> ## Documentation Index
> Fetch the complete documentation index at: https://docs.sinosend.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Sinosend Security, Privacy, and Compliance Overview

> Sinosend protects every transfer with AES-256 encryption at rest, TLS 1.2+ in transit, access controls, GDPR compliance, and full audit trails.

Sinosend is built on the principle that your documents should be accessible only to the people you choose — and completely unreadable to everyone else. Every transfer, on every plan, is protected by AES-256 encryption, TLS 1.2+ in transit, and a layered set of access controls you can adjust at any time, even after a file has been sent.

## Security at a glance

<CardGroup cols={2}>
  <Card title="AES-256 Encryption" icon="file-shield">
    Every file stored on Sinosend is encrypted at rest using AES-256 — the same standard used by financial institutions worldwide.
  </Card>

  <Card title="TLS 1.2+ In Transit" icon="arrow-right-arrow-left">
    All data moving between your browser, the Sinosend platform, and your recipients is encrypted with TLS 1.2 or higher.
  </Card>

  <Card title="Bank-Grade End-to-End Encryption" icon="building-columns">
    Team shares use end-to-end encryption so that file contents are protected at every hop — from sender to storage to recipient.
  </Card>

  <Card title="Password-Protected Transfers" icon="key">
    Add a password to any transfer at creation or any time afterward. Recipients must enter the correct password before they can download.
  </Card>

  <Card title="Access Revocation" icon="user-xmark">
    Remove a single recipient's access instantly without affecting other recipients or invalidating the transfer link for everyone else.
  </Card>

  <Card title="Role-Based Access Control" icon="users">
    Assign Admin, Editor, Viewer, or Guest roles to team members so each person has exactly the level of access they need.
  </Card>

  <Card title="Two-Factor Authentication" icon="mobile-screen">
    Protect your Sinosend account with 2FA using any TOTP-compatible authenticator app such as Google Authenticator or Authy.
  </Card>

  <Card title="GDPR Compliant" icon="globe">
    Store files in the EU, request a Data Processing Agreement, and exercise your right to full data deletion — all from your account settings.
  </Card>

  <Card title="Full Audit Trails" icon="clock-rotate-left">
    Every file operation is logged with a timestamp, actor identity, IP address, and geo-location so you have a complete record of activity.
  </Card>

  <Card title="Custom Retention Rules" icon="calendar-xmark">
    Set automated deletion policies per transfer or at the account level so files are removed as soon as they are no longer needed.
  </Card>
</CardGroup>

## Applies to all plans

AES-256 encryption at rest, TLS 1.2+ in transit, and access revocation are available on every Sinosend plan, including the free tier. Features such as indefinite transfer expiry, EU data residency selection per transfer, and advanced retention rules are available on paid plans. See the [pricing page](https://sinosend.com/pricing) for a full feature comparison.

<Note>
  If your organization has specific compliance requirements — such as a signed Data Processing Agreement or a custom data residency arrangement — contact [support@sinosend.com](mailto:support@sinosend.com) to discuss your needs.
</Note>
