The short, honest answers — no marketing gloss.
Can Harbor (the company) see my photos or files?
No. Everything is encrypted on your own device with a key that's generated and kept on your
devices. Your home server stores and verifies ciphertext — it never holds anything that can
decrypt it, and neither do we.
What about the network in between — the relay that connects my phone to home?
It's zero-knowledge. The relay (Headscale/DERP, embedded in your box) only ever sees
WireGuard-encrypted packets. It has no keys and can't read what passes through it — its job is
routing, not reading.
Where do the encryption keys actually live?
On your devices, and only your devices. Each phone or computer you pair gets its own key,
wrapped with X25519 so it can be shared within your household without ever transiting our
servers in the clear.
What if I lose my phone, or the box itself?
A recovery phrase (the same BIP-39 word-list format used by crypto wallets) restores your keys
and data byte-for-byte on a new device. Lost a phone? Revoke it from another paired device in one
tap so it can't sync anymore.
What encryption do you actually use?
Standard, widely reviewed primitives — not anything custom: XChaCha20-Poly1305
for encrypting files and photos, Argon2id for deriving keys from your passphrase,
X25519 for sharing keys between your devices, Ed25519 for
signing releases and licenses, and WireGuard for the network transport. Same
building blocks used by Signal, WireGuard itself, and most security-focused software.
Has Harbor been independently audited?
Not yet, and we'd rather say that plainly than imply otherwise. What exists today: a written
cryptographic specification, a reference implementation, and a byte-for-byte test suite that
proves every implementation of our crypto agrees with that spec. We're actively working toward
publishing that verification path for outside researchers, and toward a paid third-party design
review once the product is generating revenue. Until then, this page and our
vulnerability disclosure policy are the honest state of where we are.
Is Harbor open source?
No — the product is closed source today. That's a deliberate, revisitable choice, not a way of
hiding anything about the cryptography itself: the design is documented in the specification
referenced above, built entirely from published, standard primitives.
What happens to my data if Lighthouse (the company) shuts down?
It's already sitting on hardware you own, in your home, encrypted with keys only your devices
hold. It was never in a corporate cloud that could vanish with the company — Harbor's job is to
get out of the way of your own data.