Frequently Asked Questions

Understand how OSH Secure Share protects your data.

How does it work?

When you enter text and click "Create Secure Paste", your browser generates a random encryption key. Your text is then encrypted locally in your browser using the AES-GCM 256-bit algorithm. Only the encrypted version (ciphertext) is sent to our server.

How am I protected?

The decryption key is appended to the URL after a hashtag (#). Web browsers are designed to never send anything after the hashtag to the server. This means our server never sees your key, and therefore, we cannot decrypt your data even if we wanted to.

Can you see my data?

No. Because the encryption happens on your device and the key never leaves your browser, your data is completely private. Only someone who has the full URL (including the part after the #) can read your paste.

What happens when a paste expires?

When the expiration time is reached, the encrypted data is permanently deleted from our database. If you select "Burn after reading", the data is deleted immediately after the first time it is successfully viewed.

Version: 1.5.2

Privacy Policy | FAQ | Powered by OSH.co.za