How are my files protected?
All files are AES-256 encrypted at rest and transferred via HTTPS (TLS). Each portal generates a unique, secure access link — no account is required for your clients. Filvacy applies end-to-end encryption based on a private key unique to your organization (your "vault"), generated in your browser and never transmitted in plaintext to our servers. By default, your files can only be decrypted by you and team members with access — Filvacy has no access to them. If you enable the Filvacy Recovery option, Filvacy holds an encrypted copy of your key and can access it solely through a formal recovery procedure, at your explicit request.
Who can see uploaded files?
Only you and team members with access to that portal. Files are isolated per organization — no sharing between clients.
Can I revoke a portal access link if it was sent to the wrong person?
Yes. From your dashboard, you can delete the portal immediately — the access link becomes instantly invalid and any files already uploaded are erased. If you simply want to start over with the correct address, create a new portal for the right recipient.
Where are the servers hosted?
Filvacy is hosted on cloud infrastructure in three regions: Canada (filvacy.ca), United States (filvacy.com), and Europe (filvacy.eu). Your data stays in the region where your account was created — no cross-region transfers.
Does Filvacy use tracking cookies?
No. Filvacy does not use any tracking, advertising, or third-party analytics cookies. Only essential cookies required for the service to function are used (session, language preference). No consent is required for these cookies.