Security & Data Integrity in Sortio

Deep dive into Sortio's security features and comprehensive data integrity protections.

Overview

At Sortio, we understand that your files represent valuable data, memories, and work. That's why we've implemented comprehensive security and data integrity measures to ensure your files remain safe, private, and protected during every operation.

Enterprise-Grade Security

Encryption in Transit and at Rest

Your data is encrypted in transit using TLS 1.2 or higher and at rest on our managed infrastructure. In cloud mode, your filenames and metadata are processed by Sortio and your chosen AI provider to plan the sort, so they are readable during processing. To keep everything on your machine, use Offline mode (Ollama) or bring your own API key.

Secure Authentication

We use Auth0, a leader in identity management, to ensure secure login and protect your account from unauthorized access. This robust authentication system provides an additional layer of security for your Sortio account.

Privacy-Preserving AI

In cloud mode (the default), Sortio sends your filenames and metadata to plan the sort, so they are readable during processing; file contents are sent only if you enable a content-based feature. Data is encrypted in transit (TLS 1.2+) and at rest, but not end-to-end, and Sortio does not retain your file contents. To keep everything on your machine, use Offline mode (Ollama) or bring your own API key.

Multi-layered Data Protection Approach

Two-phase Backup System

Before Sortio performs any file operations, it creates comprehensive backups:

  • Primary backup stored in a hidden .ss_backup folder
  • Secondary backup in a separate .ss_backup_secondary folder
  • Automatic fallback system that activates if the primary backup becomes corrupted

Atomic File Operations

We use techniques that minimize the risk of file corruption during operations:

  • Atomic rename operations where possible to ensure safe file transfers
  • Comprehensive integrity verification for all copy+delete operations
  • Transaction-like validation ensures operations complete fully or not at all

Extensive Verification

We verify file integrity at multiple stages:

  • File Checksumming - Content-based verification before and after operations
  • Directory Checksumming - Recursive verification of directory contents
  • Pre/Post Operation Validation - Ensures complete transfers with integrity checks

Operation Journaling

We maintain detailed records of all file operations:

  • Persistent logging in a .ss_journal directory
  • Complete operation history with timestamps and checksums
  • Audit trail for troubleshooting and verification

File Safety Measures

Additional Safety Precautions

We take extra precautions to protect your files:

  • Trash Instead of Delete - Files are moved to your system's trash/recycle bin rather than permanently deleted
  • File Locking - Prevents concurrent modifications to the same file
  • Permission Validation - Pre-operation checks ensure proper access rights

Fail-Safe Recovery

In the unlikely event of an operation failure:

  • Automatic restoration from backup
  • Smart selection of the best available backup source
  • Comprehensive error handling with recovery strategies

Why This Matters

These security and data integrity measures mean that when you use Sortio to organize your files:

  1. Your data is encrypted in transit (TLS 1.2+) and at rest, and stays on your machine in Offline mode or with BYOK
  2. Your original files remain safe and recoverable
  3. File operations complete reliably or safely roll back
  4. The risk of data corruption or loss is minimized
  5. You can undo operations with confidence

For developers and technical users interested in implementation details, our integration tests demonstrate how these features work together to ensure data integrity.