Enkripsiestandaarde

U data is op elke stadium geënkripteer—TLS 1.2+ tydens oordrag en AES-256-GCM in rus. Nywerheidsstandaard enkripsie waarop u kan vertrou.

Enkripsie tydens Oordrag

Alle data wat tussen u blaaier en ons bedieners oorgedra word, is geënkripteer met TLS.

Sensitiewe data wat in ons databasis gestoor word, is geënkripteer met AES-256-GCM.

1
Encrypted connection
Every request travels over TLS 1.3 with Perfect Forward Secrecy. No plaintext ever crosses the wire.
2
In-memory processing only
Presidio AI analyzes and anonymizes text entirely in RAM. Your original content is never written to disk or stored in a database.
3
Keys derived with Argon2id
User encryption keys are derived from your password using Argon2id — the winner of the Password Hashing Competition — before being wrapped with AES-256-GCM.
4
Zero-Knowledge key storage
Your wrapped key is stored encrypted. The server never sees your plaintext key or password. Only you can unwrap it.
5
Asymmetric option with RSA-4096
For multi-party workflows, RSA-4096-OAEP encapsulates a session key so only the private key holder can deanonymize output.

Standard	Use Case	Key / Strength
TLS 1.3	Data in transit	ECDHE + AES-GCM
AES-256-GCM	Data at rest	256-bit
XChaCha20-Poly1305	Zero-knowledge key storage	256-bit
Argon2id	Password key derivation	PHC winner
RSA-4096-OAEP-SHA256	Asymmetric key encapsulation	4096-bit

Sien ons volledige sekuriteitsdokumentasie.