On This Page
Security & Data Integrity in Sortio
Deep dive into Sortio's security features and comprehensive data integrity protections.
Overview
At Sortio, we understand that your files represent valuable data, memories, and work. That's why we've implemented comprehensive security and data integrity measures to ensure your files remain safe, private, and protected during every operation.
Enterprise-Grade Security
Encryption in Transit and at Rest
Your data is encrypted in transit using TLS 1.2 or higher and at rest on our managed infrastructure. In cloud mode, your filenames and metadata are processed by Sortio and your chosen AI provider to plan the sort, so they are readable during processing. To keep everything on your machine, use Offline mode (Ollama) or bring your own API key.
Secure Authentication
We use Auth0, a leader in identity management, to ensure secure login and protect your account from unauthorized access. This robust authentication system provides an additional layer of security for your Sortio account.
Privacy-Preserving AI
In cloud mode (the default), Sortio sends your filenames and metadata to plan the sort, so they are readable during processing; file contents are sent only if you enable a content-based feature. Data is encrypted in transit (TLS 1.2+) and at rest, but not end-to-end, and Sortio does not retain your file contents. To keep everything on your machine, use Offline mode (Ollama) or bring your own API key.
Multi-layered Data Protection Approach
Two-phase Backup System
Before Sortio performs any file operations, it creates comprehensive backups:
-
Primary backup stored in a hidden
.ss_backupfolder -
Secondary backup in a separate
.ss_backup_secondaryfolder - Automatic fallback system that activates if the primary backup becomes corrupted
Atomic File Operations
We use techniques that minimize the risk of file corruption during operations:
- Atomic rename operations where possible to ensure safe file transfers
- Comprehensive integrity verification for all copy+delete operations
- Transaction-like validation ensures operations complete fully or not at all
Extensive Verification
We verify file integrity at multiple stages:
- File Checksumming - Content-based verification before and after operations
- Directory Checksumming - Recursive verification of directory contents
- Pre/Post Operation Validation - Ensures complete transfers with integrity checks
Operation Journaling
We maintain detailed records of all file operations:
-
Persistent logging in a
.ss_journaldirectory - Complete operation history with timestamps and checksums
- Audit trail for troubleshooting and verification
File Safety Measures
Additional Safety Precautions
We take extra precautions to protect your files:
- Trash Instead of Delete - Files are moved to your system's trash/recycle bin rather than permanently deleted
- File Locking - Prevents concurrent modifications to the same file
- Permission Validation - Pre-operation checks ensure proper access rights
Fail-Safe Recovery
In the unlikely event of an operation failure:
- Automatic restoration from backup
- Smart selection of the best available backup source
- Comprehensive error handling with recovery strategies
Why This Matters
These security and data integrity measures mean that when you use Sortio to organize your files:
- Your data is encrypted in transit (TLS 1.2+) and at rest, and stays on your machine in Offline mode or with BYOK
- Your original files remain safe and recoverable
- File operations complete reliably or safely roll back
- The risk of data corruption or loss is minimized
- You can undo operations with confidence
For developers and technical users interested in implementation details, our integration tests demonstrate how these features work together to ensure data integrity.
