Every document is fingerprinted the moment it enters doclish. A SHA-256 cryptographic hash is generated from the file contents — a unique 64-character signature that can never be forged or duplicated. This hash becomes the document's permanent identity. If a single byte changes after this point, the fingerprint breaks. That discrepancy is detectable immediately — not during discovery, not after a dispute. Immediately.
Documents are encrypted at rest using AES-256, the same standard used by the U.S. government for classified material. Files are stored in Cloudflare R2 object storage — globally distributed, zero-egress-fee, and never accessible to doclish staff. Encryption keys are managed by Cloudflare infrastructure and are never exposed to any human operator.
Every connection to doclish is encrypted with TLS 1.3 — the latest transport layer security protocol. HTTP Strict Transport Security (HSTS) is enforced on all endpoints, preventing downgrade attacks. No data moves between your browser and our servers without encryption. No exceptions.
The audit trail is append-only. Every upload, view, download, share, and delivery is recorded with the actor's identity, timestamp, and origin. Entries are linked by a SHA-256 hash chain — each record contains the cryptographic fingerprint of the previous entry. If any record is tampered with, the chain breaks and the tampering is immediately visible. No one — not even platform administrators — can edit or delete an audit entry.
Every time a document is accessed, its current hash is compared against the hash recorded at intake. If the values match, integrity is confirmed. If they don't, the document has been altered and the system flags the discrepancy. This is not a periodic check — it happens on every single access event, in real time.
Document records and audit logs are retained for a minimum of 45 years. This satisfies HIPAA (7-year minimum for medical records), CJIS (criminal justice information retention), and FRCP Rule 26 (federal litigation hold requirements). Retention is not optional and not configurable downward. Once a document is registered, its custody record is permanent.
When a document leaves doclish, it travels through an encrypted secure link with a configurable expiration window. Every access to that link is logged — who opened it, when, from what IP address, and what device. The recipient never touches your original file. The chain of custody extends beyond your organization, all the way to the recipient's screen.