Users visit our Site anonymously. NullUpload.com does not store logs upon the activity of our Site, only basic error logs for security purposes. The only time we can collect any personal information is when the user uploads a file. A user can upload a file with personal information embedded in such file. While we try our best to protect users information from being posted on our site, the user themselves are responsible for actions to keep their anonymously.
This website uses Google Adsense to show advertisements in order to monetize the service.
NullUpload.com may collect and use Users information for the following purposes:
On our Clearnet site we provide a high security SSL certificate. The security of such certificate can be security audited at any time. At the same time, please check out our header security. We also have been setup with DNSSEC friendly DNS servers that are outfitted with DNSSEC to protect against DNS cache poisoning while also providing origin authentication, data integrity, and authenticated denial of existence. These security features provides protection for all information transfer from the User to the Clearnet Site. The Hidden Service is within the encrypted network of tor. All connections are already encrypted and DNS leaking is no longer possible so these protections are not needed to securely transfer information.
All files are stored outside the web directory with random file names. Files are only accessable to the User when given the appropriate download link. When serving we pull the assigned (original if Randomize Filename not selected) name of the uploaded file from a database and serve the requested file named as such.
To protect Users anonymously, we have rebuilt this site exceeding standard file security practices, store a few error logs for a few weeks, provide a hidden service site to enhance privacy for users that still think we do store logs (hidden services can not retreve IP addresses).
Unless the user uploads or posts personal information or is a court order, we do not have any. If the user did upload personal information, it would only be accessable from appropriate download link. If a User chooses to password protect their download link there is no way to access the file unless the appropate password is provided on the appropate download link. All randomly generated passwords are saved in hash format.
By using this Site, you signify your acceptance of this policy. If you do not agree to this policy, please do not use our Site. Your continued use of the Site following the posting of changes to this policy will be deemed your acceptance of those changes.
-No IP is logged unless the user triggers an application error, then we log the error.
-Extra data from files: upload date, number of downloads, last download date, SHA1 file hash, original filename (if selected).
-We do not actively scan/view/search uploaded files. If you find an abusive file, please report us.
This document was last updated on February 18, 2017