TRUST INFRASTRUCTURE FOR DEVELOPERS

How do you access production data without risking the company?

Developers access production data every day — no audit trail, no encryption, no control. Capsule gives you a trust layer that wraps everything: encryption, cryptographic proof, zero knowledge. 3 lines of code.

The problem everyone ignores

Copy-pasting secrets to Slack. Direct DB access. Credentials left in terminal. 80% of data leaks start from a developer just doing their job.

WITHOUT CAPSULE

✗ KMS / Vault — weeks to configure

✗ IAM + policies + rotation = complex

✗ Secrets travel in plaintext

✗ No proof data wasn't exposed

WITH CAPSULE

✓ 3 lines of code — works in minutes

✓ Zero knowledge — server is blind

✓ HMAC proof chain for every action

✓ Cryptographic proof — verifiable

💳

SaaS / Payments

PII + credit cards

🤖

AI + LLMs

Private data before prompt

👥

DevOps teams

Secrets + production

📋

B2B / SOC

Audit trail + compliance

demo — encrypt

DEMO

▊

Encrypt secrets in one command. Nothing leaves your machine.1/5

Get API key — free Dashboard

100 actions/day. Free forever. No signup.

"ZERO KNOWLEDGE" — PROVE IT

Where are the keys?

Keys derived via HKDF on your side. We never see, store, or recover them. Seed Phrase = the only key.

What happens at decrypt?

Ciphertext comes from YOUR DB. Decryption happens client-side. Server relays blobs — never sees content. Audit log saved: who, when, which field.

How to verify it's real?

Every action produces an HMAC-SHA256 chain. You can compute the hash yourself and compare. Code is open for audit.

What if your server is breached?

Attacker gets ciphertext that's worthless. Keys aren't with us. Nothing to decrypt. Nothing to steal.

What it saves you

+ Weeks of building encryption + audit yourself

+ IAM / KMS / Vault — not needed

+ 51 SOC controls scanning — built in

+ SDK + REST API + Claude — 3 lines and it works

+ HMAC proof chain — zero extra code

+ Zero liability for data — all encrypted at yours

What you tell your customers

+ "We don't see your data"

+ "Every access has cryptographic proof"

+ "Even if breached — nothing to steal"

+ "Burn-after-read links"

+ "E2E encrypted channel — not us, not third parties"

+ "SOC-ready from day one"

WHAT IS CAPSULE FOR DEVELOPERS?

When you need to see sensitive data — production logs, secrets, DB results, API keys — Capsule lets you do it without opening the whole system and without creating exposure risk.

📦

Isolated environment

See only what's needed

🕵️

Zero Knowledge

No server sees it

✅

Cryptographic proof

Every view is logged

💨

Open. View. Gone.

Zero residue

⚡ Example — production crash

The app crashed. You need to check secret values and analyze the scenario. Instead of sharing credentials, touching servers or exposing tokens — you open a Capsule, see what you need, and the frame closes. All data disappears and isn't stored.

capsule in action

// Encrypt a field — zero knowledge
const result = await fetch("/api/v1/encrypt", {
  body: JSON.stringify({ field: "ssn", value: "123-45-6789" })
})
// Response — ciphertext stays in YOUR database
{ ciphertext: "aes256gcm:v1:...", audit_id: "aud-a7f3" }
// Decrypt inside a Capsule — logged, proven, gone
await fetch("/api/v1/decrypt", {
  body: JSON.stringify({ ciphertext, requester: "agent_42" })
})
// ✓ Decrypted. ✓ Proof: HMAC-SHA256. ✓ Zero retained.

Capsule lets you inspect sensitive data safely — isolated, private, and with cryptographic proof — without exposing your system or secrets.

Open. View. Gone.

TIME & RESOURCE SAVINGS

4-6 weeks

Development saved

Encryption + audit trail + key management + rotation — already built in

Zero

Infrastructure maintenance

No KMS, no Vault server, no IAM policies, no extra DevOps

100%

Built-in compliance

SOC audit trail + HMAC proof chain — no separate system to build

Instead of a team building encryption, audit, compliance, key rotation — you add 3 lines of code and get everything ready. That's the difference between months of work and an hour of integration.

API Reference

4 endpoints. Content-blind server. Zero content storage.

