Privacy Act Compliant

Every unencrypted email is a breach waiting to happen.

Your receptionist emails patient records as PDF attachments. Every one sits in cleartext on mail servers. ObsidianVault encrypts files in the browser before they leave. The server never sees your data. No one does.
Protect your next file
No account. No sign-up. No training. 30 seconds.
Trusted by medical and legal practices across Australia. Free while in beta.

Don't take our word for it. Watch.

Drop any file below. Watch AES-256 encryption happen in your browser. We'll show you exactly what our server would receive: noise.
🔒

Drop a file to encrypt (stays in your browser)

Nothing leaves your machine. This is a local demo.
Generating 256-bit AES-GCM key...
Encrypting in browser...
Encryption complete.
What the server would receive:
That took 2 seconds. Now do it for real.

A Melbourne medical practice needed to send patient records to a specialist. The files were too large to email. They split them across five unencrypted messages. Every one was a Privacy Act breach. With ObsidianVault, the receptionist dropped the files into a link. Encrypted in her browser. Delivered in 30 seconds. Zero training.

-- Medical practice, Melbourne VIC

Three steps. Zero trust required.

01

Drop your file

Drag and drop or click to select. Any file type, up to 200MB. Your file never leaves your browser unencrypted.

02

It encrypts locally

AES-256-GCM encryption -- the same standard used by intelligence agencies -- happens in your browser. A random key is generated. Only ciphertext is uploaded.

03

Share the link

The decryption key lives in the URL fragment (#) -- never sent to our server. Only the person with the link can decrypt.

What if...

Our server is seized by law enforcement?
They get ciphertext. Random bytes. Mathematically indistinguishable from noise without the key. We don't have the key. It never touches our server.
We get hacked?
The attacker gets encrypted blobs and an audit log. No plaintext. No keys. No filenames. The encryption key exists only in the URL you shared and in your browser's RAM during the operation.
You subpoena us?
We'll comply fully. You'll receive ciphertext and a hash-chained audit trail proving when files were uploaded and downloaded. You will not receive plaintext, because we never had it.
You're a medical practice emailing patient records?
You're currently violating the Privacy Act every time you attach a PDF to an unencrypted email. This fixes that in 30 seconds. Your receptionist can use it. No training required.

Simple pricing

A compliance breach costs $500,000. This costs less than lunch.
Free tier available while in beta. Lock in Pro pricing before launch.

Enterprise

$199/mo
For organisations and teams
  • Everything in Pro
  • 2GB per file
  • Team access and shared vaults
  • API access for automation
  • Webhook notifications
  • SLA and priority support
  • Custom branding
  • Dedicated account manager
Start Enterprise

Pro

$29/mo
$9/mo
For practices and professionals
  • Everything in Free
  • 500MB per file
  • Custom TTL (1hr to 30 days)
  • Download limits (burn after reading)
  • Audit log export
  • Compliance certificate
  • Password protection
  • Priority support
Start Pro -- $9/mo

Free

$0
For personal use
  • 3 drops per day
  • 100MB per file
  • 24-hour auto-delete only
  • AES-256-GCM encryption
  • Zero-knowledge guarantee
Start free

Your receptionist is emailing unencrypted patient records right now.

Every one is a Privacy Act breach. Fix it in 30 seconds.

Protect your next file
ObsidianVault -- Zero-Knowledge Encrypted File Transfer
AES-256-GCM | SHA-256 audit chain | Privacy Act compliant
Built by Blacktrace