Security & Consent Standard

Local-First Privacy Policy

Last Updated: May 25, 2026

1. Our Core Principle: Local Networking Only

FileShareX is architected from the ground up as a stateful, high-performance **local-first network platform**. All file transfers, WebRTC signals, drawing whiteboard coordinate variables, text streams, and voice calling services are confined directly to your local Wi-Fi or Ethernet router subnet.

We do **not** own, manage, or rent intermediate cloud indexing hubs or databases for your streams. Everything remains strictly inside your local home or office network environment.

2. Zero-Knowledge Cryptography & E2EE

To secure your information against eavesdropping on public or shared Wi-Fi connections, FileShareX enforces a standard dual-pipeline **in-browser cryptographic algorithm**:

  • PBKDF2 Key Derivation: Passwords entered to unlock protected rooms are processed strictly in-browser using standard salts to derive secure 256-bit AES-GCM keys.
  • Dynamic Stream Ciphers: Plaintext content, E2EE chunk allocations, and attachment filenames are encrypted locally before being transmitted via the local network server, ensuring absolute Zero-Knowledge isolation.
  • Client-Side Processing: Cryptographic calculations, decryption, and hash integrity checking are completed entirely inside the user's workspace browser or packaged desktop client. No plaintext contents are ever visible to the server filesystems.

3. Zero Tracking, Accounts, or Analytics

We believe in absolute anonymity. Bypassing commercial telemetry standards, FileShareX does not record, track, or share:

  • No email addresses, social profile authentications, or registration tokens.
  • No analytics databases, product telemetry, usage counts, or logs.
  • No cookie tracking or commercial pixel markers are stored.

Your local nickname and custom color assignments are stored entirely in your native desktop application's `localStorage` profile for layout persistence only.

4. File Storage & Database

When using the **Virtual NAS LAN Drive** or standard chat rooms, data persistence is maintained strictly on your **host desktop application server**:

  • Files uploaded to the Virtual NAS are encrypted locally and stored inside your custom OS application directory path (`AppData/Roaming/FileShareX/uploads/` on Windows).
  • Chat databases (`chat.db`) are saved strictly inside the same offline directory.
  • No third-party hosts or cloud drives have access to these files, and they can be completely purged at any time by clearing your application database or deletion menus.

5. Remote Screening Guardrails

The **Remote Screen Control** features are designed with strict user protection boundaries:

  • Screen capture and interaction channels cannot be initiated without your **explicit, manual confirmation** via an active incoming overlay window.
  • A visible status banner remains drawn on your screen during active screen-sharing streams with a single-click "Stop Sharing" button.
  • Closing the connection instantly terminates all interaction relays.

FileShareX is built to keep your files secure and private. By using this local-first service, you consent to this local-network privacy principle. Enjoy uncompressed, instantaneous, private sharing!