This guide explains how kPaste secures your data.

kPaste secures your texts

kPaste is a free service that allows you to securely share passwords and sensitive information

The kPaste tool encrypts your data directly in the web browser using the AES-256 protocol and more specifically the Galois/Counter Mode (GCM) algorithm.

The source code of kPaste is open (see on GitHub) which allows anyone to validate the security and transparency of the service.

Data on kPaste

The kPaste servers are exclusively based in Switzerland and managed by Infomaniak which has no knowledge of the copied texts because the data is only transmitted and stored in an encrypted manner on the kPaste servers:

• The texts are encrypted at the time of copying.
• The timestamp of the creation of the copies and the duration before expiration are not encrypted.
• The decryption key (it is part of the URL after the hashtag #) is neither stored nor transferred.
• For absolute security, it is recommended to use kPaste in private browsing mode by disabling your web browser extensions.

Is kPaste really free?

Yes. Infomaniak funds its activities through its paid services. If you wish to help promote a web that respects user privacy, tell your contacts about the free services of Infomaniak.