By George Curta · Last updated 2026-04-07
Zero-Knowledge Sekuriteit
Jou wagwoord VERLAAT NOOIT jou toestel nie. Ons gebruik slim kriptografie om jou te verifieer sonder om ooit jou wagwoord te sien - die veiligste manier om jou rekening te beskerm.
Wat is Zero-Knowledge?
Wanneer jy aanmeld op die meeste webwerwe, reis jou wagwoord oor die internet na die bediener. Alhoewel dit tydens reis versleuteld is, sien die bediener steeds jou wagwoord.
Met Zero-Knowledge bly jou wagwoord op JOU toestel. In plaas daarvan gebruik ons slim wiskunde om te bewys dat jy die wagwoord ken sonder om dit ooit te stuur.
Reguliere Aanmelding
Jy toon jou ID-kaart om in 'n gebou te kom
Zero-Knowledge Aanmelding
Jy bewys dat jy 'n geheime handdruk ken, maar onthul nooit wat dit is
Waarom Zero-Knowledge Gebruik?
Wagwoord Nooit Gestuur
Selfs as hackers jou internetverbinding kyk, kan hulle nie jou wagwoord steel nie omdat dit nooit oor die netwerk reis nie.
Ons Kan Dit Nie Sien Nie
Selfs nie anonym.legal personeel kan jou wagwoord sien nie. Jou inligting bly heeltemal privaat.
Beter Beskerming
As ons bedieners ooit gecompromitteer word, sou jou wagwoord steeds veilig wees. Ons stoor slegs wiskundige bewys, nie wagwoorde nie.
24-Woord Herstel
Jy ontvang spesiale herstelwoorde om toegang te herwin as jy jou wagwoord vergeet. Geen ondersteuning bel nie - jy beheer jou rekening.
Hoe Dit Werk
Zero-Knowledge verifikasie in 4 eenvoudige stappe
Skep Wagwoord
Jy skep 'n wagwoord op jou toestel
Genereer Geheime Sleutel
Jou toestel skep 'n geheime sleutel uit jou wagwoord met behulp van spesiale wiskunde
Stuur Bewys
Slegs 'n wiskundige bewys word aan ons gestuur - nooit jou wagwoord nie
Verifieer
Ons verifieer die bewys - ons kan bevestig dit is jy sonder om jou wagwoord te sien
Dit is soos om 'n slot te hê waar jy die enigste sleutel hou, en ons net kyk of jou sleutel werk.
Jou 24-Woord Herstel Frase
Wanneer jy Zero-Knowledge aktiveer, ontvang jy 24 spesiale woorde. Hierdie woorde is jou meester sleutel tot jou rekening.
Waarvoor is hierdie woorde?
- Herwin jou rekening as jy jou wagwoord vergeet
- Herwin toegang as jy jou toestel verloor
- Meld aan op 'n nuwe rekenaar
DO
- Skryf dit neer op papier
- Berg die papier iewers veilig (soos 'n geslote laai)
- Oorweeg om 'n rugsteunkopie in 'n ander veilige plek te maak
MOENIE
- Neem 'n foto daarvan
- Stoor dit op jou rekenaar
- Stuur dit per e-pos of teks
- Deel dit met iemand
Waarom 24 Woorde?
- Woorde is makliker om korrek neer te skryf
- Woorde is makliker om te lees en te verifieer
- 24 woorde bied uiters sterk sekuriteit
Belangrik
Sonder jou herstel frase, kan ons NIE help om jou weer in jou rekening te kry nie. Dit is deur ontwerp - Zero-Knowledge beteken ons het nie toegang tot jou wagwoord of sleutels nie.
Werk Oral
Zero-Knowledge beskerming oor alle anonym.legal platforms
Tegniese Besonderhede
Vir die sekuriteitsbewuste
Argon2id Sleutel Afleiding
Geheue-harde algoritme wat dit baie stadig maak om wagwoorde te raai, selfs met gespesialiseerde hardeware.
