thetravelingmindsetQ: Clarification on Secure Information Handling
I would like to confirm whether your platform is designed to be used for requesting clients to upload clear pictures of the front and back of their credit cards and valid government‑issued IDs. Could you please clarify the following:
• What are your retention rules for such secure information?
• Do I have control over how long the information is kept?
• If I delete the information on my end, does it also get deleted from your servers?
Thank you for your assistance in helping me understand how your platform manages sensitive data securely.
andreas_ivymayhem
Edited Dec 15, 2025A: Hi there,
You can create a "Public Sharing URL" which you can share with people so they can create secrets only you/your team will see in your workspace inbox.
When people share secrets with you, this data is automatically deleted after 30 days, but you can delete it at any time before that simply by voiding the secret within the inbox.
At that point, the actual secret information is completely deleted (= no way to access or restore it). Files are being queued for deletion so you may be able to access them for another couple of minutes after deleting a secret.
I'd like to add that InPrivy is meant for short-term storage of sensitive information. We openly suggest to keep secrets only for as long as necessary and store any data needed in the future in a password manager or other (local) vaults. Our key and focus here is simply the "sharing" part.