TL;DR: We Don't Collect Your Data

iSecureFile is built on zero-knowledge architecture. Your files are processed entirely in your browser. We never see, store, or have access to your files, passwords, or encrypted data. Period.

1. Our Privacy Commitment

At iSecureFile, privacy isn't just a feature - it's our core architecture. We've designed our service so that we literally cannot access your data, even if we wanted to. All file processing, encryption, and decryption happens locally in your web browser using the Web Crypto API.

2. Data We Do NOT Collect

Your files: Never uploaded to our servers
Your passwords: Never transmitted or stored
Encrypted content: Processed entirely client-side
File metadata: Stays on your device
Encryption keys: Generated and used only in your browser

3. Data We May Collect

To improve our service and provide basic functionality, we may collect minimal, non-personal data:

Anonymous usage analytics: Page views, tool usage counts (no personal identifiers)
Error logs: Technical errors to improve stability (no personal data)
Browser type: To ensure compatibility

This data cannot be linked to any individual user and contains no personal information.

4. Cookies

We use minimal, essential cookies for:

Remembering your preferences (like dark mode)
Basic session management (if you create an account)
Analytics (anonymized, can be opted out)

We do not use tracking cookies or share cookie data with third parties for advertising.

5. Third-Party Services

We may use the following third-party services:

Have I Been Pwned API: For breach checking (uses k-anonymity - your email/password is hashed locally, only hash prefixes are sent)
Payment processors: For premium features (they handle payment data, we don't store card numbers)

6. Data Retention

Since we don't collect your data, there's nothing to retain. Any anonymous analytics data is automatically purged after 90 days.

7. Your Rights

You have the right to:

Access any personal data we hold (usually none)
Request deletion of any account data
Opt out of analytics
Export your data (for premium accounts)

8. GDPR Compliance

We comply with the General Data Protection Regulation (GDPR). Our zero-knowledge architecture means we process minimal personal data. For EU users, you have all rights afforded under GDPR.

9. Children's Privacy

Our service is not directed at children under 13. We do not knowingly collect personal information from children under 13.

10. Changes to This Policy

We may update this privacy policy from time to time. We will notify users of any material changes by posting the new policy on this page with an updated date.

11. Contact Us

If you have any questions about this Privacy Policy, please contact us at:

Email: privacy@isecurefile.com

Technical Note

iSecureFile uses the Web Crypto API for all cryptographic operations. This API is built into modern browsers and provides access to cryptographic primitives. All operations (key derivation, encryption, decryption) execute within your browser's JavaScript runtime and never involve network requests with sensitive data.