🔐 SendSecure

Privacy Policy

Effective date: 2025

At SendSecure, your privacy is our top priority. This Privacy Policy explains what data we handle, how it’s protected, and our commitment to keeping your communications completely private.

What We Store

SendSecure is designed as a zero-knowledge platform. We never have access to your plaintext messages, passwords, or attached files. The only data stored on our servers are:

• Encrypted messages (ciphertext only).
• Encrypted file blobs, if you attach a file (maximum 25 MB).
• Randomly generated salts and initialization vectors (IVs) needed for decryption.
• Metadata such as creation and expiry timestamps.

None of this data can be used to reconstruct your message or file without your password, which is never transmitted to us.

How Your Data Is Protected

• All encryption and decryption occur entirely in your browser using the WebCrypto API. Our servers never see your password or plaintext data.
• Messages and files are encrypted with AES-GCM 256-bit symmetric encryption, using keys derived from your password via PBKDF2-SHA-256 with 500,000 iterations.
• Each message and file uses its own random salt and IV, ensuring that even identical content produces unique ciphertext.
• After a message or file is viewed once, both are permanently deleted from our servers.
• If never accessed, encrypted data is automatically deleted after its configured expiry (1 to 7 days, depending on your selection).

Cookies and Tracking

SendSecure does not use cookies, tracking scripts, analytics, or advertising of any kind. Your browsing activity is not monitored or logged for analytics or marketing purposes.

Third-Party Disclosure

We do not sell, rent, share, or transmit any user data to third parties. There are no integrations with advertisers, social networks, or analytics providers.

Data Security

SendSecure operates on secure servers and follows best practices for file handling and deletion. Even in the unlikely event of a server breach, all stored data would remain cryptographically unreadable without the user’s password.

Your Consent

By using SendSecure, you agree to this Privacy Policy. If changes are made, they will be reflected on this page along with an updated effective date.

Contact

If you have questions about this Privacy Policy or about SendSecure in general, contact:
[email protected]