Files are encrypted in your browser before upload. We never see your content — not even we can read it.
or click to browse — any size, any type
Files are encrypted with AES-256-GCM in your browser before they leave your device. The encryption key lives only in the share link — our servers never see it.
We physically cannot read your files. The decryption key is in the URL fragment, which browsers never send to the server. Not even a court order could make us hand over readable data.
Drop files, set expiry, share the link. No sign-up, no email verification, no waiting. Send encrypted files in under 30 seconds.
When you upload files, your browser generates a random 256-bit AES-GCM key. Each file is encrypted locally using the Web Crypto API — the same standard used by banks and governments.
Only the encrypted version leaves your device. The key is appended to the share URL after the # symbol — this is the URL fragment, and browsers never send fragments to servers in HTTP requests.
When the recipient opens the link, their browser reads the key from the fragment, downloads the encrypted file, and decrypts it locally. End to end — no middleman ever sees the content.
| SecureTransfer | WeTransfer | Google Drive | |
|---|---|---|---|
| End-to-end encrypted | ✅ Yes | ❌ No | ❌ No |
| Zero knowledge | ✅ Yes | ❌ No | ❌ No |
| No account needed | ✅ Yes | ✅ Free tier | ❌ No |
| Free tier | 3 GB / 7 days | 2 GB / 7d | 15 GB (stored) |
| Provider can read files | ❌ Impossible | ✅ Yes | ✅ Yes |
| Open source | ✅ Yes | ❌ No | ❌ No |
Share contracts, case files, and privileged documents without risking client confidentiality.
Transfer patient records and medical files with encryption that satisfies data protection requirements.
Send project deliverables to clients with download tracking and automatic expiry.
Share photos, documents, or anything else without a big tech company scanning your files.