Seyvd

Encrypted backup for Mac to cloud storage.

Your files stay encrypted before they leave.

Seyvd encrypts backups on your Mac with AES-256-GCM before uploading to S3-compatible cloud storage. Your provider never sees your data.

Contact us View Seyvd

Seyvd is a Mac backup app that encrypts your files locally with AES-256-GCM before uploading anything to S3-compatible cloud storage. Your storage provider never receives readable data. No account or third-party key service is involved.

Most cloud backup tools encrypt data in transit but leave the storage provider with access to your files at rest. Seyvd removes that trust requirement entirely.

How encrypted backup works on Mac

Seyvd encrypts at the chunk level before any data leaves your Mac:

your passphrase derives a master key through PBKDF2-SHA256 with 600,000 iterations
files are split into fixed-size chunks
each chunk is encrypted individually with AES-256-GCM using a key derived from the master key
metadata including file names and folder structure is encrypted separately
the storage provider receives only opaque encrypted blobs

Your backup repository stays private even if the storage account is compromised. There is no server-side decryption path.

Why encrypt before uploading

Server-side encryption protects against physical disk theft at the data center. It does not protect against provider access, account compromise or legal requests directed at the storage service.

Client-side encryption means:

your provider stores data it cannot read or inspect
a compromised storage account exposes only encrypted content
no third party holds decryption keys for your backups
you control the only recovery path through your passphrase

No account and no key escrow

Seyvd does not require a separate account or registration. You bring your own S3-compatible storage bucket and your own passphrase. Credentials stay in the macOS Keychain.

There is no key escrow and no recovery service. Nobody else can decrypt your backups. That is a deliberate tradeoff: full privacy in exchange for passphrase responsibility.

When client-side encryption matters

This approach is relevant when you want to:

back up to cloud storage without trusting the provider with file contents
keep sensitive documents, code or project files private at rest
use affordable S3-compatible storage without giving up confidentiality
maintain a backup path where encryption is not optional or provider-controlled

If you also want backups to run without manual effort, read about scheduled cloud backups. For the full product direction, visit the main Seyvd page.

FAQ

Questions that come up on this topic.

Short answers for people comparing options before choosing Seyvd.

Does my cloud provider see my files?

No. Seyvd encrypts all file data and metadata on your Mac before upload. Your storage provider receives only encrypted blobs it cannot read, even if the storage account is compromised.

What encryption does Seyvd use?

AES-256-GCM for file data and metadata. Your passphrase derives the master key through PBKDF2-SHA256 with 600,000 iterations. Each chunk is encrypted individually with its own derived key.

Do I need an account to use Seyvd?

No. Seyvd works with your own S3-compatible storage bucket. There is no separate account, signup or cloud service between you and your backups.

What happens if I forget my passphrase?

Your passphrase is the only way to decrypt your backups. Seyvd stores it in the macOS Keychain for convenience, but there is no recovery service. This is a deliberate design choice so nobody else can access your data.

Scheduled cloud backups on Mac with Seyvd.

Seyvd runs scheduled incremental backups to S3-compatible cloud storage with deduplication and bandwidth controls on Mac.

Explore topic