encrypted - self-destructs - no account
End-to-End Encrypted zero-knowledge one-time download auto-destruct made in the EU 100% free

Send a private file that self-destructs

Upload one or more files, encrypt them in your browser with AES-256, and share a self-destructing link that downloads only once. SecretFile is a free web-based service for secure file sharing - your sensitive documents are encrypted before anything reaches the server and the ciphertext is permanently deleted the moment the recipient downloads them.

text image draft - not sent
Drop files here or paste from clipboard

Any file type. Encrypted in your browser before upload.

Loading file limits...
delete after download- 3 days- tap to reveal
01 Duration if nobody downloads it, the ciphertext self-destructs after this window.
02 Destruct options when does the server forget it ever existed.
03 Directly open and decrypt decrypt automatically when the recipient opens the link, without clicking the confirmation button.
how it stays private
end-to-end encrypted AES-256, in your browser zero-knowledge no account
how it works

How can I share files securely?

Three simple steps to send encrypted files that delete after download.

01 / DROP

Drop in your files.

Files are encrypted in your browser with AES-256 before anything touches the network.

02 / SHARE

Send the link.

The URL carries the decryption key after the #, which browsers never send to a server.

03 / GONE

It disappears on download.

Server deletes the ciphertext the moment the file is downloaded. No backups, no logs.

why secretfile

Why use SecretFile to share sensitive files?

Your file is encrypted in the browser and disappears after it is downloaded.

Zero-Knowledge Architecture

AES-256 encryption runs entirely in your browser before anything leaves it. The decryption key is embedded in the URL fragment, which browsers never transmit in HTTP requests.

One-time Download

When the recipient downloads the file, the ciphertext is fetched, decrypted locally, and immediately deleted from the server. No backup, no log, no cached copy.

Completely Anonymous

No account, no email, no personal information. Only encrypted ciphertext, a random ID, and an expiry are stored, none tied to any identity.

what you can share

What you can share with SecretFile

Any file type, up to the size limit. The server only ever holds opaque ciphertext.

Documents and PDFs

Contracts, invoices, ID scans, tax forms, medical records - send sensitive paperwork without leaving copies in email threads.

Images and screenshots

Photos of credentials, signed papers, or any image that should not persist in chat history or cloud galleries.

Code and config files

SSH keys, .env files, database dumps, kubeconfigs - move secrets between teammates without committing them anywhere.

Archives and backups

ZIPs, encrypted backups, project bundles. The recipient downloads once, and the link is permanently deleted.

frequently asked

Frequently asked questions

Common questions about encrypted file sharing and one-time download links.

Yes. Files are encrypted with AES-256 directly in your browser before any data is sent to the server. The decryption key is embedded in the link fragment, which is never transmitted to the server. This means the server stores only ciphertext and has no way to read your files.
Any file type is accepted - documents, archives, images, executables, or anything else. You can share up to 20 files at once with a total size of 50 MB per share. Clipboard paste support depends on what file types the browser exposes from the clipboard, which varies by operating system.
Files are stored until the link is opened or until the expiration time you set in Options is reached, whichever comes first. The default expiration is 3 days for unviewed links. Once the recipient opens the link the encrypted files are permanently deleted from the server.
No. SecretFile uses one-time delivery. After the link is opened and the files are decrypted the encrypted data is deleted from the server and the link stops working. If you need to share the same files again you will need to create a new share.
Yes. In the Options panel before creating the link you can set a password. The recipient must enter the correct password before the files are decrypted and made available for download. This adds a second layer of protection on top of the AES-256 encryption, which is useful if you need to send the link over an insecure channel.
If the link is never opened, the encrypted files are automatically deleted when the expiration timer runs out. The default is 3 days. You can set a shorter or longer timer in Options before creating the link. Available options range from 1 hour to 30 days. After expiry the link stops working and the files are permanently deleted.
No. SecretFile is designed around anonymity and zero-knowledge principles. The sender has no dashboard, no notification, and no visibility into whether the link was opened. Once the link is created and shared, the sender has no further connection to the share. This is intentional - the service does not track access events.
Yes. SecretFile is operated by RapidFoundry LTD, a company based in the European Union. Files are stored as encrypted ciphertext only, with no personally identifiable information attached. Because the service uses zero-knowledge architecture, SecretFile processes no personal data contained within the files themselves. Full details are available in the privacy policy.
Yes, SecretFile is completely free. No account, subscription, or payment is required to upload or download files. All features including AES-256 encryption, one-time delivery, password protection, and expiration timers are available at no cost.
same idea, other shapes
SecretNote

Send a note that deletes after read.

Type a private message, share a one-time link. Encrypted before upload, deleted after the first read.

open SecretNote
SecretScreen

Share a screenshot that leaves no copy.

Paste or upload an image, get a single-view link. Encrypted client-side, same as a file.

open SecretScreen