Terms & Conditions

These Terms & Conditions ("Terms") form a legally binding agreement between you ("User" or "You") and po8o labs ("we", "us", or "our") governing your access to and use of the Card Vault application (the "App"). By downloading, accessing, or utilizing the App, you explicitly agree to be bound by these Terms.

The App securely stores, manages, and organizes your payment card credentials locally on your device. We are completely decoupled from your financial data: the App is not a payment gateway, processor, financial institution, or debt collector.

Privacy is fundamentally enforced through our zero-knowledge architecture. All sensitive financial data you input is immediately encrypted using AES-256 local encryption derived from your master password. We explicitly guarantee that the App does not transmit, route, intercept, or upload your credit data via network requests to any external server.

We cannot, under any circumstances, view, extract, decrypt, or recover your master password or the contents of your vault. All biometric authentication (e.g., Face ID, Touch ID) securely leverages your device's native operating system without exposing biometric templates to the App.

You hold sole responsibility for the physical security of your device and the strict confidentiality of your master password. Because po8o labs operates a strictly zero-knowledge platform, we have no technical capability to recover your master password.

In the event you lose or forget your master password, your encrypted data will permanently remain inaccessible. Resetting the App will irreversibly erase all locally stored vaults.

You may optionally configure the App to transmit locally encrypted backup blobs to a secure folder within your personal Google Drive or Apple iCloud account. This operation is fully discretionary.

Because the file transmitted is already encrypted with your master password before it leaves your device, neither we nor your cloud provider can access your decrypted information. Engaging this feature mandates your independent adherence to the respective cloud provider's terms of service and privacy policies.

For users residing in the European Economic Area (EEA) and the United Kingdom, we comply with the General Data Protection Regulation (GDPR) and UK GDPR by employing "Privacy by Design" principles. We do not collect, process, or act as a "Data Controller" or "Data Processor" for any of your personal or financial data entering the vault, as it never leaves your device.

Analytics or crash logs (if explicitly enabled by you through device settings) will be strictly anonymized. You fully retain your Right to Erasure and Right to Data Portability by simply deleting the App from your device or utilizing your local device capabilities.

California Residents (CCPA/CPRA): We do not "sell" or "share" personal information as defined under California law because your sensitive payment data never reaches our servers.

COPPA Compliance: The App is strictly intended for individuals legally permitted to possess payment cards. It is not directed at children under the age of 13.

MANDATORY BINDING ARBITRATION AND CLASS ACTION WAIVER: Any dispute, claim, or controversy arising out of or relating to these Terms or the App shall be resolved by binding, individual arbitration and not in a class, representative, or consolidated action or proceeding. You and po8o labs each agree to waive any right to a jury trial. The arbitration will be conducted by the American Arbitration Association (AAA) under its Consumer Arbitration Rules.

For users residing in India, these Terms comply with the Information Technology Act, 2000, and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011.

We do not intercept, collect, or store any "Sensitive Personal Data or Information" (SPDI) as defined under the SPDI Rules, as all financial information and credentials are encrypted and stored exclusively on your local hardware.

Grievance Redressal: In accordance with the IT Act, any grievances or discrepancies related to the App's operational mechanics can be addressed to our Grievance Officer via the contact methods on our official website.

THE APP IS PROVIDED "AS IS" AND "AS AVAILABLE" WITHOUT ANY WARRANTIES ENTIRELY, EITHER EXPRESS OR IMPLIED. TO THE FULLEST EXTENT PERMITTED BY LAW, PO8O LABS DISCLAIMS ALL WARRANTIES, STATUTORY OR OTHERWISE, INCLUDING BUT NOT LIMITED TO THE IMPLIED WARRANTIES OF MERCHANTABILITY, NON-INFRINGEMENT OF THIRD PARTIES' RIGHTS, AND FITNESS FOR A PARTICULAR PURPOSE.

We specifically disclaim liability for any unauthorized access to your device resulting from malware, operating system vulnerabilities, jailbreaking, or failure to secure your device.

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE JURISDICTIONAL LAW, IN NO EVENT WILL PO8O LABS, ITS DEVELOPERS, DIRECTORS, EMPLOYEES, OR AGENTS BE LIABLE FOR ANY DIRECT, INDIRECT, SPECIAL, INCIDENTAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, NOR ANY LOSS OF DATA, PROFITS, OR REVENUE, ARISING OUT OF OR IN CONNECTION WITH THE USE OF THE APP.

Your sole and exclusive remedy for any dispute, dissatisfaction, or claim of damages is to immediately stop using the App and uninstall it from your device.

In jurisdictions requiring a quantifiable liability cap by applicable law, po8o labs' total and cumulative financial liability to you for any and all claims shall be strictly and conclusively limited to the actual amount you paid to po8o labs directly for utilizing the App, or zero dollars ($0.00) if no such payment was made. You explicitly and irrevocably waive the right to seek any monetary compensation exceeding this sum.

We reserve the right to creatively or technically revise these Terms at our discretion. The updated Terms will be effective immediately upon publication within the App. Your continued use of the App operates as full consent and acceptance of the revised Terms.

For any formal legal inquiries, required notices, or to contact the Grievance Officer for Indian, EU, or US compliance matters, please visit our official domain: https://cardvault.po8olabs.com.