100% Local Processing

Private Document Summaries Entirely On-Device

VaultAI is a privacy-first Chrome extension designed to extract structured summaries from text and PDF files locally. No data is ever uploaded to a cloud.

Key Features

Sophisticated summarization and security capabilities powered by Chrome's native sandbox.

100% Local Inference

Runs locally in Chrome. Summarizations are processed on your system's hardware using Chrome's native Prompt API (Gemini Nano).

On-Device PDF Extraction

Drag and drop local PDFs directly into the extension. The text is parsed locally in your browser session without external parsing servers.

Domain-Specific Insights

Automatically classifies inputs to generate structured outputs appropriate for legal (key parties, dates, facts) or clinical medical documents.

Opt-In Rest Encryption

Secure your local summary history. Notes, summaries, entities, and verified status are encrypted locally with AES-GCM 256-bit encryption.

Client-Side Word Export

Compile and download summaries to standard Microsoft Word (.docx) files. The files are generated entirely in active memory without cloud rendering.

Isolated Q&A Sessions

Ask follow-up questions about the active document. Queries are processed in transient, local AI sessions that are immediately destroyed upon closure.

Zero-Cloud Architecture

How VaultAI guarantees absolute privacy for your sensitive documents.

The Zero-Cloud Invariant

No cloud AI is used. Document text is not uploaded to VaultAI servers. All document text, summaries, and notes are processed directly in the local sandbox of Google Chrome on your computer. The extension does not configure or permit external network connections for summarization or analysis.

Unlike conventional AI services that transmit documents to cloud clusters—introducing potential compliance exposures—VaultAI keeps your processing entirely local.

Local Storage Model: All saved history is stored locally within your Chrome profile. Matter and tags are stored as local plaintext metadata to enable fast searching and filtering, while sensitive fields (summaries, extracted parties, dates, facts, notes, and verification flags) are encrypted at rest.

System Requirements & Flag Setup

VaultAI utilizes built-in APIs that require Google Chrome and experimental model configuration.

Experimental Chrome Flags Required

Chrome experimental flags are required to enable local Gemini Nano model storage and prompt interfaces. Please follow the configuration instructions below exactly to enable on-device AI.

  1. Open Flag Interface: Open a new tab in Google Chrome, type chrome://flags in the address bar, and press Enter.
  2. Configure Model Storage: Search for AI Model Storage (or `#optimization-guide-on-device-model`) and set it to: Enabled BypassPerfRequirement. This ensures Chrome downloads model weights even on systems with strict power or performance constraints.
  3. Configure Prompt API: Search for Prompt API for Gemini Nano (or `#prompt-api-for-gemini-nano`) and set it to: Enabled.
  4. Relaunch Chrome: Click the Relaunch button at the bottom of the flags page to restart Google Chrome completely.
  5. Wait for Model Download: Open the VaultAI side panel. It may take a few minutes for Chrome to download the local Gemini Nano model weights in the background. You can check status directly in the onboard wizard.

Important Disclaimers & Security Details

Understanding key sovereignty, accuracy limits, and processing boundaries.

Passphrase Recovery Warning

Optional passphrase protection is available to wrap your local device key using PBKDF2-SHA-256. Because VaultAI is fully local, there are no cloud accounts, backup databases, or recovery servers. If the passphrase is forgotten, saved local history cannot be recovered. Make sure to keep a record of your passphrase.

AI Output & Advice Disclaimer

AI outputs must be reviewed by the user. VaultAI utilizes on-device language models (Gemini Nano) which may produce outputs that contain errors, omissions, or inaccuracies. The outputs do not constitute, and should not be used as a substitute for, licensed professional legal, medical, financial, or regulatory compliance advice. Users must manually verify all generated summaries, dates, facts, and parties before relying on them.

Frequently Asked Questions

Common queries regarding VaultAI's local infrastructure and security model.

Is my document text sent to any server?

No. VaultAI operates under a strict Zero-Cloud Invariant. No document text or summaries are ever transmitted over the network or uploaded to VaultAI servers. All processing is isolated to your local device.

Is my local history secure?

Yes. By default, VaultAI encrypts summaries, notes, dates, facts, and parties at rest using AES-GCM 256-bit encryption. For robust security, you can enable Passphrase Protection, which deletes the raw encryption key from disk and wrapping it with a key derived from a passphrase you define. Plaintext is only held in temporary browser memory while the side panel is open.

Why does VaultAI require Chrome experimental flags?

VaultAI uses Google Chrome's built-in Prompt API (powered by Gemini Nano). Because these APIs are currently experimental in Chromium, users must enable browser configuration flags to allow model storage allocation and access to Prompt API interfaces.

Can I recover my data if I forget my passphrase?

No. VaultAI does not maintain any backup infrastructure. There is no password reset mechanism. If you forget your passphrase, all saved summaries remain encrypted on your device and are permanently unrecoverable.

Does the extension support OCR for scanned PDFs?

No. VaultAI parses PDF files using local web APIs to extract text. If a PDF is scanned or image-based with no embedded text layer, VaultAI will display a local error indicating that no readable text was detected. It does not perform optical character recognition (OCR).