Security & Privacy

At BladeCloudify, your files are protected with client-side, zero-knowledge encryption, ensuring only you can access your data.

Zero-Knowledge Security

256-bit

AES-GCM Encryption

Client-Side

Zero-Knowledge

Cloudflare R2

Secure Storage

Expiring

Share Links

1. File Storage Infrastructure

BladeCloudify uses Cloudflare R2 for secure, scalable, and cost-efficient file storage:

  • Files are stored in globally distributed R2 buckets for high availability.
  • Zero egress fees ensure cost-effective access to your data.
  • Redundant storage across Cloudflare’s network guarantees durability.
  • Chunked uploads support large files (up to 25GB) for reliable transfers.

Client-Side Encryption & Decryption

BladeCloudify uses client-side encryption to ensure your files remain private. Encryption and decryption occur in your browser, so your passwords and unencrypted files never reach our servers.

  • Zero-Knowledge: Files are encrypted before upload using AES-256-GCM via the Web Crypto API.
  • Key Derivation: Passwords are processed with PBKDF2 (100,000 iterations, SHA-256) to derive secure encryption keys.
  • In-Transit: All uploads and downloads are secured with SSL/TLS (HTTPS).
  • At-Rest: Encrypted files are stored securely in Cloudflare R2 buckets.
  • Decryption: Files are decrypted in the browser after download, requiring the correct password.
  • Random salts and initialization vectors (IVs) ensure each file’s encryption is unique.

Secure File Sharing

Share files securely with full control over access:

  • Generate temporary, expiring download links for secure sharing.
  • Optional password protection for encrypted files.
  • No sign-up required, minimizing data collection.
  • Activity logging tracks downloads for transparency.
  • Support for large files (up to 25GB) with chunked uploads.

System Security

  • Regular security patches keep our infrastructure secure.
  • Firewalls and intrusion detection protect against unauthorized access.
  • Automated monitoring flags suspicious activity.
  • Periodic security audits ensure robust protection.

Privacy Commitment

Your Data, Your Control

With zero-knowledge encryption, only you can access your files. We never see your passwords or unencrypted data.

  • Your files are never accessed, sold, or shared.
  • No tracking or advertising based on your data.
  • Files can be permanently deleted upon expiration.
  • Minimal data collection—no sign-up needed for basic use.
  • Transparent privacy policy in plain language.

Responsible Disclosure

We value security researchers’ efforts to keep BladeCloudify safe.

  • Coordinated vulnerability disclosure process.
  • Prompt investigation and resolution of reported issues.
  • Recognition for responsible researchers.

Contact Our Security Team

For security concerns or vulnerability reports, reach out to our dedicated team.

[email protected]