Security

How we protect your files and data

HTTPS Everywhere

All connections are encrypted using TLS. Data in transit is always protected.

Secure Storage

Files are stored in Cloudflare R2, a globally distributed object storage system with enterprise-grade security.

Unguessable Links

Portal URLs use cryptographically random identifiers. Links cannot be guessed or enumerated.

Password Protection

Pro users can add password protection to portals. Passwords are hashed and never stored in plain text.

Expiry Controls

Set expiration dates on portals to automatically revoke access after a deadline.

Authentication

Account access is secured via Google OAuth. We never handle or store your password.

ClientFiles does not hold security certifications (SOC 2, ISO 27001, etc.). If your use case requires certified compliance, please evaluate accordingly.