XChaCha20-Poly1305
Die selfde geverifieerde versleuteling wat deur sekuriteitskenners wêreldwyd gebruik word vir maksimum beskerming.
Geen Wagwoord Berging
Ons stoor nooit jou wagwoord in enige vorm nie - versleuteld, gehashe, of andersins.
Constante Tyd Verifikasie
Sekuriteitskontroles neem dieselfde tyd ongeag die invoer, wat tydaanvalle voorkom.
Gereeld Gestelde Vrae
Kan anonym.legal personeel my wagwoord sien?
Nee. Dit is die hele punt van Zero-Knowledge! Jou wagwoord word op jou toestel verwerk. Ons ontvang slegs 'n wiskundige bewys, nooit die werklike wagwoord nie.
Wat as anonym.legal gehack word?
Jou wagwoord is steeds veilig! Hackers sou slegs wiskundige bewys vind, nie wagwoorde nie. Sonder jou werklike wagwoord kan hulle nie toegang tot jou rekening kry nie.
Is Zero-Knowledge moeiliker om te gebruik?
Nee! Jy sal geen verskil opmerk wanneer jy aanmeld nie. Die enigste ekstra stap is om jou 24-woord herstel frase te stoor wanneer jy jou rekening eerste keer opstel.
Kan ek Zero-Knowledge afskakel?
Zero-Knowledge is standaard geaktiveer vir jou beskerming. Ons beveel aan om dit aan te hou vir die beste sekuriteit.
Wat gebeur as ek my wagwoord verander?
Wanneer jy jou wagwoord verander, skep jou toestel nuwe geheime sleutels en jy ontvang 'n nuwe 24-woord herstel frase. Jou ou herstel frase stop om te werk, so stoor jou nuwe frase onmiddellik!
Na die LastPass-breeching, hoe kan ek verifieer dat 'n verskaffer werklike nul-kennis versleuteling gebruik?
anonym.legal gebruik Argon2id sleutelafleiding (64MB geheue, 3 herhalings) wat heeltemal in die blaaiers loop — die bediener ontvang nooit jou wagwoord of versleuteling sleutel nie. AES-256-GCM versleuteling gebeur voordat data jou toestel verlaat. Selfs 'n volledige bedienerbreuk lewer slegs versleutelde blobs sonder die sleutels om dit te ontsleutel.
Technical Appendix
Cryptographic parameters and protocol details for security auditors and developers.
Cryptographic Parameters
| Component | Algorithm | Parameters |
|---|---|---|
| Password Hashing | Argon2id | Memory: 64 MB, Iterations: 3, Parallelism: 1, Salt: 16 bytes, Output: 32 bytes |
| Symmetric Encryption | XChaCha20-Poly1305 | AEAD, 256-bit key, 24-byte nonce (random per operation) |
| Key Derivation | HKDF-SHA256 | Master Key → Auth Key + Encryption Key (domain separation) |
| Recovery Phrase | BIP39 | 256-bit entropy, 24 words, 2048-word wordlist |
| Random Number Generation | CSPRNG | crypto.getRandomValues (browser), libsodium.randombytes_buf (native) |
Key Derivation Chain
Sent to server for verification
Never leaves device
Protocol Flow
Registration
- 1Client generates random salt (16 bytes)
- 2Client derives Master Key via Argon2id(password, salt)
- 3Client derives Auth Key and Encryption Key via HKDF
- 4Client sends Auth Key + salt to server (password never sent)
Login
- 1Client requests salt from server (by email)
- 2Client re-derives Master Key via Argon2id(password, salt)
- 3Client sends Auth Key; server verifies with timing-safe comparison
- 4Server issues JWT session token; Encryption Key stays on device
Cross-Platform Compatibility
| Platform | Crypto Library | Argon2id Parallelism |
|---|---|---|
| Web App (Browser) | libsodium.js (WebAssembly) | 1 |
| Desktop App (Tauri) | rust-argon2 + libsodium.js | 1 |
| Office Add-in | libsodium.js (WebAssembly) | 1 |
Parallelism is set to 1 across all platforms to ensure cross-platform compatibility. A key derived on any platform works on all others.
