# Why is it safe?

Since the Vultiserver always holds only one Vault Share, it will never be able to sign a transaction on its own without the participation and consent of the user, even in the event that the server is compromised.\
\
In addition, the server is configured so that it can never initiate a transaction; it can only be a participant in the key signing process.\\

In the event that the Vultisig server is offline, the user will still need the threshold majority required to perform Keysign ceremonies.

The Vultisigner's password-encrypted Vault Share which was emailed to the user during setup must be stored securely by the user (at a separate location from the user's own device's Vault Share) for this reason.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.vultisig.com/infrastructure/what-is-vultisigner/why-is-it-safe.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.