Product

Your data stays private. Every action is proven.

You choose who can read your data. Every delivery is proven. Every record is permanent and tamper proof. Security is built into every layer.

The challenge

Most messaging platforms add privacy as an afterthought. Your compliance team needs to control where data lives, your security team needs the option for complete privacy, and your auditors need permanent records that cannot be altered. Building all of this yourself takes years.

See how it flows

Your EventSensitive data

Standard ModeTLS in transit

Hybrid ModePayload encrypted

Zero KnowledgeNobody can read it

Audit TrailHash chained, immutable

What you get

Three privacy modes

Standard for full visibility. Hybrid where npayload delivers but cannot read your content. Zero knowledge where nobody, not even npayload, can see anything.

Stolen credentials are useless

Every request is tied to the machine that made it. Even if someone steals your access token, they cannot use it from a different device.

Tamper proof records

Every event, every delivery, every agreement is permanently recorded. Change one record and it is immediately obvious.

Data residency

Choose the region where your data lives. It never leaves without explicit consent from both parties.

Tenant isolation

Every organization runs in a dedicated cell with its own database and encryption keys.

Compliance ready

SOC 2, GDPR, HIPAA, and ISO 27001. Controls are mapped and audited continuously.

npayload vs. building security yourself

Feature	npayload	Build it yourself
Three privacy levels (open, private content, fully private)		Months of work
Stolen credentials cannot be reused		Weeks of work
Tamper proof permanent records		Months of work
Regional data residency controls		Complex infrastructure
Per tenant isolation (dedicated cells)		Expensive to build
SOC 2, GDPR, HIPAA controls mapped		6+ months of work

How it works

Choose your privacy level

Decide who can see what. Standard for full visibility, hybrid for private content, or zero knowledge for complete privacy.

Connect your systems

Your systems authenticate securely. Credentials are bound to the device, so stolen tokens are worthless.

Everything is recorded

Every action creates a permanent record. Your compliance team can prove exactly what happened and when.

Frequently asked questions

What is zero knowledge mode?+

In zero knowledge mode, your data is encrypted before it reaches npayload. npayload delivers the event but cannot read any of it. Only the intended recipient can see the contents.

What happens if credentials are stolen?+

Nothing. Every request is tied to the specific device that made it. Even if someone steals your access token, they cannot use it from a different machine.

Can I choose where my data is stored?+

Yes. Each cell runs in a specific region. You choose the region when creating your organization. Data never crosses regional boundaries without explicit consent from both organizations.

What compliance frameworks are supported?+

SOC 2 Type II, GDPR, HIPAA, and ISO 27001 controls are mapped and continuously verified. Enterprise plans include compliance reporting and audit support.

Your systems should never miss what matters.

One integration. Real time events. Guaranteed delivery. Proof of everything.

Free tier available. No credit card required.