Question 1

How does Aegis protect my credentials?

Accepted Answer

Aegis encrypts credential material on the client side before sync operations and applies session and device checks before sensitive actions are allowed. The master key is derived locally and stays under user control.

Question 2

Can Aegis staff read my vault contents?

Accepted Answer

No. Aegis services handle encrypted vault payloads and policy metadata, but cannot decrypt your credential plaintext without your locally derived master key.

Question 3

Does Aegis support passkeys?

Accepted Answer

Yes. Passkey-first authentication is built into onboarding and ongoing account workflows, with support for modern platform authenticators.

Question 4

Can teams share credentials securely?

Accepted Answer

Yes. Shared vault workflows support invite, role management, and rotation paths so teams can collaborate without exposing core secrets.

Question 5

Where can I find security and compliance information?

Accepted Answer

See the Security and Compliance pages in the footer for architecture overviews, policy expectations, and governance alignment guidance.

Question 6

How do I get started quickly?

Accepted Answer

Open Onboarding from the Dashboard button in the header, complete setup, then move into Vault and Security Console workflows.

Question 7

How can I protect passwords better every day?

Accepted Answer

Use a unique password for every account, use a long master passphrase, and review weak or reused credentials monthly. The password protection guide includes a practical checklist.

Question 8

What should I do if one of my passwords is exposed in a breach?

Accepted Answer

Rotate the exposed credential immediately, enable stronger MFA or passkeys, review active sessions, and check for reused passwords across other accounts.