TOOLS🔑Get API Key 📦SDK 📊Dashboard 🤖Claude 🔐Secret Capsule 🔍Scan

Quick Reference

CLICK TO COPY

🔐Encrypt FieldPOST /api/v1/encryptAPI

🔓Decrypt FieldPOST /api/v1/decryptAPI

📨Secure DeliveryPOST /api/v1/deliverAPI

📋Audit EvidenceGET /api/v1/evidenceAPI

💬Encrypted Chat/chatlink

🔒Secure Channel/secure-channellink

🏠Encrypted Room/roomlink

📮Report Box/report-box/createlink

🛡️Link Scanner/link-checkerlink

📧Email Security/email-auditlink

🔍SOC Diagnosis/soc-scanner/runlink

Click any row to copy code. All tools work on the same principle: browser encryption → blind server → deleted.

One API — every use case

The same /encrypt works from everywhere. The button the user clicks determines the action — the system just encrypts and forgets.

Send password to friend
Encrypted Chat → encrypt() → store → display → delete
Contract to lawyer
Secure Channel → encrypt() → link + OTP → view → burn
Team room
Encrypted Room → encrypt() → broadcast → TTL → delete all
Encrypt DB field
API → encrypt() → ciphertext → store in YOUR DB

The button decides. The system is blind. Same engine.

Base URL: https://www.nodatacapsule.com/api/v1

Authentication

Every request requires a Bearer token in the header. Create a key at /get-started

Authorization header

Authorization: Bearer sk_live_a7f3e9c2d1b8f45e6a9c...

Rate limit: 60 req/min · Daily quota: 500 req (Free tier)

Endpoints

Encrypt a sensitive field value. Returns ciphertext to store in YOUR database. NoData stores nothing.

Required scope: encrypt

Request

curl -X POST /api/v1/encrypt \
  -H "Authorization: Bearer sk_live_..." \
  -H "Content-Type: application/json" \
  -d '{
    "field": "phone",
    "value": "+972501234567",
    "context": "customer_record"
  }'

Response

{
  "success": true,
  "ciphertext": "aes256gcm:v1:iv...:cipher...:key...",
  "field": "phone",
  "audit_id": "aud-a7f3e9c2d1b8",
  "algorithm": "AES-256-GCM",
  "note": "Store the ciphertext in YOUR database."
}

Error Codes

400Bad request — missing or invalid parameters
401Invalid or missing API key
403Key revoked or missing scope
429Rate limit or daily quota exceeded
500Server error — retry or contact support

Privacy & Security

Zero-knowledge: NoData doesn't store your data, keys, or content. Everything passes through and is wiped.
Audit trail: Metadata only — who, when, what action, what field. Never the content.
Encryption: AES-256-GCM · RSA-4096 · HMAC-SHA256
API keys: Hashed on server. Even we can't see your key.

Integration

TypeScript? Install our SDK. Other language? Any HTTP client works:

Node.js / TypeScript (SDK)

import { NoData } from '@nodatachat/sdk';

const nd = new NoData({ apiKey: 'sk_live_...' });
const { ciphertext } = await nd.encrypt({ field: 'ssn', value: '123-45-6789' });
// Store ciphertext in your DB — NoData stores nothing

Node.js / TypeScript (raw fetch)

const res = await fetch("https://www.nodatacapsule.com/api/v1/encrypt", {
  method: "POST",
  headers: {
    "Authorization": "Bearer sk_live_...",
    "Content-Type": "application/json",
  },
  body: JSON.stringify({ field: "ssn", value: "123-45-6789" }),
});
const { ciphertext } = await res.json();
// Store ciphertext in your DB — NoData stores nothing

Python

import requests

res = requests.post("https://www.nodatacapsule.com/api/v1/encrypt",
    headers={"Authorization": "Bearer sk_live_..."},
    json={"field": "ssn", "value": "123-45-6789"})

ciphertext = res.json()["ciphertext"]
# Store ciphertext in your DB — NoData stores nothing

cURL

curl -X POST https://www.nodatacapsule.com/api/v1/encrypt \
  -H "Authorization: Bearer sk_live_..." \
  -H "Content-Type: application/json" \
  -d '{"field":"ssn","value":"123-45-6789"}'

WORKBENCH

Developer Workbench

Encrypt, deliver, audit — all from one screen with one-click copy.

→

CLAUDE CODE

Automatic encryption from Claude Code

One-line install. All sensitive data encrypted before reaching AI.

