How it works
1. Your file is encrypted with AES-256-GCM using the Web Crypto API
2. A random 256-bit key is generated in your browser
3. Image metadata is stripped at the byte level for JPEG/PNG, via Canvas for other formats
4. The filename and file type are encrypted separately
5. Only encrypted ciphertext is sent to the server
6. The key is in the URL fragment (#), which browsers never transmit
7. The server never sees your file, filename, or file type
8. Burn-after-download files are deleted after one retrieval
9. No IP addresses, cookies, or analytics are recorded for file drops
Limitations
Client-side encryption protects your data from the server operator,
network observers, and casual forensics. It cannot protect against:
• A compromised device (malware, keyloggers, screen capture)
• A compromised browser or malicious extensions
• Physical access to an unlocked device
For high-risk situations, use a trusted device with no extensions and a verified OS.