RepoNorth
Log inGet Started
Privacy & Trust

“We treat your collection like it’s none of our business.Because it isn’t.”

Your collection is encrypted, and it’s never sold, shared, or mined. Ever. Here’s exactly how it works, and where the boundaries are.

Encrypted at rest, 2FA available

Your collection is encrypted at rest on the server. Two-factor authentication (TOTP) protects your account beyond just a password.

Your data, always exportable

Full export in open formats, any time, plus a print-ready insurance or estate binder built from only the fields you choose. Delete your account whenever you decide, and it’s gone within 30 days, including backups. Nothing is held hostage.

Never sold, shared, or mined

No ads. No data brokers. No “anonymized insights” sold to insurers, retailers, or anyone else. Your subscription is the entire business model.

A published law-enforcement policy

We respond to valid legal process only: a warrant or court order, never a casual request. We notify you whenever we’re legally permitted to, and publish an annual transparency report of requests received and complied with.

Never used to train AI

Your photos and collection details are never used to train AI models, ours or anyone else’s. Not now, not later.

Photo location data, stripped on upload

Photos often carry GPS coordinates in their metadata. We strip that data automatically when you upload, so a photo of your item never carries its location.

Encryption

Two layers of encryption.
Not one.

Most apps encrypt the disk and stop there. That only protects you if someone physically walks off with a drive. We start there, then wrap a second, separate layer around the fields that would actually matter if anything ever leaked.

01The infrastructure it lives on

Your entire database is encrypted at rest with full-volume LUKS encryption and reachable only over TLS, on SOC 2 Type II–audited U.S. infrastructure. Automated backups are encrypted the same way.

02The fields that matter most

Serial numbers, NFA control numbers, and storage locations get a second, independent layer of AES-256-GCM encryption inside RepoNorth, and the key that unlocks them is held outside the database. A copy of the database alone can’t reveal them.

Layer 01 · InfrastructureLUKS · TLS
Layer 02 · Field encryptionAES-256-GCM
Serials · NFA #s · Locations
encrypted before they ever touch the database
Key stored outside the database
+AES-256-GCM field encryption+LUKS full-volume at rest+TLS in transit+Argon2 password hashing+TOTP two-factor+Keys stored outside the database+Encrypted automated backups+EXIF & GPS stripped on upload

RepoNorth runs on DigitalOcean’s SOC 2 Type II and SOC 3 Type II–audited platform, independently examined by Schellman & Company. Straight talk: this isn’t “zero-knowledge” encryption, we hold the keys so your insurance binder, family sharing, and account recovery can work. Exactly when we’d ever reach for them is spelled out in our privacy policy.

Two-factor authentication

Front and center, not buried in a menu.

Two-factor authentication is available on every account and encouraged from day one. It lives at the top of Account settings, not three menus deep: a TOTP authenticator app, a password you control, and a plain record of when it last changed.

Security
Two-factor authenticationEnabled
Password••••••••
Last changedMar 2026
Emergency Access

Your collection can outlive a bad day.

Name a beneficiary and set an inactivity window. If your account goes silent that long, we warn you first, repeatedly, and only if you never respond does your beneficiary get in, by confirming the exact email address you chose. There’s no death certificate to file and no judgment call on our end, and you can stop the clock any time just by logging in. It’s opt-in, off by default, and there when estate and family planning need it.

Available on Pro and Platinum plans
© 2026 RepoNorth. All rights reserved.