Geslar logo
Geslar

Your team's passwords —
under European control.

Geslar is a zero-knowledge password manager from Croatia: your data stays in the EU, encrypted on your device, and neither we nor your administrator can read its contents. Shared Vaults, access control, audit and offboarding — with no dependency on foreign services.

Europe is taking back control of its data. As the EU increasingly moves away from dependence on foreign IT services, your company's passwords and credentials shouldn't live on infrastructure outside European jurisdiction. Geslar is the European alternative — built in Croatia, with data in the EU and a full zero-knowledge model.
Everything a team needs to share securely
Shared Vaults (collections)
Separate access by department — Marketing, Finance, IT — each team in its own Vault. Sharing is end-to-end encrypted: access is granted only to those you explicitly choose.
Role-based access control
Admin, manager, member or read-only — per Vault. Each employee sees exactly what they need, no more and no less. All from a central admin console.
Audit and reporting
Who accessed which record, when and from which device. Audit logs per Vault and company meet access-tracking requirements from NIS2 and your internal security policies.
Risk-free offboarding
When an employee leaves, their access is revoked in one move and exposed credentials are flagged for rotation. No forgotten shared passwords left alive after departure.
Security policies
Mandatory two-factor authentication, minimum password strength, session time limits and export controls. Policies are set company-wide and inherited down the structure.
Single sign-on (Enterprise)
SSO via SAML 2.0 and OIDC, plus automatic user provisioning and deprovisioning (SCIM) for Okta, Entra ID and Google. Authentication is separated from decryption — your identity provider never receives the key.
Why European companies choose Geslar
EU data residency
Data is stored and processed in the European Union, under European jurisdiction. No transfers to third countries and no exposure to foreign data-access laws.
Zero-knowledge — admins can't see contents
Everything is encrypted on the device (AES-256-GCM). Neither Geslar nor your administrator can read passwords — the admin manages access, not content. Security that doesn't depend on trusting the vendor.
Compliance: GDPR, NIS2, ISO 27001
Geslar is GDPR-compliant. Our architecture — encryption, roles, audit logs and policies — helps meet NIS2 (Art. 21) requirements and ISO 27001 controls, such as access management.
Local-first architecture
Data lives primarily on your devices, with the cloud used for secure sync. Work doesn't depend on a constant server connection, and you retain control over your own data.
Security direction: Geslar's architecture — encryption, access control, audit and policies — helps meet requirements such as GDPR, NIS2 and ISO 27001. For regulated industries we offer data residency and dedicated hosting — let us know your requirements.
Business plans

Per-user pricing, shown annually. Business plans are purchased with our help — send an inquiry and we'll prepare a quote and a trial period.

Enterprise
Custom
custom pricing and volume discounts
For larger organisations with advanced needs for identity, compliance and hosting.
Everything in Company
Single sign-on (SAML 2.0 / OIDC) + SCIM
Custom roles and advanced policies
Data residency / dedicated hosting
Event export (SIEM) and advanced audit
Dedicated support
MSP / partners
Coming soon
partner program in preparation
For managed service providers who manage passwords for multiple clients.
Multi-client console (multi-tenant)
Per-client isolation — the partner can't read secrets
Wholesale model and white-label

Business plans are not self-service — after your inquiry we prepare a quote, set up your company and open a 14-day trial. Prices exclude VAT.

Frequently asked questions
How do I buy a business plan?
Business plans are purchased with our help, not self-service. You send an inquiry, we prepare a quote based on the number of users, set up your company and open a 14-day trial with no obligation.
Where is our data stored?
In the European Union, under European jurisdiction. All data is end-to-end encrypted on the device before sending, so even in the cloud it remains unreadable without your keys.
Can an administrator see employees' passwords?
No. Geslar is zero-knowledge: the administrator manages access (who can enter which Vault) but cannot read the content. Employees' private Vaults stay completely private.
What happens when an employee leaves?
You revoke their access in one move. Credentials they were exposed to are flagged for rotation, so no shared passwords stay alive after departure.
Do you support SSO and automatic user management?
Single sign-on (SAML 2.0 / OIDC) and SCIM provisioning are part of the Enterprise plan. Authentication is separated from decryption — your identity provider never receives encryption keys.
Does Geslar help with compliance (GDPR, NIS2)?
Yes. Geslar is GDPR-compliant. Encryption, role-based access control, audit logs and security policies help meet the GDPR, Article 21 of the NIS2 directive and ISO 27001 controls (e.g. access management, audit, policies).
Ready for European control over your passwords?
Send an inquiry — we'll prepare a quote, a demo and a trial tailored to your team.