Back to DocNado|User Manual
OverviewQuick StartRegistration & LoginDashboardDocumentsAI Scan & ScannerCalendar & DeadlinesRemindersRecurring & CancellationTags & OrganizationSharing & QR CodeProfile & SettingsPlans & FeaturesBackup & ExportSecurityFAQ

Security & Encryption

How your data is protected

Security and privacy are top priorities at DocNado. All sensitive data — from document titles to amounts and invoice numbers — is encrypted directly on your device using the industry-standard AES-256 algorithm. The server receives only the encrypted ciphertext and cannot read the contents at any point. Only you yourself hold the key to decrypt your data. In addition to client-side encryption, Supabase Row Level Security (RLS) protects your data at the database level: each user can only access their own data, even if someone were to query the database directly. A few fields such as document type and date remain unencrypted to enable search and calendar functionality — however, they contain no sensitive personal information.

Security settings

Security settings

How Your Data Is Protected

What Is Encrypted?

  • ✅ Title, description, location
  • ✅ Amounts (Total, Subtotal, VAT, Discount)
  • ✅ OCR raw data and AI summary
  • ✅ Invoice numbers, customer numbers
  • ❌ **NOT encrypted:** Quantities, document type, date (for search/calendar)

Supabase RLS

In addition to encryption, **Row Level Security** protects at the database level — each user only sees their own data.