The TextExpander app is not a secure app meant for sensitive information. Anyone who gains access to your computer account will have access to your snippets, just as they would any other files on your computer. If this concerns you and you’re on a Mac, you can turn on Apple’s FileVault for extra security.
For things like AWS credentials, social security numbers and passwords, we recommend storing those in an app made for security, such as a password manager.
Data in motion, every connection of every kind made by our apps, uses TLSv1.2 encryption or later, either https or wss.
For TextExpander.com, snippet data is stored encrypted at rest on the database server’s filesystem.
Smile employees and contractors use strong, unique passwords and 2FA or direct public-private key exchange when possible to access third party services. Only the minimum necessary personnel have access to service administration and the database. By default, our customer support team do not have access to customer data. Such access is only allowed via an explicit user opt-in.
- March 23, 2017: Updated to reflect data encryption at rest
- April 5, 2016: Original Document