Security
Security at Papersend
Learn how Papersend keeps your data secure with cutting-edge security measures, compliance certifications, and transparency.
GDPR Compliance Backed by Industry-Leading Infrastructure
At Papersend, we prioritize your data privacy and security. Our data centers, managed by Amazon AWS and operated through Supabase, leverage cutting-edge design and engineering practices. With years of expertise in building and running large-scale data centers, Amazon ensures that our platform operates on a foundation of reliability, scalability, and strict compliance with GDPR standards.
SOC 2 Type II Certified for Trusted Security
Papersend's backend provider, Supabase, holds SOC 2 Type II certification, ensuring rigorous standards for data security, availability, and confidentiality. Hosted on the secure Amazon AWS platform, we leverage Amazon's extensive investments in cutting-edge security to protect your sensitive data. Papersend provides SOC 2 Type II certification exclusively for enterprise users, as the costs involved make it unfeasible for smaller plans.
CCPA Compliance: Protecting Privacy for California Residents
The California Consumer Privacy Act (CCPA) grants robust privacy rights to California residents, setting standards for businesses that handle personal information. As the first U.S. consumer privacy law, it aligns closely with the principles of the EU's GDPR. Papersend is fully compliant with CCPA, including amendments under the CPRA effective March 29, 2023, ensuring your data privacy rights are respected and protected.
Security
Secure platform, secure data
Papersend is built on a foundation of advanced security practices and cutting-edge technologies to protect your data at every level.
Infrastructure and Networking
All servers running Papersend software in production are modern, continuously patched Linux systems. Hosted services like Amazon S3 operate on hardened AWS infrastructure. Customer data is encrypted at rest with AES-256 and in transit using TLS.
File Storage
Papersend stores document metadata, activity logs, original files, and customer data in separate encrypted locations. All data is encrypted at rest using AES-256 and managed with advanced encryption key systems.
Isolated Environments
Production network segments are logically separated from Production, QA, and Development networks, ensuring strong isolation and minimizing security risks.
Customer Payment Processing
Papersend leverages a PCI Service Provider Level 1 certified third-party payment processor. We do not store, process, or transmit any payment card information directly.
System Monitoring and Alerting
Our production systems are monitored around the clock by dedicated tools. Critical alerts are sent to our 24/7 on-call DevOps team and escalated as needed to ensure continuous availability.
Service Levels and Backups
Papersend employs auto-scaling, load balancing, task queues, and rolling deployments for high availability. We perform full daily backups of databases, encrypting all backups for secure storage.
Application Architecture
The Papersend application is segmented into front-end, mid-tier, and database layers, each independently secured in a DMZ configuration to maximize isolation and security.
DDoS Protection
We mitigate DDoS attacks using Cloudflare at the CDN level, employ fail2ban for brute-force protection, and enforce rate limits on critical API endpoints to prevent abuse.
Access Controls
Papersend implements strict role-based access control (RBAC) to ensure only authorized personnel can access sensitive systems. All access is logged, monitored, and periodically reviewed for compliance.
Whether for personal or professional use, Papersend ensures your documents are shared safely and securely.
20K+
Processed Pages
90K+
Served Views
160+
Supported File Types
Ready to protect your files? Try it for free today!
Get Started Free
FAQ Papersend Security
Frequently Asked Questions
What is Papersend and how does it work?
Papersend is a simple and secure way to share and track documents online. It's like an upgrade to tools like DocSend, Digify, Proposify, FirmRoom and others, but with more features. You can share files, control who sees them, track how they're used, and keep everything secure - all in one place.
Is Papersend free to use?
Yes, Papersend offers a free plan that gives you access to many great features. If you need even more tools, you can upgrade to a paid plan. Start with the free version and see how it works for you!
Learn more about our pricing plans and features
What features does Papersend include?
Papersend includes tools like passcode protection, instant email alerts when someone views your document, limits on how many times a file can be seen, and settings to block or allow specific emails. You can also update documents without changing the link and track each version's performance. Explore our full feature list for more details!
Which file types can I share with Papersend?
Papersend supports over 160 file types, including PDFs, Word documents, Excel sheets, PowerPoint presentations, images, and even design files like Photoshop or AutoCAD. It works with Apple formats like Pages and Numbers too. No matter the file, your recipients can view it easily in their browser.
See all supported file types and our quick file type check tool
Is Papersend GDPR compliant?
Yes, Papersend is fully GDPR compliant. We ensure that your data is processed securely and transparently. You have complete control over your data, including the right to access, rectify, and delete it, as required by GDPR regulations.
Is Papersend CCPA compliant?
Absolutely. Papersend complies with the California Consumer Privacy Act (CCPA), offering California residents the right to know what personal data is collected, the ability to opt-out of data sharing, and the right to request data deletion.
Is Papersend SOC 2 Type II certified?
While Papersend leverages Supabase as its backend, which is SOC 2 Type II certified, this certification demonstrates that rigorous security and confidentiality controls are in place to protect your data. Note: Papersend offers SOC 2 Type II certification only with Enterprise Plans.
Where can I find a list of subprocessors used by Papersend?
You can find the complete and up-to-date list of subprocessors used by Papersend on our Privacy Policy page. This list provides transparency about the third-party services we rely on to deliver a secure and efficient experience.
How does Papersend protect my data from unauthorized access?
Papersend employs advanced security protocols such as AES-256 encryption for data at rest and TLS 1.3 for data in transit. Additionally, access to sensitive data is restricted by role-based access controls.
What happens to my data if I cancel my Papersend account?
If you choose to cancel your account, all your data will be securely and immediately deleted. For assistance or specific requests, you can always contact our support team.
Are my payment details stored securely?
No sensitive payment information is stored on Papersend's servers. All payments are processed through a PCI DSS Level 1 compliant gateway, ensuring secure handling of payment details.
How often are backups performed?
Backups are conducted daily, with multiple redundant copies stored securely. In the event of an issue, we can restore data quickly to minimize disruption.
What makes Papersend secure compared to email attachments?
Unlike email attachments, Papersend uses secure, trackable links with advanced features such as password protection, single-device access, expiration dates, and anti-screenshot technology. These tools provide an additional layer of security that email cannot offer.
Who is Papersend suitable for?
Papersend is perfect for anyone who needs to share and manage documents securely. It's ideal for businesses like startups, sales teams, law firms, consultants, and even individuals who want better control and insights over their shared files. Whether you're sharing pitch decks, contracts, or presentations, Papersend makes it easy, secure, and efficient.
See additional use cases for Papersend and customer examples in our footer.