From an author:

I wanted to share crypt.fyi - a free, open-source tool I built for securely sharing sensitive data/files. It uses client-side encryption and zero-knowledge architecture.

Key features:

- Zero-knowledge architecture
- End-to-end encryption using AES-256-GCM (actively investigating post-quantum encryption options)
- Self-hostable
- Suite of configurations (password, burn after read, max read count, ip/cidr-allow list, webhooks)
- Strict rate-limiting
- Strict CSP to mitigate supply chain attacks
- Web, cli, and chrome-extension clients
- Fully open source (Github)

The problems I aimed to solve: Many people share sensitive info (passwords, keys, etc.) through email, Slack, or SMS - which often leaves plaintext copies in multiple places. Existing solutions either require accounts, aren't open source, or have security/privacy/ui/ux/feature/config gaps/limitations.

crypt.fyi is built with privacy-first principles:

- No logging of sensitive data
- No analytics or tracking
- Separation of web and api servers
- All encryption/decryption happens client-side using shared cross-platform cryptography primitives from noble cryptography
- TLS encryption for all traffic
- Encrypted data is automatically destroyed after being read with strong guarantees around once-only reads

The entire codebase is open source and available for review. I'd love to get feedback from the privacy community on how to make it even better!

From driving licence to local air quality, app offers myriad of features and has been rolled out to little opposition

App and wallet would allow people to carry digital versions of key documents such as driving licence on their phones

Not European but but i thought some of you may appreciate this

cross-posted from: https://lemmy.today/post/22744300

I just noticed today that Signal (not talking Molly) is now available on F-Droid via the "Guardian" repository.

Just wanted to give everyone a heads up.

Digitization should serve humanity, not monitor them.

cross-posted from: https://feddit.org/post/7188351

Well, fuck you, Cooler Master.

As soon as I turned my VPN off I was able to successfully send my RMA request.

cross-posted from: https://mamot.fr/users/thibaultamartin/statuses/113879452911907737

Palms were offline devices that only synced with your computer when put on a docking station.

You could read and reply to emails offline, book or cancel meetings, and sync with your computer later. The latest versions allowed you to snap pictures and listen to your music.

No servers running constantly. No data spilled everywhere. Days worth of battery on a single charge.

The future stole our cables, and it took our attention span and our privacy with it.

#privacy #offline #data

Down 33%, the total was the first decline since GDPR went into enforcement, largely due to 2023’s record-setting fine versus Meta.

cross-posted from: https://lemmy.zip/post/30645599

OpenAI says that it may store user data related to Operator, its AI agent tool, for up to 90 days — even if users delete that data.

cross-posted from: https://mastodon.scot/users/CGM/statuses/113882252405018228

"The EU wants to scan every message sent in Europe. Will that really make us safer?" - https://www.theguardian.com/commentisfree/2025/jan/24/eu-digital-surveillance-child-protection
#eu #privacy