protonURL

Secure and confidential sharing

Secured End-to-end encrypted   Unique Single use

(optional, by default your content is encrypted with a protonURL secret key)
Remember to write down your secret key on your side and send it to the recipient of the protonURL so that he can discover its content.
Without this key it will be impossible to retrieve the content of this protonURL because we do not keep your key.
Advanced options

Tool used to share information private or non-private
with a link whose content will be deleted on first reading.

Frequently Asked Questions

The protonURL and its content are deleted as soon as they are accessed.
Additionally, protonURL has an automatic deletion policy for sharing links that are not accessed within 72 hours by default. It is possible to modify the lifespan of the link in the advanced options. This means that if the sharing link is not accessed during the selected duration after its creation, it will be permanently deleted from our servers. This measure is taken to ensure that shared data is stored on protonURL's servers for a limited time and to protect the confidentiality of the content.
Yes.
protonURL is designed to provide a secure and confidential content-sharing service. The service ensures that sharing links self-destruct after the first access, meaning that shared data can only be viewed once. This limits access to the shared data and reduces the risk of leaks or misuse.

Regarding data deletion, protonURL does not store shared data on its servers after it has been accessed. The shared data is temporarily stored on our servers only for the duration of the sharing link. Once the sharing link has expired or the data has been accessed, the data is automatically deleted from protonURL’s servers. This ensures that data is not stored longer than necessary and is securely and permanently deleted.

It should be noted that protonURL has an automatic deletion policy for sharing links that are not accessed within 72 hours or the duration selected in the Advanced Options. This means that if the sharing link is not accessed within this period after its creation, it will be permanently deleted from our servers. This measure is taken to ensure that shared data is stored on protonURL’s servers for a limited time and to protect the confidentiality of the content.
protonURL is a service designed to ensure the security and confidentiality of shared data. The service guarantees that sharing links self-destruct after the first view and that shared data is automatically deleted from the ProtonURL.ch servers once the sharing link has expired or the data has been accessed. This ensures that shared data is not stored longer than necessary and that it is securely and permanently deleted.

Regarding traces of shared content, protonURL does not store a copy of the shared data on its servers and does not track the activity of viewing sharing links. This means that we do not keep any record of the shared content or of the people who have viewed the sharing links. This privacy policy is designed to protect users' privacy and ensure that shared data is only accessible to those who have received the sharing link.
Data stored on protonURL is encrypted with AES-256-CBC encryption. A different key and IV are used for each content. This means that even if an attacker manages to access the encrypted data, they will not be able to decrypt it without the corresponding IV. The IV is a random number that is generated for each piece of content when it is encrypted and is stored separately from the encrypted data itself. Encrypted data is stored on secure servers in Europe and is constantly monitored to ensure its security and confidentiality.
No, it is not possible to retrieve the content of a ProtonURL once it has been viewed and the sharing link has expired. When the sharing link is accessed for the first time, the shared content is automatically destroyed and can no longer be viewed or retrieved from the ProtonURL.

The automatic destruction feature of shared content is an important security measure to protect the confidentiality of the shared data and ensure that it can only be accessed once. This greatly reduces the risk of data leaks or misuse of confidential information.

It is therefore important to ensure that the people who have access to the ProtonURL have the necessary information to view the shared content upon first reading. If the recipients are unable to view the content of the ProtonURL within the given timeframe, it is recommended to recreate a sharing link with a new ProtonURL to ensure that the data remains protected.
No. As soon as the first contact consults the protonURL, its content will be erased, so the next contact who wishes to consult the content will no longer have access to it.
Yes. You can activate this option by checking the box for it under the text box and filling in your key. Be sure to save it and pass it on to the person who will need to open your protonURL, because as we do not store users' private keys, without it it will be impossible to display the content.
No. This private key is used when creating the protonURL to encrypt the content but is not saved. It is therefore important that you keep it on your side and pass it on to the recipient in order that it can display the content.
The system will try to decrypt the protonURL with this bad key, the content will be displayed still encrypted, then as soon as it is displayed it will be deleted like a classic protonURL. Indeed, as we do not save the private keys, it it was not possible for us to test if the entered key is the correct one.
Simply because sending passwords, or sensitive content, by email or SMS is very risky, especially since this content remains available for months, and even years, in the inbox and in the sent items.
With our system, all that will remain in these boxes is a link to content that no longer exists.

Do you want to create a pre-filled link?

You can link to protonURL with the text box pre-filled to have the protonURL ready to be created. To do this, you just need to create a link like:
https://protonurl.ch?prefilled=TG9yZW0gaXBzdW0KZG9sb3Igc2l0IGFtZXQ=

The content of the "prefilled" field must be encoded in base64. Here is an example code in PHP:
<a href="https://protonurl.ch/?prefilled=<?php echo base64_encode("Login: my-login\nPassword: my-password"); ?>" target="_blank">Bouton</a>

You can also include the language to redirect the visitor directly to your language:
<a href="https://protonurl.ch/en?prefilled=<?php echo base64_encode("Login: my-login\nPassword: my-password"); ?>" target="_blank">Bouton</a>

Please note, this feature is intended for experienced users, use these pre-filled links with care, they should only be displayed to people who are already aware of the content or to whom this content is voluntarily sent, and not to the public. The "prefilled" content encoded via base64 is not encrypted, this encoding is used simply to facilitate the creation and sharing of the link. We decline all responsibility in the event of misuse of our system.