.
  2. Click Add Trusted Contact and enter the email address of the person you trust.
  3. They'll receive an email invitation. Once they accept, you'll see their status change to "Accepted."
  4. Click Confirm next to their name. This triggers the secure key exchange — your User Key is encrypted with their public key.
  5. Done! Their status will show "Confirmed" and they can now request access in an emergency.

Important

The person you invite must have a Passwall account. If they don't have one yet, they can create a free account before accepting your invitation.

Requesting access (for trusted contacts)

If you're someone's trusted emergency contact, here's how the process works from your side:

  1. Go to Settings → Emergency Access. You'll see a "People Who Trust Me" section.
  2. If an invitation is pending, click Accept to confirm your role as their emergency contact.
  3. When you need access, click Request Access. The vault owner will be notified immediately.
  4. Once the owner approves, a View Vault button appears. Click it to decrypt and view their personal vault in read-only mode.

The vault view is read-only — you can see the credentials but cannot edit, delete, or export them. After you close the vault viewer, the access automatically resets back to the confirmed state.

Zero-knowledge security

Emergency Access is designed with the same uncompromising zero-knowledge architecture that protects every piece of data in Passwall:

  • RSA key wrapping — Your User Key is encrypted with the trusted contact's RSA-OAEP public key. Only their corresponding private key can decrypt it. The server stores only the encrypted blob.
  • No master password sharing — Your master password is never transmitted, stored, or shared. The underlying User Key (derived during account creation) is what gets wrapped — and it never changes when you update your password.
  • AES-256-CBC + HMAC-SHA256 — All vault items remain encrypted with this symmetric scheme. The trusted contact decrypts your User Key first, then uses it to decrypt individual items — entirely in their browser.
  • Server is blind — Passwall's servers never see your decrypted User Key or any vault contents. We facilitate the key exchange, but we cannot read the data.
  • Personal vault only — Emergency Access provides access to your personal vault. Organization and shared team vaults are not exposed, protecting corporate data boundaries.

Technical detail

Changing your master password does not invalidate existing emergency access relationships. Your User Key remains constant — only the Protected User Key (User Key encrypted with your Master Key) changes. The RSA-wrapped copy held by your trusted contact stays valid.

Managing trusted contacts

You have full control over your emergency contacts at all times:

  • Revoke anytime — Remove a trusted contact instantly. Their encrypted key copy is deleted from the server and they can never request access again.
  • Reject requests — If a recovery request seems suspicious or premature, reject it with one click. The relationship stays intact for future legitimate requests.
  • Multiple contacts — Add as many trusted contacts as you need. Each one has an independent key exchange and separate approval flow.
  • Status visibility — See the real-time status of each relationship: Invited, Accepted, Confirmed, Recovery Requested, or Approved.

Email notifications

Passwall sends email notifications at every critical step to keep both parties informed:

EventRecipientWhat it says
Invitation sentTrusted contact"[Name] has added you as a trusted emergency contact"
Invitation acceptedVault owner"[Contact] has accepted — please confirm to complete setup"
Recovery requestedVault owner"[Contact] is requesting emergency access — review now"
Recovery approvedTrusted contact"Your emergency access has been approved — view the vault"

Frequently asked questions

Can my trusted contact access my vault without my approval?

No. Every recovery request requires your explicit approval. You are notified by email the moment a request is made, and you can reject it instantly.

What if I'm unable to approve (e.g., medical emergency)?

In the current model, approval is required. We recommend discussing your emergency plan with your trusted contact ahead of time and considering legal instruments (like a power of attorney) that could authorize someone to act on your behalf to approve the request from your device.

Can they modify or delete my data?

No. Emergency Access is strictly read-only. Your trusted contact can view your vault items but cannot edit, delete, or export them.

Does changing my master password break the emergency access?

No. Your User Key remains the same when you change your master password. The encrypted copy held by your emergency contact stays valid.

Can Passwall staff access my vault through this feature?

Absolutely not. Passwall is a zero-knowledge platform. We never have access to your encryption keys. Emergency Access works entirely through client-side cryptography — the server only stores encrypted blobs that are meaningless without the recipient's private key.

Does Emergency Access expose my organization's shared data?

No. Emergency Access only provides access to your personal vault. Items in organization and team vaults are never included.

Is there a limit to how many contacts I can add?

No. You can designate as many trusted contacts as you like. Each has an independent, isolated key exchange.

What happens after my contact views the vault?

Access resets automatically to the "Confirmed" state. They would need to submit a new request and get your approval again for any future access.

Protect the people who matter most

Emergency Access is available on all Passwall plans. Set it up today — it takes less than two minutes and could make all the difference when it matters most.

Start FreeRead the Security Model →Browse all docs →