Security

Security at Tonta

How we protect your uploads, your keys, and the files you serve.

Tonta handles other people's files for a living, so security isn't a bolt-on. Below is a plain-English summary of how the platform is built and the controls you have. If you have a question this page doesn't answer, email hello@tonta.io.

Storage & access control

Files live in a private object-storage bucket that is never publicly listable. Nothing is served straight from the origin bucket — all delivery is brokered through an edge layer that enforces access rules on every request.

  • Private storage bucket with no public listing or direct origin access
  • Requests signed and validated at the edge before any file is returned
  • Delivery over a global CDN, encrypted in transit with TLS
  • Storage credentials never leave the server side — they're never exposed to the browser

Upload keys you control

Every uploader has its own key, and you decide where that key is allowed to be used. Keys are domain-restricted, so an exposed front-end key can't be reused from a site you don't own.

  • Per-uploader API keys, scoped and revocable independently
  • Domain locking so keys only work from origins you authorise
  • Per-uploader limits on file type and size to reduce abuse
  • A delete API and dashboard so you can remove anything you no longer want stored

Handling what gets uploaded

Uploads are validated server-side, not just in the browser. Images are re-processed during resizing and conversion, which strips the original file down to clean output rather than passing untrusted bytes straight through.

  • Server-side validation of content type and size on every POST
  • Image re-encoding (resize / WebP) that discards the untrusted original
  • Control over XMP metadata so you choose what's embedded and what's removed

Your data

You own your files. You can delete any file or uploader at any time, and deletions remove the object from storage. For details on what we collect and retain, see our Privacy Policy; for the rules of use, see our Terms of Service.

Reporting a vulnerability

If you believe you've found a security issue, please email hello@tonta.io with the details and steps to reproduce. We take reports seriously, will acknowledge them, and ask that you give us a reasonable window to investigate and fix before any public disclosure.

Launch the dashboard