Your content is your business. Here's how we protect it.
All traffic between your browser and our servers is encrypted with TLS 1.3. Connections via Cloudflare with full SSL.
Passwords are hashed with bcrypt before storage. We never store or can see your plain text password.
All payments processed by Stripe. Your card details never touch our servers. Stripe is PCI DSS Level 1 certified.
Uploaded content is processed and stored in your personal vault. You can delete any file at any time. Deleted content is permanently removed.
Hosted on Hetzner (Germany) with encrypted storage. Your data stays in secure EU data centers.
DDoS mitigation, bot protection, and WAF rules via Cloudflare. Your account is protected from brute-force attacks.
We collect only what's needed to provide the service: email, usage data, and content you upload. No third-party trackers. No ads. Read our privacy policy.
JWT tokens expire after 24 hours. The app warns you before session expiry so you can save your work.
Found a security issue?