Patent-in-action · live

Type anything.
We store nothing we can read —
and we can prove it.

This is a working demonstration of the Privacy Glass Codec. Every row you add is encrypted on this device under a key the server never sees. The database holds only opaque commitments and ciphertext. Anyone in the world can verify any row's integrity. Only you, with your passphrase, can read your rows back.

01 Commit a row

Encrypts on this device. The server never sees these values.

02 Encoding trace

Every step is SHA-256 / AES-GCM / Merkle. No elliptic curves.

Submit the form to begin tracing.
Public table · world-readable

Your database. Live. Opaque.

Row IDuuid NameRAW EmailRAW AgeRANGE 0–120 CountrySET ISO-3166 JoinedRAW
No rows yet.
◆ What this live demo proves
1. Zero plaintext at server Run wrangler d1 execute pgc-codec-db --remote --command="SELECT hex(ct_name) FROM demo_records" — only opaque bytes.
2. Public verifiability Any row's integrity can be verified by anyone on earth. The "VERIFY" button calls the Worker's hash-only verifier.
3. Cryptographic erasure (GDPR Art. 17) "Destroy key" on your row nulls the wrapped DEK. The commitment remains but is mathematically unopenable forever.

SIGN IN

Your passphrase never leaves this device. PBKDF2-SHA256 600k iterations derive your KEK in-browser (~1–2 seconds).

VERIFY ROW ·

Recomputing…

DESTROY WRAPPED KEY

This deletes the wrapped DEK for this row. The commitment bytes remain as proof the row existed, but nobody — including you — can ever decrypt them again.

Under GDPR Recital 26, this row becomes anonymous data: no natural person is identifiable from the residue.