Back to blog
Security10/04/20267 min read

How We Protect Whistleblowers - End to End

Some truths are dangerous to tell. Our whistleblower channel is built so that even we cannot read what you send. Here is exactly how.

S

Security & Trust

Naija Accountability

If exposing wrongdoing puts you at risk, ordinary reporting is not enough. The whistleblower channel is built on a simple, uncompromising principle: the server should never be able to read your disclosure. Not now, not under pressure, not ever.

Reports submitted through the channel are encrypted in your browser before they are sent, using public-key cryptography. The plaintext never reaches our servers. What we store is a sealed envelope only the authorised recipient can open.

Your identity is not attached to the submission. There is no account requirement, and your session reference lives only in your own browser storage - not in our database. You can return to check status using that reference, but it cannot be traced back to you by us.

This is the same reasoning behind hashing every National ID number with bcrypt rather than storing it raw: we design so that a breach reveals as little as possible. The safest data is the data we never hold in readable form.

Hold your leaders to the record.

Free, verified, and permanent. File a report or check an official's governance score.

Join the platform