Security
Your credentials,
your control
StreamSync uses end-to-end encryption to ensure your credentials never touch our servers in plaintext. Here's exactly how it works.
End-to-End Encryption Flow
RSA-2048 encryption ensures only your Fire TV can read your credentials
Key Generation
When you first launch StreamSync, your Fire TV generates an RSA-2048 key pair. The private key never leaves your device.
Public Key Exchange
During pairing, your Fire TV's public key is shared with the web companion through the relay server.
Client-Side Encryption
When you enter credentials on your phone, they're encrypted using your Fire TV's public key before transmission.
Secure Transit
The encrypted blob passes through our relay server. We can't decrypt it—only the destination Fire TV can.
Local Decryption
Your Fire TV decrypts the credentials using its private key, logs in, then immediately clears the plaintext from memory.
Trust Model
What you need to trust, and what you don't
Your Fire TV
Stores session cookies and private key securely
StreamSync App
Handles encryption/decryption on your device
Relay Server
Cannot decrypt your credentials—just passes data through
StreamSync Operators
No access to plaintext credentials or session data
What We Store (And Don't)
Complete transparency about data storage
| Data | Stored? |
|---|---|
| Your passwords | No |
| Session cookies | Yes |
| RSA private key | Yes |
| Pairing sessions | Yes |
Privacy Commitments
- No credential logging or storage on any server
- No analytics or tracking of your browsing behavior
- No data sharing with third parties
- Full encryption transparency—we show you exactly how it works
- Open to security audits and responsible disclosure
Questions about security? We're happy to explain further.
Contact our security team