Send files with end-to-end encryption
Files are encrypted in your browser before upload. Strac cannot access your data. No account required. Free.
Drop files here or click to browse
All file types accepted
End-to-End Encryption
AES-256-GCM. Key never leaves your browser.
All File Formats
Documents, images, archives — anything.
Auto Expiration
Links self-destruct after your chosen time.
Zero Knowledge
Strac cannot access your files. Ever.
Pricing
Free
$0
- End-to-end encryption (AES-256-GCM)
- Up to 10 MB per package
- Up to 2 files per package
- Max 3-day expiration
- Passcode protection
- View & download limits
- Recipient email notification
- 10 packages / month
- Admin dashboard & audit trail
- Revoke access
- Zendesk / Salesforce integration
- Custom dropzone URL
- Download tracking (who, when, IP)
Team
- Everything in Free
- Up to 5 GB per package
- Up to 20 files per package
- Up to 90-day expiration
- Unlimited packages
- Admin dashboard with full audit trail
- Download tracking (who, when, IP, device)
- Revoke access to any package
- Zendesk integration
- Salesforce integration
- Custom branded dropzone URL
- Recipient email notifications
- API access
Frequently Asked Questions
Can Strac see my files?▾
No. Files are encrypted in your browser using AES-256-GCM before they leave your device. Strac receives only the encrypted ciphertext. The encryption key is embedded in the share link's URL fragment (#), which is never sent to our servers. This is true end-to-end encryption — not a marketing claim.
How is the encryption key shared?▾
The key is in the # fragment of the share link (the part after #). Per the HTTP standard (RFC 3986), URL fragments are never sent to servers — they stay entirely in the browser. The recipient's browser extracts the key from the URL and decrypts the files locally.
What happens when a link expires?▾
The encrypted files are permanently deleted from our servers. The link will show "This share link has expired." Nobody — including Strac — can recover the files after expiration.
Is this really free?▾
Yes. Send encrypted files with no account and no payment. See the pricing section above for what's included in free vs. paid.
What file types and sizes are supported?▾
All file types are supported — documents, images, archives, anything. Up to 10 MB and 2 files per package on the free tier. Team plan supports up to 5 GB and 20 files.
How is this different from SendSafely?▾
Same end-to-end encryption model (AES-256-GCM, key in URL fragment). Strac also offers DLP (data loss prevention) and DSPM (Data Security Posture Management), compliance automation, and is part of a broader security platform. SendSafely is file-sharing only.
What if I need to revoke access to a shared file?▾
With a free Strac Comply account, you can revoke any package instantly from the admin dashboard. The recipient will see "This share link has been revoked" — even if the link hasn't expired yet.
Is this compliant with SOC 2 / HIPAA / GDPR?▾
Yes. Strac is SOC 2 Type II certified. All file transfers use TLS 1.2+ in transit and AES-256 at rest. Audit trails are maintained for every upload and download. Strac Comply provides the full compliance automation platform.
Need admin controls, audit trails, or Zendesk/Salesforce integration?
Strac Comply gives your team full visibility and control over every file shared.
Book a Demo