100% Secure: All processing happens in your browser. Your files never leave your device.

Learn more
Back to Home

Enterprise & IT Administrator Information

Technical details for network administrators and security teams

Security Architecture

100% Client-Side Processing

All file processing, data manipulation, and computations occur entirely within the user's browser using JavaScript. No files, data, or content are transmitted to our servers or any third-party services.

✓ Network Security Benefits:

  • No outbound data transmission of user files
  • No file uploads to external servers
  • No API calls with sensitive data
  • Works within air-gapped networks once cached
  • No WebSocket or persistent connections

Technical Specifications

Network Requirements

  • Domain: pdf.spkup.co (HTTPS only)
  • Ports: 443 (HTTPS) only
  • CDN: No external CDN dependencies
  • External Requests: None after initial page load
  • WebRTC: Not used

Security Headers

Strict-Transport-Security: max-age=63072000; includeSubDomains; preload

X-Frame-Options: SAMEORIGIN

X-Content-Type-Options: nosniff

X-XSS-Protection: 1; mode=block

Content-Security-Policy: default-src 'self'

Referrer-Policy: strict-origin-when-cross-origin

Permissions-Policy: camera=(), microphone=(), geolocation=()

Browser Requirements

  • • Chrome/Edge 90+
  • • Firefox 88+
  • • Safari 14+
  • • JavaScript must be enabled
  • • No browser extensions required

Data Privacy & Compliance

What We DON'T Collect

  • User files or documents
  • Personal information
  • IP addresses (not logged)
  • Cookies for tracking
  • Analytics or telemetry
  • Browser fingerprinting

Compliance Standards

  • GDPR - No personal data processing
  • CCPA - No data selling or sharing
  • HIPAA - Safe for healthcare use
  • SOX - Suitable for financial data
  • PCI DSS - No payment data handling

Firewall & Proxy Configuration

Domains to Whitelist

pdf.spkup.co

*.spkup.co (if using subdomains)

URL Categories

If your firewall uses category-based filtering, this site should be categorized as:

  • Business Tools / Productivity
  • Developer Tools
  • Online Applications
  • Software as a Service (SaaS)

💡 For IT Administrators:

This site can be safely whitelisted as it poses no data exfiltration risk. All processing occurs client-side, making it suitable for use with confidential documents and sensitive data.

Open Source Libraries

All libraries used are open source and can be audited:

pdf-lib

MIT License - PDF manipulation

React / Next.js

MIT License - UI framework

react-syntax-highlighter

MIT License - Code highlighting

Performance & Scalability

Since all processing happens client-side, there are no server-side bottlenecks or rate limits:

  • No API rate limiting
  • No file size restrictions (limited only by browser memory)
  • No concurrent user limits
  • No queue times or processing delays
  • Works offline after initial page load

Security Contact

For security inquiries, vulnerability reports, or enterprise support:

Email: security@spkup.co

Security Policy: /.well-known/security.txt

Privacy Policy: /privacy