Frequently Asked Questions

No, all data is encrypted in your browser and then uploaded to our servers. Decryption also takes place in your browser.
By default, received and sent data is kept for 10 days. After that, the encrypted data is irrevocably deleted.
We do not implement any explicit tracking of connection or metadata ourselves. However, certain information required by law and data necessary for creating invoices are stored by our server infrastructure provider (currently: Exoscale https://www.exoscale.com).
You can connect multiple Arcano accounts by inviting them into the same Organisation in the settings tab. This allows you to have one subscription for multiple accounts Please be aware that this feature requires an "Professional" subscription and a seat in your organization for each user you want to invite.
Yes! Our audit was conducted by cure53 gmbh (also known for auditing Telegram and Protonmail). The audit recommendations have been fully implemented. If you are interested, we can provide the relevant documents, please contact us.
Arcano was developed with the highest security as its goal. Arcano is automatically checked daily for all known security vulnerabilities. As soon as an alarm is triggered, the entire Arcano team is informed and countermeasures are initiated. If a security vulnerability threatens the integrity of data security, we reserve the right to temporarily suspend Arcano.
Arcano, or Arcano GmbH, is a company 100 percent owned by its shareholders. The legal form of a GmbH (limited liability company) ensures that foreign investors cannot take control of the software unnoticed.
Because we believe that secure data transmission to professionals bound by confidentiality in particular, and secret communication between anyone in general, is a fundamental right.
Currently, there are no requests from legal authorities.
To increase security, we support 2FA. This can be activated in the settings.
Various Firefox add-ons can affect the functionality of Arcano. Please try resetting your Firefox settings.
We store all data in Switzerland, currently in the Exoscale Cloud. The data is encrypted and we have no access to it, regardless of where it is stored.
Content blockers can, depending on their configuration, prevent the IFrame, i.e., the Arcano dropzone, from being displayed correctly or at all.
End-to-end encryption is only possible when the relevant code parts are delivered to your browser. This means everybody can always inspect the source code of Arcano. We believe this increases trust and is the only right way to use encryption. However, the code is still copyrighted by Arcano and may not be used without written consent of Arcano gmbh. We plan to open source the relevant parts of our code on github soon.
We welcome every hacker and tinkerer who informs us about problems. We will
  • respond with a reception mail
  • not put any charges against you
  • fix the problem ASAP
  • acknowledge your finding
No, all data is encrypted in your browser and then uploaded to our servers. We have no access to your data and therefore cannot perform virus analysis.
For every transfer you receive, we send the sender a verification email so that the owner of this email address can confirm that they were the sender. Nevertheless, you should exercise the same caution as when receiving files through other channels (such as email). This means verifying the sender, being careful not to activate macros in Office documents, and using a virus scanner on your computer if in doubt.