Your files are protected by the same encryption standards used by governments and financial institutions worldwide.
Every file is encrypted with AES-256 before being written to disk. Encryption keys are managed by a dedicated KMS with automatic rotation every 90 days.
All data in transit is protected by TLS 1.3 with perfect forward secrecy. Certificate pinning prevents man-in-the-middle attacks on mobile and desktop clients.
When enabled, files are encrypted on your device before upload. We never see your decryption keys — even we cannot read your data.
Every access, download, share, and modification is logged immutably. Export logs to your SIEM or review them in our dashboard in real time.
Role-based permissions, IP allowlists, mandatory 2FA, and session management ensure only the right people access your files.
Our security team operates 24/7. We maintain a structured incident response plan with <1hr notification SLA for any suspected breach.
Type II certified. Annual audit by independent third parties.
Full compliance with EU data protection regulations.
Information security management system certification.
BAA available for healthcare organizations on Enterprise plans.