Security

Security by architecture

The most effective way to protect sensitive data is to never collect it. HistoCraft processes all patient-related content in your browser and stores nothing on our servers.

No patient data on our servers. Ever.

All patient-related information is processed exclusively in your browser and discarded when you leave. Our servers store only your account email and subscription status.

Zero Patient Data Storage

  • No patient data is transmitted to or stored on our servers. This is an architectural decision, not just a policy.
  • All content is processed exclusively in your browser. When you close the tab, the data is gone.
  • Our servers only store your account information (name and email) and your subscription status. Nothing more.
  • Because we never receive patient data, there is no patient data to breach, leak, or misuse. The safest data is the data we never collect.

Passwordless Authentication

  • Magic link login. You receive a one-time link by email. No password to remember, no password to steal.
  • Each link is cryptographically hashed before storage and expires after a single use within a short time window.
  • No credentials stored on our servers. If someone intercepts a used link, it is already worthless.

Encryption

  • All traffic encrypted with TLS. Data in transit is unreadable to anyone except the intended recipient.
  • Template database backups are encrypted at rest. Even if storage media were stolen, the data would be useless.
  • Secure infrastructure with regularly updated dependencies and security patches.

Application Security

  • Content Security Policy (CSP) with strict nonce-based script control prevents cross-site scripting (XSS) attacks.
  • CSRF protection on all mutating requests. Origin header validation ensures requests come from legitimate sources.
  • Rate limiting on authentication, API endpoints, and public routes prevents abuse and brute-force attempts.
  • All user-generated content is sanitized server-side before rendering to prevent injection attacks.

Session Management

  • View all your active sessions and revoke any session with one click from your profile.
  • Concurrent session limits ensure your account is not being used from unauthorized devices.
  • Sessions are cryptographically signed and validated on every request.

Infrastructure

  • Hosted on secure European infrastructure, fully within the EU. Your account data never leaves the European Union.
  • Containerized deployment with Docker for process isolation and reproducibility.
  • SSL certificates enforced on all connections. No unencrypted traffic, ever.
  • Firewall rules restrict access to only the ports and services that are needed.

Our Privacy Commitment

We will never use your data to train AI models. We will never sell your data to third parties. We will never share your data with advertisers. The only data we hold is your account email and subscription status, and we treat even that with the highest care.

If you choose to delete your account, we delete everything associated with it. No exceptions.

For full details on how we handle your information, read our Privacy Policy and Professional Disclaimer.

Questions about security?

We are happy to discuss our security practices in detail. Reach out anytime.