Privacy Policy

Last updated: March 2026

SoulProp is designed so that your privacy is structural. We built the system so we could never access your files, even if we wanted to. This protects you and it protects us. What follows is an honest account of what we store, what we collect, and what remains permanently outside our reach.

Zero-Knowledge Design

When you seal a file, it is encrypted on our servers with a unique key generated for that file alone. The key is returned to you once and then permanently deleted. We never retain a copy. The encrypted file is stored, but without your key it is unreadable.

We cannot decrypt your files. Even if compelled by law enforcement, we can only provide encrypted data that is useless without your key. This is a property of the architecture, not a policy we could choose to override.

What We Store

Encrypted files

Your file, encrypted. Stored for seven years. We cannot read it.

Fingerprints

A SHA-256 hash of your original file, used to verify integrity on reveal. The hash cannot be reversed to recover your file.

Timestamps

An RFC 3161 timestamp from an independent certificate authority, recording when the seal was created.

Key verification hashes

A hash of your encryption key, used to verify your key on reveal. The key itself is never stored.

What We Collect

We collect minimal telemetry for service operation: page views and feature usage events. This helps us understand how the product is used and where it breaks. We do not track you across the web, build behavioral profiles, or share this data with anyone.

Beta users provide an email address for account access. IP addresses are logged temporarily for rate limiting and abuse prevention. We do not use third-party analytics, advertising networks, or data brokers.

Key Ownership

Your .soulprop key file is the sole proof of ownership over a sealed file. Whoever holds the key controls access. We cannot recover, reset, or reissue keys. This is by design. If you lose your key, the sealed file remains intact but permanently inaccessible. Back it up accordingly.

Data Retention

Sealed files are stored for seven years. After expiration, the encrypted file is permanently deleted. Metadata records are retained for audit purposes. You may request early deletion of a sealed file by providing your key file as proof of ownership.

Automatic resealing is on the roadmap. When available, sealed files approaching their retention limit will be re-encrypted and re-timestamped, extending their protection without requiring manual intervention. Until then, you can reseal any file by downloading it through the reveal process and sealing it again.

Third Parties

FreeTSA provides our RFC 3161 timestamps. They receive only the fingerprint of your file, never the file itself. No other third parties receive your data.

Cookies

We use only essential cookies for basic functionality, such as remembering your beta access locally in your browser. No tracking cookies. No third-party cookies.

Contact

Questions about this policy or how your data is handled? Send us a message.