Send the file. Keep the plaintext off your servers.
NexFade is an encrypted dead-drop service for legal, HR, journalism, and M&A workflows. Files and notes encrypt in the browser, upload as ciphertext, and burn after the first intentional open or when the timer expires.
Core promise
No plaintext on the server
AES-256-GCM in the browser, with the key living only in the URL fragment.
Built for
Serious transfers
Counsel handoffs, HR packets, diligence files, and newsroom sources.
Intentional-open semantics
Recipient pages never auto-fetch ciphertext, so scanners and previews do not consume drops.
Burn or expire
Every drop has a required TTL, and burn-after-read stays on by default for the MVP.
Managed, low-cost stack
Vercel, Supabase, R2, and Upstash keep the MVP cheap while preserving a strong security story.
How it works
- 1. The sender encrypts a note or file with Web Crypto before upload.
- 2. NexFade stores only ciphertext plus expiry and lifecycle metadata.
- 3. The recipient intentionally opens the link and decrypts in the browser.
- 4. The drop burns on the first authorized retrieval or when its timer ends.
Team plan
$49/month
Ten seats included, 1 GB max files, indefinite long-lived links, and add-ons for extra seats and capacity as the workspace grows.