Encrypted file transfer under your own branded space, stored in the EU. Your clients see you, not us. Everything is encrypted in your browser before it leaves the device, so we hold ciphertext and never need the key.
Nullsend's architecture makes certain things cryptographically impossible, not just restricted by our own policy. That is the entire product.
Files are encrypted in your browser before upload. Our servers see only ciphertext.
You can't train on what you can't see. No model, ours or anyone else's, gets your data.
A subpoena gets ciphertext and metadata. That is useless without the key, which we never have.
No thumbnails. No previews. No virus scanning. These trade-offs are the point.
Lose the link, lose the file, for good. By design, because anything else is a backdoor.
Architectural guarantees don't depend on a Terms of Service we could change next year.
The key is generated in your browser and lives in the share URL fragment. On the normal share path it is never transmitted to Nullsend. End to end, with the key only ever on the two devices that need it.
When you drop a file in, your browser generates a random 256-bit AES key and encrypts each chunk locally. The plaintext never leaves your device.
Encrypted chunks stream directly to EU-resident storage. Our servers store ciphertext and metadata. We see what you uploaded, not what is in it.
The decryption key lives after the # in the share URL. By web standards, fragments never reach the server. Share the URL; only the recipient can decrypt.
Everything you would expect from a serious file-transfer tool, with the privacy parts built into how it works rather than promised in a policy.
Your own branded space at yourfirm.nullsend.io, in your colours. Recipients land on a page that looks like yours.
Industry-standard authenticated encryption. WebCrypto-native. No custom crypto, no rolled-our-own anything.
Files self-destruct on a schedule you set: 7, 30, 90 days, or on first download. No manual cleanup.
Ciphertext stored in EU-Central. GDPR-compliant by architecture. DPA available before signup.
Add a recipient password for two-factor access. Stretched with Argon2id; we still can't see the key.
Admin, sender, and view-only roles. Per-user audit log of who sent what, never of what is in it.
Notification emails carry your name and branding, sent from a Nullsend address. Your clients see you when the file lands.
Flat monthly per tier. Overage at £0.05/GB. No tracking pixels, no upsells, no surprise renewals.
Nullsend is B2B-only. There is no free tier because there is no advertising revenue, no data resale, and no other way for the lights to stay on. Pick a tier; pay monthly.
For mid-size practices.
Ex-VAT. UK and EU billing only at launch. Flat per tier, overage at £0.05/GB, no surprise renewals. Full pricing
Nullsend Enterprise puts your firm's brand, custom domain, and sender email on the front, with our encryption underneath and a discreet "powered by Nullsend" your clients can trust.
iOS and Android apps in development. The same browser-side encryption, in your pocket. We will let you know the moment they land.
14-day money-back on any tier. Encrypted in the browser from the first upload. No card needed to try the flow.
Get started