If this message does not dissapear then this service does not work in your browser.
Make sure JavaScript is enabled or use a different browser.
How does this work?
This service is designed to communicate sensitive information between two parties.
Any encrypted content that is never retrieved will be destroyed automatically upon the time limit set by the sender. This prevents data from sitting around indefinitely.
If it is detected that the hourly maintenance task is not working correctly then the service will halt all further activity until this takes place.
Other than the basic level of information needed to defend the platform from attack, both logging and backups are disabled by design.
If you require even more privacy please consider using a PKI platform instead.
Lifecycle of a message:
As a sender:
- Upon clicking the Protect Message button, a unique reference id is requested from the service provider.
- An encryption token is generated and the content is encrypted by the senders machine.
- The reference id and encryption token are then used to build a secure link on the senders machine which is presented to the sender. The service provider never sees the encryption token.
- The encrypted content is sent to the service provider to hold until the desired expiration options are met.
- The sender can now send the secure link to the recipient using their own desired communication method.
As a recipient:
- Upon clicking a secure link the encryption token is extracted and held on the recipient's machine. The service provider never sees this token.
- A request for the encrypted content is sent to the service provider by first passing through a firewall that protects the infrastructure.
- The service provider receives the request which has a series of protection mechanisms to pass through before returning any encrypted content.
- Once all of the security checks are complete, the service provider retrieves the encrypted content and returns it to the recipient. The encrypted content stored at the service provider is destroyed unless the option for a time based expiration is used.
- The recipient's machine generates a password using the encryption token from step 1. The password decrypts the content returned from the service. If the password is incorrect then the content is not retrievable and will need to be communicated again.
Please refer to the Security and Compliance section to see some of the steps we have taken to ensure platform safety.