How Zero-Knowledge Encryption Protects Your Data

Equipath is built on a zero-knowledge architecture, meaning your sensitive entity data is encrypted on your device before it is sent to our servers.

What Zero-Knowledge Means

• Equipath cannot read your data. Encryption and decryption happen in your browser.
• Your encryption key never leaves your device (unless you share it via recovery).
• Even if our servers were compromised, attackers would only obtain encrypted ciphertext.

How It Works

1. When you log in, your password is used to derive an encryption key locally.
2. All entity data is encrypted with this key before upload.
3. When you load data, it is decrypted locally after download.

What Is and Isn't Encrypted

Encrypted (you control):

• Entity details (names, addresses, ownership)
• Registration and compliance data
• Documents and attachments

Not encrypted (operational metadata):

• Your email address and account settings
• Billing information (handled by our payment processor)

Performance Considerations

Local encryption adds a small amount of processing time when loading or saving data. This is normal and expected.

Important: Because we cannot read your data, we also cannot recover it if you lose your encryption key. Keep your recovery key in a safe place.