From the Blog
View all articlesJapan My Number: Verhoeff & APPI
63% of generic tools fail My Number detection in Japanese documents. My Number uses Verhoeff algorithm — the most complex national ID checksum in Asia.
HDPA Greece: AFM & AMKA Detection
Greek AFM detected with 52% accuracy by generic tools. HDPA issued 89 decisions in 2024 — up 162% from 2022. Tourism and maritime sectors face distinct.
NAIH Hungary: TAJ-Szám and Adóazonosító Jel
Hungarian NER accuracy is 67% vs. EU average 82% — NAIH's 2024 assessment. TAJ-szám weighted checksum and adóazonosító jel detection gaps.
Beskerm Jou Rekening Nou
Skep 'n rekening met Zero-Knowledge sekuriteit. Jou wagwoord bly joune - altyd.
About this page
We update this page when our platform or the law changes.
Read our founder note for how we work.
Each change shows up in the timestamp at the top.
Related reading
- Common questions
- Glossary
- How tokens work
- Security posture
- Where we comply
- What we detect
- Case studies
- Release notes
We follow these rules
- GDPR (EU 2016/679).
- ISO/IEC 27001:2022.
- NIS2 (EU 2022/2555).
- HIPAA safe harbor under 45 CFR § 164.514(b)(2).
Our promise
We do not sell your data.
We do not train models on your text.
We store your files in Germany.
You can delete your account at any time.
You own your work.
Where we run
Our servers live in Falkenstein, Germany.
We use Hetzner. They hold ISO 27001 certification.
All data stays in the EU.
Backups run every day.
Need help?
Email support@anonym.legal.
We reply within one business day.
How we test
We run a full check suite on every release.
Each surface gets its own sweep script and report.
Human reviewers spot-check the output each week.
We track recall and precision on a labelled set.
Bad runs block the deploy.
What we never do
- We never sell your information to third parties.
- We never train models on what you upload.
- We never keep your work after you delete it.
- We never share keys with any outside firm.
- We never run ads inside the product.
Plans in plain words
We sell credits, not seats.
One credit covers one short job.
Long jobs use a few credits each.
You can top up at any time.
Unused credits roll over each month.
Read the plans page for current rates.
Who built this
A small team of engineers and lawyers built this.
We ship from Europe and work in the open.
Our founder note spells out why we started.
Where to start
- Open the web app and try a sample file.
- Learn how credits get counted.
- See current plans and limits.
- Meet the team behind the product.
How the parts fit
A browser add-on cleans text inside Chrome.
A Word plug-in handles drafts in Office.
A small desktop tool works on whole folders.
An agent protocol link feeds large models safely.
All four share one core engine and one rule set.
Words from our team
We started this work after a lunch about cookies.
One friend kept getting odd ads on her phone.
We asked why a court file leaked through a draft.
We sketched the first build on a napkin that week.
By month three we had a tiny demo for a friend.
She used it on her first case the next day.
Common questions we hear
Can the tool read scanned PDFs? Yes, with OCR.
Does it work on long files? Yes, in small chunks.
Can I roll my own rule set? Yes, save it as a preset.
Does it run offline? The desktop build runs offline.
Do you keep my files? No, the cloud build wipes after each run.
Will it learn from my work? No, we never train on inputs.
A short tour of the workflow
Upload a file or paste a snippet of prose.
Pick the entities you want gone from the draft.
Choose a method: replace, mask, hash, encrypt, or redact.
Press run and watch the side panel show each hit.
Skim the result and tweak any rule that misfired.
Save the cleaned file or send it to a teammate.