WinDesk has been designed as a security product from day one: peer-to-peer data flow, end-to-end encryption, hardware-bound tokens, Swiss hosting. No cloud bridge, no CLOUD Act, no need to trust us — the crypto guarantees it.
Each session uses an ephemeral AES-256-GCM key negotiated via ECDH (Curve25519). Both parties authenticate each other before any data is transferred. The key is discarded after the session — even we cannot decrypt content afterwards.
Device tokens are encrypted with the Secure Enclave (Apple), TPM (Windows) or TPM 2.0 + tpm2-tools (Linux). Copying the token file to another machine renders it invalid. A hardware-fingerprint pin prevents token replay after hardware swaps.
Screen data flows directly between client and host. Our infrastructure does not see it. Behind restrictive NAT, WinDesk falls back to a Swiss TURN relay — that relay only sees encrypted packet bytes.
TOTP or passkey (WebAuthn / FIDO2). New users must set up MFA on first login. Sensitive actions (revoke device, change role, cancel subscription) require a fresh password or passkey re-confirmation (10 min freshness).
Immutable record of connections, file transfers and permission changes. Filterable by user, exportable as CSV. GDPR Art. 30 ready.
Servers in certified data centres in Falkenstein (Hetzner DE) and Helsinki (Hetzner FI), no US cloud. Swiss GmbH with no US parent — the CLOUD Act does not apply.
The Swiss revFADP (revised Federal Act on Data Protection) is largely equivalent to the GDPR. Our privacy notice documents processing per Art. 13 GDPR and Art. 19 revFADP.
Encryption at the state of the art: AES-256-GCM, ECDH Curve25519, perfect forward secrecy per session.
Windows: DigiCert EV code-signing via SafeNet eToken. macOS: Apple Developer ID + Apple notarisation. Linux: signed .deb/.rpm packages via repository keys.
External security audit planned for Q4 2026. ISO 27001 certification as a medium-term target.
Remote-desktop software is misused in an underground economy for tech-support scams, banking hijacks, romance scams and findom operations — AnyDesk has been a documented target for years. WinDesk is technically hardened against these use cases:
Plus: Lightnet Multimedia GmbH pursues abuse criminally, also internationally via the Budapest Convention and bilateral mutual legal assistance treaties. If you are a victim of a remote-support scam or want to report abuse: Report abuse + victim help page.
No. End-to-end encryption technically guarantees that session content is unreadable to us. We only see metadata (who, when, how long, which IP) for billing and security auditing.
Only encrypted UDP packets. The relay forwards them without understanding them. The symmetric AES keys are never exchanged between client and server — only between the two endpoints.
No. Lightnet Multimedia GmbH is a Swiss limited-liability company seated in Graben (CH-3376). No US parent, all servers in Switzerland and Germany/Finland. The CLOUD Act does not apply.
Hardware-encrypted: Apple Silicon uses the Secure Enclave, Windows TPM 2.0, Linux tpm2-tools. Where no TPM is present (e.g. Pi 4) we fall back to libsecret keyring (DBus Secret Service).
No. TOTP runs client-side, passkeys are hardware-bound. Without the second factor neither you nor we can get past login. If both factors are lost (password + auth device), recovery is only granted after identity verification.
Free plan with no account, no credit card. AES-256-GCM applies to every session — including Free-plan sessions.