Security
Updated: 2026-06-20
Our approach, honestly
Security pages are often full of impressive-sounding claims. Ours is short because our design is simple: the best way to protect data we do not need is to never collect it. The FinSafe website holds no user accounts and no user files, which removes the most common ways websites lose people's data.
The website
The FinSafe website is a static site — pages of content with tools that run in your browser. There are no site accounts today, no login, and no password to steal. All traffic between your browser and the site is encrypted with HTTPS in transit.
Your files and drafts
Files you process with our PDF tools stay inside your browser's memory on your device and are never sent to a server. Builder drafts are stored in your browser's localStorage. In both cases, the security of that data depends on the security of your own device — which is worth remembering if you share a computer, so use the browser's private mode or clear site data when you finish.
The mobile app
The FinSafe app has its own account system with protections at the app level, including secure sign-in and the platform safeguards that iOS and Android provide. Details of how the app protects your data are described within the app.
What we do not claim, and reporting issues
We do not claim end-to-end encryption, and we make no claims about server-stored files for the web tools — there are none, because the files never reach a server. If you believe you have found a security problem in FinSafe, please email hello@finsafe.space with the details. We take reports seriously and appreciate them.