Security at SendDeck

Security isn't a feature we bolted on — it's how we built the product. From infrastructure to access controls to content scanning, every layer is designed to keep your documents and your viewers safe.

Last updated: March 2026

TLS 1.3
All traffic encrypted
AES-256
Data encrypted at rest
20+
Content safety checks
PCI DSS L1
Payment security via Stripe
Infrastructure & Hosting
Your documents live on Google Cloud Platform — the same infrastructure trusted by Gmail, YouTube, and Fortune 500 companies.
Firebase Hosting with global CDN
All content served over HTTPS with TLS 1.3 encryption. Automatic SSL certificates for every document URL, including custom subdomains.
Cloud Firestore with encryption at rest
Document metadata, access controls, and analytics stored in Firestore with AES-256 encryption at rest and TLS encryption in transit.
Cloud Storage with signed URLs
Uploaded files stored in Firebase Cloud Storage with server-side encryption. Download URLs are time-limited signed tokens — never raw public links.
99.9% uptime SLA
Backed by Google Cloud's infrastructure SLA. Multi-region redundancy ensures your documents are always available when your viewers need them.
Access Control
Every document on SendDeck is private by default. You control exactly who can see your content and for how long.
Authentication-gated viewing
Private documents require viewers to sign in before accessing content. No anonymous access unless you explicitly make a document public.
Email-based invitations
Invite specific people by email. Recipients must verify their identity before viewing. You see exactly who accessed your document and when.
Password protection
Add a password layer on top of authentication. Passwords are hashed with bcrypt before storage — we never store plaintext passwords.
Link expiry & view limits
Set documents to expire after a date or after a maximum number of views. Expired links show a clean "access expired" page — no content leak.
Instant access revocation
Remove a viewer's access at any time. Changes take effect immediately — no caching delays, no grace periods.
Content Safety Scanner
Every HTML file is scanned before publishing. Our content safety system blocks dangerous patterns and flags suspicious code.
Dangerous tag blocking
Uploads containing <iframe>, <object>, <embed>, <applet>, or <base> tags are blocked automatically. These tags are commonly used in clickjacking and phishing attacks.
Script injection detection
We detect and block javascript: URIs, data:text/html payloads, meta refresh redirects, and page redirect attempts that could send viewers to malicious sites.
Sensitive API detection
Attempts to access cookies, localStorage, browser credentials, geolocation, or camera/microphone are blocked. Your viewers' data stays private.
Phishing prevention
Password input fields and suspicious form elements are flagged. Combined with redirect blocking, this prevents uploaded content from impersonating login pages.
Transparent warnings
Non-critical findings like external network requests, eval(), or inline event handlers are flagged as warnings — you can review and decide. Errors always block the upload.
Audit Trail & Analytics
Complete visibility into who's viewing your documents. Every view is logged with device and session information.
Per-view logging
Every document view records the viewer's identity, device type, referrer URL, and session duration. You know exactly who viewed what and for how long.
Real-time view notifications
Get notified the moment someone views your document. Stay aware of viewer engagement as it happens.
Access request workflow
Unauthorized viewers can request access — you review and approve or deny. No silent access, no surprises.
CSV export
Export your full analytics data for compliance reporting or integration with your existing security tools.
Application Security
Security is built into every layer of the application — from Firestore rules to Cloud Functions.
Firestore security rules
Every database query is validated server-side with Firestore security rules. Users can only read their own data. Document owners control access to their content. No client-side bypasses.
Server-side access enforcement
Access controls are enforced in Cloud Functions, not just the UI. Even if someone bypasses the frontend, the server rejects unauthorized requests.
Input validation
All user inputs are validated on both client and server. Email formats, file sizes, document metadata — everything is checked before processing.
Sandboxed document rendering
Uploaded HTML documents are rendered in isolated contexts. Documents cannot access the parent application, other users' data, or SendDeck's authentication tokens.
Stripe-grade payment security
All billing is handled through Stripe with PCI DSS Level 1 compliance. We never see, store, or process credit card numbers — Stripe handles everything.
Email Security
Invitation emails are authenticated with industry-standard protocols to prevent spoofing and ensure deliverability.
DMARC strict enforcement
Our domain uses DMARC with a reject policy — emails that fail authentication are rejected, not quarantined. No one can spoof SendDeck invitation emails.
SPF & DKIM signing
Every outbound email is signed with DKIM and validated against our SPF record. Recipients and their email providers can verify every message is genuinely from SendDeck.
No tracking pixels in invitations
We don't embed invisible tracking pixels in invitation emails. View tracking happens in-app, not through email surveillance.
Data Privacy & GDPR
You own your data. We provide the tools to export or delete everything — no lock-in, no dark patterns.
Full data export
Download all your data — profile, documents, analytics, access logs — as a structured JSON file. One click, no waiting period, no hoops to jump through.
Account deletion
Delete your account and all associated data permanently. We cascade-delete documents, analytics, access records, and cancel any active subscriptions.
Minimal data collection
We collect only what's needed to run the service: email, display name, and document metadata. No behavioral profiling, no data selling, no advertising.
No third-party analytics on viewers
We don't load Google Analytics, Facebook Pixel, or any third-party trackers on document viewer pages. Your viewers aren't tracked by anyone except you.

Ready to share with confidence?

Every SendDeck plan includes enterprise-grade security — encryption, access controls, content scanning, and audit trails. No premium security tier. No add-ons.

Get Started FreeView Pricing
Have a security question or want to report a vulnerability? Contact us