Security & Protections

1\ how we handle your data (stateless processing) your privacy and security are fundamental to how maskit operates a core principle of our architecture is stateless processing, which guarantees that your sensitive, original files are never at risk on our systems what "stateless" means stateless processing means that we handle your data transiently when you upload a file, it is processed in memory and is never permanently stored on our servers we do not retain your original files, nor do we store the anonymized results the anonymization process our secure process is designed for maximum privacy at every step secure upload your file is encrypted in transit and uploaded securely to our processing environment using industry standard tls encryption in memory anonymization the anonymization is performed in real time in the server's volatile memory (ram) secure download once the process is complete, the anonymized result is made available for you to download immediate deletion the original files are deleted from our systems immediately after processing the anonymized result is available for download only and is permanently removed once you download it, or automatically after 2 hours the benefit this architecture means there is zero risk of your original, sensitive data being breached from our systems , because we simply don't keep it you retain full control over your data at all times 2\ compliance with global privacy laws maskit is designed to help customers comply with a wide range of data privacy regulations across the globe we are committed to providing a service that meets the highest standards of data protection, wherever your business operates support for key regulations our platform helps you meet the anonymization requirements of major data privacy frameworks, including but not limited to gdpr (general data protection regulation) in europe ccpa / cpra (california consumer privacy act / privacy rights act) in the usa pipeda (personal information protection and electronic documents act) in canada lgpd (lei geral de proteção de dados) in brazil others data residency & region based hosting we understand that global organizations have strict data sovereignty requirements to address this, we provide both a standard solution and a flexible option for our enterprise customers standard hosting (all plans) by default, all customer data is processed exclusively in our datacenters located within the european union (eu) this standard setup guarantees that your data is protected under the strict jurisdiction of the gdpr and simplifies compliance for businesses operating in europe flexible hosting (enterprise plan) for our enterprise plan customers, we offer the flexibility to deploy a dedicated instance of maskit in other geographic regions if your organization requires data to be processed exclusively in the united states (usa) or another specific region to meet local laws, we can provide a tailored hosting solution this ensures that your data is processed only in the region of your choice, providing a powerful solution to meet your organization's specific compliance and security needs 3\ irreversible anonymization a critical requirement of true anonymization is that the process must be irreversible with maskit’s default settings , anonymization is always irreversible once data is masked, it cannot be reverted to its original state a one way, destructive process our masking methods—whether blur, pixelation, or a solid box—are destructive they work by permanently altering the pixels of the original image data in the masked areas we do not use reversible layers, overlays, or masks that could be removed to reveal the original information the anonymized output cannot be reverse engineered to reconstruct the original content, not even by us ⚠️ note users can adjust masking parameters (e g blur intensity) while default values ensure irreversibility, selecting weaker settings may reduce the strength of anonymization 4\ audit logs & access control (for business & enterprise plans) for organizations that require full transparency and accountability, maskit offers comprehensive audit logs and access control features what are audit logs? administrators of our business and enterprise accounts can view a detailed and immutable log of all activities performed by users within their organization this provides a clear and traceable history of all data processing