Private Photo Vault : CL is the kind of utility you should never trust with private photos.

Private Photo Vault : CL is a free iOS utility from DONNA INFOTECH that promises a passcode-protected on-device gallery for photos and videos. The basic model is the standard photo-vault pattern: import images from the iOS camera roll into the app's sandboxed storage, hide them behind a PIN or biometric, optionally delete the originals from the camera roll.

The category itself has a long history on iOS. Apple's own Hidden album (within the Photos app) and the Locked-Hidden album feature shipped in iOS 16 cover the basic use case for free, with system-level integration. Third-party photo vaults compete by offering features Apple's hidden album does not — decoy passcodes, intruder selfies, encrypted cloud backup.

Free with advertising in this app's case. The release date on the App Store entry is November 2023. There is no surfaced public review count, no developer track record visible for DONNA INFOTECH outside this single utility, and no published encryption specification for the on-device storage.

The basic feature — a passcode-locked photo album that hides images from the main Photos app — is technically straightforward to implement on iOS, and most builds in the category deliver it functionally. For users who want to hide photos from someone with brief physical access to their unlocked phone (a curious child, a partner glancing at a screen), a passcode-locked sandboxed album does the job at the level of casual privacy.

Free is genuinely free here in the no-IAP-required sense. The app is ad-supported but doesn't gate the core lock-and-hide function behind a paywall.

Photo-vault apps from unknown developers are a known security-risk category. The trust model requires the developer to handle the most sensitive content on a user's device — intimate photos, financial documents, identity papers — and most photo-vault users are choosing the app specifically because the content is sensitive. A developer with no track record, no published security specification, and no audit history is asking the user to take that trust on faith.

The history of the category is not reassuring. Multiple photo-vault apps across both iOS and Android have been investigated for unauthorised cloud uploads, plaintext storage of "encrypted" photos, and operator-side access to user content. Apple's review process catches the worst behaviour, but App Store review is not a security audit. There is no surfaced way for a user of this specific app to verify what the storage actually does.

Apple's built-in Hidden album, locked behind Face ID since iOS 16, makes the vast majority of this app's use case unnecessary. The system feature is more trustworthy than any third-party vault by definition: Apple's security model is published, audited, and integrated with iCloud's end-to-end encryption tier where the user has enabled it.

Use the Hidden album in Apple's Photos app. It ships free with iOS, requires Face ID or a passcode to view since iOS 16, and is part of Apple's published security model. Third-party photo vaults from established privacy-focused publishers (Cryptomator, Bitwarden Send for one-off transfers) cover edge cases the Hidden album doesn't. An unknown-developer free vault is the wrong tool for genuinely sensitive content. Private Photo Vault : CL is in a category where "free, unknown developer" is, by itself, a meaningful red flag.