No file hosting
GhostDesk does not store, proxy, or resell your object bytes. Uploads and downloads go between your device and the provider you connect.
Security model
Security you can verify
GhostDesk is built for people who want a polished desktop workflow without giving up storage control. This page explains the trust boundary in plain language.
How data moves
Credential encryption, Ghost Mode, and direct-from-storage sharing are part of the product model. Technical details stay visible for people who want to inspect the trust boundary.
- Credentials encrypted with your password
- Sidecar holds decrypted credentials only during unlocked sessions
- Ghost Close clears the active workspace session
- Share links avoid GhostDesk-hosted file bytes
Crypto module (coming soon)
Device
You unlock the workspace
01
Encrypted config
Credentials stay password-encrypted
02
Your storage
Files remain with your provider
03
Guest link
Time-limited downloads
04
What GhostDesk does not do
No plaintext credential sync
Storage keys are encrypted with your password before they leave your device for sync. GhostDesk cannot read them without your unlock password.
Session-scoped unlock
The sidecar keeps decrypted credentials only while your workspace is unlocked. Ghost Close clears that session state on the device.
Guest links stay on your storage
Share pages are served by GhostDesk, but downloads use time-limited presigned URLs from your bucket — not GhostDesk-hosted copies.
Ready to work with storage you own?
Explore the product tour, read the guides, or download from the store when links go live.