Guide

How to hide photos on iPhone with a real private vault

The iPhone Photos app has a "Hidden" album, but it's not actually private — anyone who opens your phone can turn it back on. Here's how to hide photos the right way, with a Face ID + PIN protected vault and a decoy mode that fools snoopers into thinking they got in.

The short answer Don\'t use the iPhone Hidden album — it\'s discoverable. Use MemeScanr\'s Backroom vault, which is Face ID + salted PIN protected, brute-force lockout enforced, and ships a decoy vault that fools snoopers with a fake library on wrong PIN entry.

Why the iPhone Hidden album isn\'t private

The Hidden album in the Photos app is a toggle, not a secret. Anyone who opens your unlocked phone can go to Photos → Albums, scroll to Utilities, and see the Hidden album (if Settings → Photos → Show Hidden Album is enabled, which is the default on older iOS versions). Since iOS 16, Apple added Face ID authentication to open the Hidden album — an improvement, but still a visible album that signals "something private lives here." A determined snooper knows exactly where to look.

What a real private vault needs

  • Actual separation from Photos — not a filter or toggle, but a separate file store
  • Face ID plus PIN — so no single authentication failure opens the vault
  • Salted and hashed PIN storage — in the iOS Keychain, not in plaintext
  • Brute-force lockout — progressive delay on wrong attempts
  • Screen recording blur — so nothing leaks to iOS screen capture
  • Plausible deniability — a decoy vault that fools snoopers into thinking they got in

Set up Backroom in MemeScanr

  1. Install MemeScanr from the App Store and grant photo library access.
  2. Open the Backroom tab.
  3. Set a 6-digit PIN. Face ID enrolls automatically if you have it enabled on your device.
  4. In Backroom Settings, enable Decoy Mode. Pick a different PIN for the decoy vault — this is what opens when someone enters the wrong PIN three times on the main vault.
  5. Populate the decoy vault with neutral-looking content: a screenshot of a grocery list, some receipts, a photo of a flowerpot. It needs to look like a real (but boring) vault.
  6. Move your real private photos into the main Backroom vault. From the Photos app, share → More → MemeScanr Backroom. From inside MemeScanr, open Clean → Memory Lane and swipe up on any photo to send it to Backroom.

Verify the decoy works

Lock your phone, reopen MemeScanr, and enter the wrong PIN three times. You should land in the decoy vault — a believable library with nothing interesting. You should not see an error message, and you should not see any indication that a real vault exists. If you don\'t get the decoy, double-check that Decoy Mode is enabled and that the decoy has its own populated content.

Private vault FAQ

Is the iPhone Hidden album actually private?

No. The iPhone Photos app Hidden album can be revealed by anyone who opens Photos → Albums → toggles "Show Hidden Album" in Settings. Since iOS 16 the hidden album is Face ID locked by default, which is better, but it's still a known feature any iPhone user can check.

How is Backroom different from the iOS Hidden album?

Backroom is a separate vault inside MemeScanr. Photos moved to Backroom are removed from the iOS Photos library entirely. Backroom is protected by Face ID plus a salted PIN stored in the iOS Keychain, with brute-force lockout, screen recording blur, and a decoy vault that opens a fake library on wrong PIN entry.

What is the decoy vault?

When someone enters the wrong PIN three times, Backroom opens a decoy vault that looks like a real, unlocked vault with neutral fake content — a grocery list, a few receipts, a few photos of nothing important. The snooper sees what looks like a successfully-unlocked vault with nothing interesting and never knows the real vault exists.

Can I hide videos and notes too?

Yes. Backroom stores photos, videos, text notes (with optional self-destruct timers), voice memos, and documents. You can also shoot directly into the vault via Quick Capture so a photo never touches the main Photos app.

What happens to Backroom if I uninstall MemeScanr?

Deleting the app deletes the vault. Backroom is local-only — no cloud sync, no server — so export important items before uninstalling. This is a tradeoff: the local-only architecture is why there's no network attack surface at all.