Security Overview
Last updated: May 2026
Security and privacy are important parts of DearFile. Our goal is to reduce risk and protect information using layered safeguards.
Encryption
Information in your People, Accounts, Wishes, and Note sections is protected using authentication, access controls, and encryption in transit and at rest. These sections may be processed by DearFile systems to provide features such as sharing, reminders, and PDF export.
Account protection
DearFile uses account authentication and access-control systems designed to reduce unauthorized use. To keep your account secure:
- Do not share your sign-in link with others
- Review your trusted contact settings periodically
Infrastructure
DearFile uses modern infrastructure and security tooling intended to improve protection and reliability, including encrypted connections, access restrictions, authentication protections, and monitoring systems.
- DatabaseSupabase (Postgres), encryption at rest
- HostingVercel, encrypted connections
- PaymentsStripe, card details never touch our servers
- EmailResend, transactional only
Security limitations
No online service can guarantee absolute security. DearFile uses technical and organizational safeguards intended to reduce unauthorized access risk. DearFile is not responsible for unauthorized access resulting from compromised credentials or devices outside our control.
Responsible disclosure
If you discover a security issue, please contact security@dearfile.com with a description, reproduction steps, and screenshots if available. We take all reports seriously and will respond within 48 hours. Responsible disclosure helps keep users safe.