Your files stay on your device.
Always.
Reafile was built from day one around a single principle: we should never touch your files. Every tool runs entirely in your browser. No uploads, no servers, no exceptions.
0
bytes uploaded to our servers
0 ms
file data retained after processing
100%
of processing done in your browser
How we keep your data safe
Six layers of privacy, built into the architecture — not bolted on afterward.
100% client-side processing
Every conversion, compression, and resize operation happens entirely inside your browser using WebAssembly and the Web APIs. Your files are never transmitted to any server — not even ours.
Zero file uploads
We have no file upload endpoint. There is no backend that could receive your documents. Even if someone wanted to intercept your files, there is nothing to intercept — the data stays on your machine.
Ephemeral memory only
Files are loaded into temporary browser memory (RAM) for the duration of the operation and cleared immediately after. No file is ever written to disk, cached, or persisted by Reafile.
Encrypted connections
All traffic between your browser and our servers (for authentication only) is encrypted via TLS 1.3. Your credentials are handled by Supabase, a SOC 2 Type II certified infrastructure provider.
No data retention
Since we never receive your files, there is nothing to retain, delete, or breach. Your documents belong to you — only you — at every moment of the process.
Transparent & auditable
Our processing logic relies on well-known open-source libraries (FFmpeg.wasm, sharp-wasm). There are no proprietary black-boxes handling your data — anyone can verify what runs in the browser.
A note from the engineering team
File processing in Reafile runs on WebAssembly — a binary instruction format that runs sandboxed inside the browser VM. It has no access to your filesystem, network, or any other resource beyond what you explicitly provide. This is not a design choice we made for convenience — it is a hard technical boundary enforced by the browser itself. Even if Reafile were somehow compromised, an attacker could not use it to exfiltrate your files.
The only personal data we collect is your email address if you create an account, stored securely by Supabase with encryption at rest. We use anonymous analytics (PostHog) to understand feature usage — no file content, no file names, nothing identifiable.