How is the confidentiality of data and backups ensured?

Through cryptography, not promises: end-to-end AES-256 encryption performed on your machines, Poly1305-AES authentication, and keys under your exclusive control. No one else — not Cybee, not the storage provider — can read your backups.

Through cryptography, not promises. All data is encrypted end to end with AES-256, directly on your machines, before any transfer to the cloud. Integrity is guaranteed by Poly1305-AES authentication: any tampering with stored data is detected.

The encryption keys remain under your exclusive control, from day one. Neither Cybee nor the storage provider ever holds them — no one but you can read your backups, and no legal or technical process can change that.

This is confidentiality by architecture: it does not depend on a contract clause, an employee’s discretion or a provider’s goodwill. It is how the system works.