How is my invoice data encrypted?

Using AES-256-GCM via the browser's Web Crypto API. Encryption keys are derived from your device and never transmitted. Data at rest in IndexedDB is always encrypted; decryption happens only in the active browser session, in memory.

Do you collect any telemetry from the app?

No. The JuSenseSheet app contains no analytics, no telemetry, and no tracking scripts. The only network activity is fetching app assets on first load — after which it runs entirely offline. The JupiterSense website itself uses standard anonymised analytics but the apps do not.

How does license validation work if there's no server?

License keys are validated entirely on your device. The key format includes an HMAC that the app verifies against a built-in public component — no round-trip to any server. This means your installed app works forever, even if JupiterSense goes offline, and license checks never leak usage data.

Security & Privacy — JuSenseSheet by JupiterSense

Security by design, not by policy

These aren't promises — they're technical constraints built into how JuSenseSheet works.

AES-256-GCM Encryption

Every PDF you drop into JuSenseSheet is encrypted at rest using AES-256-GCM — the same standard used by banks and government systems. The key is derived from a machine-local secret and never leaves your device.

Algorithm: AES-256-GCM
Key derivation: PBKDF2-SHA256
Nonce: 96-bit random per file

100% Local Processing

JuSenseSheet runs entirely on your computer. PDF parsing, field extraction, vendor matching, and export generation all happen locally using Python. No internet connection is needed for normal operation.

Works fully offline
No cloud dependency
Data stays on your machine

Zero Telemetry

JuSenseSheet does not collect usage analytics, crash reports, or any behavioural data. There are no tracking pixels, no error-reporting SDKs, and no third-party analytics embedded in the application.

What we never collect:

Invoice data · Vendor names · File names · Usage patterns · Keystrokes

On-Device License Verification

Pro license keys are cryptographically signed and verified on your device. Activation binds a key to your machine; some products confirm the licence is still valid with a lightweight periodic check that sends only the licence key and device identifier — never your documents or data. The app works offline between checks.

Signing: Ed25519 / HMAC-SHA256
Checks send: key + device id only
Works offline between checks

Full Data Portability

Your data is stored in a local SQLite (sql.js) database in your browser, with PDFs encrypted at rest. Export everything as CSV or XLSX at any time, or use Backup & Restore to capture the full local database in one .jsbackup file. Uninstalling JuSenseSheet leaves no residue — clear browser site data and it's gone.

SQLite DB — open standard
No vendor lock-in
Clean uninstall

Network transparency

Every outbound connection JuSenseSheet can make — and why.

Destination	When	What's sent	Required?
jupitersense.com	Never — no update checks or license pings	Nothing	Never
Any analytics / tracking	Never	Nothing	Never

You can verify this yourself: JuSenseSheet is a local FastAPI server — run it with a packet sniffer and confirm.

Responsible disclosure

Found a security issue in JuSenseSheet? Please report it privately. We take vulnerabilities seriously and will respond within 48 hours. We do not operate a formal bug bounty program yet, but we will credit you publicly (if you wish) after a fix is shipped.

security@jupitersense.com

Ready to try JuSenseSheet?

Free for 50 invoices/month. No account needed. Download and run in under two minutes.

Install Free — Free

Your invoices stayon your machine