→

SDK v1.0

npm install @nodatachat/sdk

M2M kit. 5 lines. Zero deps. Blind encryption, secure channels, batch ops, Express & Fastify plugins.

→

Get API key — free

100 calls/month free. No signup. No credit card.

🚀

Install Capsule

Choose your level

TRUST INFRASTRUCTURE FOR DEVELOPERS

How do you access production data without risking the company?

The problem everyone ignores

Copy-pasting secrets to Slack. Direct DB access. Credentials left in terminal. 80% of data leaks start from a developer just doing their job.

WITHOUT CAPSULE

✗ KMS / Vault — weeks to configure

✗ IAM + policies + rotation = complex

✗ Secrets travel in plaintext

✗ No proof data wasn't exposed

WITH CAPSULE

✓ 3 lines of code — works in minutes

✓ Zero knowledge — server is blind

✓ HMAC proof chain for every action

✓ Cryptographic proof — verifiable

💳

SaaS / Payments

PII + credit cards

🤖

AI + LLMs

Private data before prompt

👥

DevOps teams

Secrets + production

📋

B2B / SOC

Audit trail + compliance

demo — encrypt

DEMO

▊

Encrypt secrets in one command. Nothing leaves your machine.1/5

Get API key — free Dashboard

100 actions/day. Free forever. No signup.

"ZERO KNOWLEDGE" — PROVE IT

Where are the keys?

Keys derived via HKDF on your side. We never see, store, or recover them. Seed Phrase = the only key.

What happens at decrypt?

Ciphertext comes from YOUR DB. Decryption happens client-side. Server relays blobs — never sees content. Audit log saved: who, when, which field.

How to verify it's real?

Every action produces an HMAC-SHA256 chain. You can compute the hash yourself and compare. Code is open for audit.

What if your server is breached?

Attacker gets ciphertext that's worthless. Keys aren't with us. Nothing to decrypt. Nothing to steal.

What it saves you

+ Weeks of building encryption + audit yourself

+ IAM / KMS / Vault — not needed

+ 51 SOC controls scanning — built in

+ SDK + REST API + Claude — 3 lines and it works

+ HMAC proof chain — zero extra code

+ Zero liability for data — all encrypted at yours

What you tell your customers

+ "We don't see your data"

+ "Every access has cryptographic proof"

+ "Even if breached — nothing to steal"

+ "Burn-after-read links"

+ "E2E encrypted channel — not us, not third parties"

+ "SOC-ready from day one"

WHAT IS CAPSULE FOR DEVELOPERS?

When you need to see sensitive data — production logs, secrets, DB results, API keys — Capsule lets you do it without opening the whole system and without creating exposure risk.

📦

Isolated environment

See only what's needed

🕵️

Zero Knowledge

No server sees it

✅

Cryptographic proof

Every view is logged

💨

Open. View. Gone.

Zero residue

⚡ Example — production crash

capsule in action

// Encrypt a field — zero knowledge
const result = await fetch("/api/v1/encrypt", {
  body: JSON.stringify({ field: "ssn", value: "123-45-6789" })
})
// Response — ciphertext stays in YOUR database
{ ciphertext: "aes256gcm:v1:...", audit_id: "aud-a7f3" }
// Decrypt inside a Capsule — logged, proven, gone
await fetch("/api/v1/decrypt", {
  body: JSON.stringify({ ciphertext, requester: "agent_42" })
})
// ✓ Decrypted. ✓ Proof: HMAC-SHA256. ✓ Zero retained.

Capsule lets you inspect sensitive data safely — isolated, private, and with cryptographic proof — without exposing your system or secrets.

Open. View. Gone.

TIME & RESOURCE SAVINGS

4-6 weeks

Development saved

Encryption + audit trail + key management + rotation — already built in

Zero

Infrastructure maintenance

No KMS, no Vault server, no IAM policies, no extra DevOps

100%

Built-in compliance

SOC audit trail + HMAC proof chain — no separate system to build

Instead of a team building encryption, audit, compliance, key rotation — you add 3 lines of code and get everything ready. That's the difference between months of work and an hour of integration.

API Reference

4 endpoints. Content-blind server. Zero content storage.

