legal & trust

Security Overview

A plain-language summary of how TrustLocker stores, encrypts, and protects your files and account.

Legal centre
Core policies for TrustLocker.co.uk
Legal hub Privacy Policy Terms of Service Cookie Policy Acceptable Use Data Processing Addendum Security Overview Release Disclaimer

Last updated: 6 April 2026

1. Authentication

TrustLocker supports authenticated account access and can use Secure authentication for sign-in and session management.

2. Storage model

When configured, uploaded files are stored in Files and transfer metadata are stored securely with row-level access security rules. In demo mode, the platform can fall back to browser-local IndexedDB storage.

3. Access controls

Account-restricted areas require a signed-in session. Storage access should be limited by bucket rules and ownership-based policies configured in our secure cloud infrastructure.

4. Transport security

The production website should be deployed over HTTPS only. Do not run a live service over insecure HTTP.

5. Operational cautions

  • This build does not constitute a certified security product.
  • Users should maintain their own source backups.
  • Any live payment handling, recipient self-service retrieval, or public release links should be separately tested and legally reviewed before launch.