Biometric encryption for documents

Lock documents to a face — not a password.

VeilOne encrypts, exchanges, signs and broadcasts your documents so only the right people can open them. The key lives in a live face and a passphrase — never in a database someone can copy.

Built for teams that can't afford a leaked document.

The problem

Your documents are only as safe as the keys around them.

Files move through email, shared drives and records systems every day. The moment a password is reused, a key is copied or an admin account is breached, a document that should have stayed sealed is suddenly readable by the wrong person.

Files at rest

Sensitive documents sit on drives and in inboxes, protected by passwords that get shared, guessed or reused.

Files in transit

A contract sent to one person can be forwarded to anyone once it lands — with no way to stop it.

Who really signed?

A name typed at the bottom of a document proves nothing. Approvals can be forged or repudiated.

Admins hold the keys

Records systems concentrate access. One privileged account can read everything — a single point of failure.

Passwords and stored keys were never enough.

Every conventional scheme ends the same way: a secret that has to live somewhere. That somewhere becomes the thing attackers go after.

A stored key can be stolen

If the key to a document exists on a server, it can be exfiltrated, subpoenaed or leaked along with the file.

A password can be shared

Passwords get written down, reused and passed around. Anyone who has it becomes "authorised".

A signature can be faked

Without cryptographic proof tied to a real person, there's no way to be sure who approved what — or that it wasn't altered afterwards.

How it works

The key is the person — nothing to store, nothing to steal.

VeilOne binds every document to a live face and a passphrase together. Neither one alone opens anything, and the key is never written to a database. Encryption becomes something a person is, not something a system holds.

Sealed to a live face

Documents are encrypted with a key derived from a person's biometric token and passphrase together — proven live, on their device, at the moment they open the file.

No key to steal

There's no master key store to breach and no vault of passwords to leak. What was never written down can't be exfiltrated, copied or subpoenaed.

Verifiable every time

Every signed document can be checked against a public key — proving it came from a specific person and that not one byte has changed since.

Use cases

One platform for the whole document lifecycle.

Encrypt, share, sign and distribute documents — and secure the systems that hold them — all under the same face-sealed model.

Document encryption

Seal any file to a face

Lock a contract, report or spreadsheet so the only way to open it is a live, matching face plus a passphrase. The file becomes an opaque, unreadable blob to everyone else.

EDRMS & records

A biometric layer for your EDRMS

Add face-based authentication and encryption on top of your electronic document and records management system. Sensitive records stay encrypted at rest and only open for the right, verified person.

Document exchange

Send a file only one person can open

Wrap a document to a recipient so only their live face releases it. Even if the file is forwarded or intercepted, no one but the intended reader can ever unlock it.

Document signing

Sign with your face — and prove it

Produce a signature over a document's exact bytes, backed by a live face. Anyone can verify it with the public key, and if a single character changes, verification fails.

Quorum signing

Authorise only with a quorum

Require several approvers to each sign the exact same document with their own face. A high-value action only goes through when the quorum is met — fewer signatures and it's blocked.

Group broadcast

Encrypt once, deliver to many

Send one encrypted document to a whole group. It's encrypted a single time, then sealed to each recipient's face. Everyone on the list opens the same file with their own face — no one else can.

Integration

Fits your stack. No rip-and-replace.

VeilOne is a security layer, not a new place to store your documents. It sits alongside the systems you already run and secures the files inside them — through a clean API and connectors your team can adopt gradually.

Wherever your documents live today — a records system, a shared drive, a workflow tool — VeilOne slots in to encrypt, sign and gate access, without asking anyone to change how they work.

  • Drops into your EDRMS & DMS

    Connectors for document and records management systems, SharePoint and file shares add encryption and biometric access to what's already there.

  • A clean API for your own apps

    Encrypt, exchange, sign, verify and broadcast through a straightforward API, so your teams can build face-sealed documents into their own workflows.

  • An authentication layer on top

    Sits in front of the systems you already log into, adding face-plus-passphrase verification as a second factor — without replacing your identity provider.

  • Adopt it gradually

    Start with one repository or one workflow, prove it, then widen the rollout. Nothing needs to be migrated to switch it on.

Why teams trust it

Trust, by design — not by promise.

The strongest guarantee is architecture. VeilOne is built so the failure modes teams fear simply aren't possible — because the key to your documents was never anywhere to steal.

No master key store

Keys are derived from a live face and passphrase at the moment of use. There's no central vault of keys or passwords to breach.

No single point of failure

No administrator can silently open your documents. Access requires the real person, live — not a privileged account.

Provable and quantum-safe

Every signature is independently verifiable, and documents are protected with encryption engineered to hold against tomorrow's threats.

Evaluating for a specific system or programme? Ask about our security posture, connectors and pilots in your demo.

Book a demo

See it seal your documents.

A focused 30-minute walkthrough, mapped to your systems and your risks. No commitment, no jargon.

  • Tailored to your document workflows
  • Straight answers on security and integration
  • Confirmed people only — we verify before we schedule

Request your demo

We'll confirm your details and get back within one business day.

Please enter your name.
Please enter your organisation.
Please enter a valid email address.
Please enter a valid phone number, including country code.

We verify your email and phone before scheduling, so we know we're talking to the right people. We never share your details.

Confirm it's you

Enter the codes we just sent.

Didn't get them?

You're confirmed

Thanks — your email and phone are verified. Our team will be in touch within one business day to schedule your demo.