TOOLS🔑Get API Key 📦SDK 📊Dashboard 🤖Claude 🔐Secret Capsule 🔍Scan

Quick Reference

CLICK TO COPY

🔐Encrypt FieldPOST /api/v1/encryptAPI

🔓Decrypt FieldPOST /api/v1/decryptAPI

📨Secure DeliveryPOST /api/v1/deliverAPI

📋Audit EvidenceGET /api/v1/evidenceAPI

💬Encrypted Chat/chatlink

🔒Secure Channel/secure-channellink

🏠Encrypted Room/roomlink

📮Report Box/report-box/createlink

🛡️Link Scanner/link-checkerlink

📧Email Security/email-auditlink

🔍SOC Diagnosis/soc-scanner/runlink

Click any row to copy code. All tools work on the same principle: browser encryption → blind server → deleted.

One API — every use case

The same /encrypt works from everywhere. The button the user clicks determines the action — the system just encrypts and forgets.

Send password to friend
Encrypted Chat → encrypt() → store → display → delete
Contract to lawyer
Secure Channel → encrypt() → link + OTP → view → burn
Team room
Encrypted Room → encrypt() → broadcast → TTL → delete all
Encrypt DB field
API → encrypt() → ciphertext → store in YOUR DB

The button decides. The system is blind. Same engine.

Base URL: https://www.nodatacapsule.com/api/v1

Authentication

Every request requires a Bearer token in the header. Create a key at /get-started

Authorization header

Authorization: Bearer sk_live_a7f3e9c2d1b8f45e6a9c...

Rate limit: 60 req/min · Daily quota: 500 req (Free tier)

Endpoints

Encrypt a sensitive field value. Returns ciphertext to store in YOUR database. NoData stores nothing.

Required scope: encrypt

Request

curl -X POST /api/v1/encrypt \
  -H "Authorization: Bearer sk_live_..." \
  -H "Content-Type: application/json" \
  -d '{
    "field": "phone",
    "value": "+972501234567",
    "context": "customer_record"
  }'

Response

{
  "success": true,
  "ciphertext": "aes256gcm:v1:iv...:cipher...:key...",
  "field": "phone",
  "audit_id": "aud-a7f3e9c2d1b8",
  "algorithm": "AES-256-GCM",
  "note": "Store the ciphertext in YOUR database."
}

Error Codes

400Bad request — missing or invalid parameters
401Invalid or missing API key
403Key revoked or missing scope
429Rate limit or daily quota exceeded
500Server error — retry or contact support

Privacy & Security

Integration

TypeScript? Install our SDK. Other language? Any HTTP client works:

Node.js / TypeScript (SDK)

import { NoData } from '@nodatachat/sdk';

const nd = new NoData({ apiKey: 'sk_live_...' });
const { ciphertext } = await nd.encrypt({ field: 'ssn', value: '123-45-6789' });
// Store ciphertext in your DB — NoData stores nothing

Node.js / TypeScript (raw fetch)

const res = await fetch("https://www.nodatacapsule.com/api/v1/encrypt", {
  method: "POST",
  headers: {
    "Authorization": "Bearer sk_live_...",
    "Content-Type": "application/json",
  },
  body: JSON.stringify({ field: "ssn", value: "123-45-6789" }),
});
const { ciphertext } = await res.json();
// Store ciphertext in your DB — NoData stores nothing

Python

import requests

res = requests.post("https://www.nodatacapsule.com/api/v1/encrypt",
    headers={"Authorization": "Bearer sk_live_..."},
    json={"field": "ssn", "value": "123-45-6789"})

ciphertext = res.json()["ciphertext"]
# Store ciphertext in your DB — NoData stores nothing

cURL

curl -X POST https://www.nodatacapsule.com/api/v1/encrypt \
  -H "Authorization: Bearer sk_live_..." \
  -H "Content-Type: application/json" \
  -d '{"field":"ssn","value":"123-45-6789"}'

WORKBENCH

Developer Workbench

Encrypt, deliver, audit — all from one screen with one-click copy.

→

CLAUDE CODE

Automatic encryption from Claude Code

One-line install. All sensitive data encrypted before reaching AI.

→

SDK v1.0

npm install @nodatachat/sdk

M2M kit. 5 lines. Zero deps. Blind encryption, secure channels, batch ops, Express & Fastify plugins.

→

Get API key — free

100 calls/month free. No signup. No credit card.

🚀

Install Capsule

Choose your level