Skip to main content

Security

Security is built into how Favtoo works by design.

Because files are processed directly in your browser, many common risks of cloud-based tools are avoided entirely.

Your files never leave your device.

Local Processing by Design

Your files are never uploaded or stored on our servers.

  • No server-side file storage.
  • No temporary file queues.
  • No access by third parties.

Secure by Default

Favtoo uses standard web security practices to protect the platform:

  • Content Security Policy (CSP) to restrict scripts and resources.
  • Protection against cross-site scripting (XSS) and clickjacking.
  • Strict handling of form submissions and embedded content.

File Handling

Before processing, files are checked for expected formats and size limits. This helps ensure tools behave reliably and reduces the risk of malformed or unsupported files.

Local Memory Handling

Processing happens in your browser memory and is not stored. Data is cleared after use and not retained. Closing the tab removes any remaining data.

Secure Connections

All connections use HTTPS with modern TLS encryption. Since files remain on your device, no file data is transmitted to our servers.

Responsible Disclosure

If you discover a security issue, please report it to [email protected]. We appreciate responsible disclosure and will investigate promptly.