ProtectedShare
untitled.txt — ProtectedShare

Privacy Policy

Last Updated: June 2026

1. Commitment to Privacy

At ProtectedShare, we operate a zero-knowledge service. We believe you should not have to sacrifice privacy for convenience. Our infrastructure is specifically engineered so that we do not have access to, nor store, any of your private keys or unencrypted documents.

2. Encryption & Data Security

All encryption is performed locally inside your web browser before transmission using the **AES-256-GCM** authenticated encryption standard. The decryption key remains strictly within your device (embedded in the URL hash fragment or custom passwords you define) and is never transmitted to or processed by our servers.

3. Zero-Knowledge Notepad Syncing

For the Encrypted Notepad (Workspace) feature, multi-device synchronization is achieved using an entirely zero-knowledge architecture:

  • **Anonymous Usernames:** Usernames are hashed client-side using a SHA-256 fingerprint before being sent to our database. We do not store or know the actual usernames of registered notepads.
  • **Proof of Password:** Your master password never leaves your browser. Instead, a SHA-256 hash digest is derived to prove ownership and authenticate workspace actions.
  • **Client-Side Cryptography:** Your notepad is encrypted in your browser using AES-256-GCM before it is synced to the database. We cannot read, analyze, or decipher your notebook notes.

4. Information We Collect

  • **User Accounts:** We require no signup, registration, email addresses, or accounts. You are fully anonymous.
  • **Usage Logs:** We do not track IP addresses, user agents, or deploy tracking beacons.
  • **Cookies:** We use no cookies or local tracking tags.

5. Ephemeral Storage (Auto-Destruction)

Encrypted messages generated via EnvShare are automatically deleted from our database after they exceed their read limit (1, 3, 5, or 10 reads) or expire according to the chosen TTL (1 hour, 24 hours, or 7 days). Secure Notes are deleted at the end of their expiration timer or immediately upon the first view if the optional burn-after-reading checkbox is selected.

6. Host / Administrator Zero-Access Guarantee

Because all decryption keys are kept locally on client devices, the host, administrator, or hosting providers (including Cloudflare) are mathematically locked out of your data. We have zero means of reading, restoring, or decrypting any of the content stored on our systems.

7. Contact Us

If you have questions regarding this privacy policy, please contact our administration at admin@protectedshare.me.