Security at Securanote

Understanding how we protect your information.

Our Commitment to Security

At Securanote, the security and privacy of your shared information are paramount. We are committed to employing robust security measures to protect your data throughout its lifecycle on our platform.

Key Security Features

Client-Side Encryption

All secrets shared through Securanote are encrypted directly in your browser using the strong AES-GCM algorithm before being transmitted to our servers. The encryption key is derived from the password you set (or that we generate for you). This means we never store the plaintext of your secret content.

Access Control

You control who can access your shared secrets through a unique, system-generated password. Additionally, you can set time limits for how long a secret is available and limit the number of times it can be viewed.

Encryption at Rest

Data stored in our Firebase Firestore database, including the encrypted secret content, is automatically encrypted at rest by Google Cloud, providing an additional layer of security for the underlying storage.

Secure Transmission (HTTPS)

All communication between your browser and Securanote servers is encrypted using HTTPS (TLS/SSL), ensuring that your data is protected while in transit over the internet.

User Responsibilities

While we provide strong security measures, the overall security of your shared information also depends on you. You are responsible for:

  • Securely managing and sharing the access passwords for your secrets.
  • Ensuring the individuals you share secrets with are trustworthy.
  • Using a strong and unique password for your Securanote account.

Disclaimers

Securanote is provided "as is." While we strive to ensure the security and reliability of the service, we cannot guarantee that it will be infallible or that access to it will be continuous or uninterrupted. You are responsible for the security of any access passwords you share. Do not use this service for illegal activities or to share content that infringes on the rights of others.

Reporting Security Concerns

If you believe you have found a security vulnerability in Securanote, or have any security-related questions, contact us immediately at info@securanote.com.