Lawyer Locker
·
Encrypted lockers for secure client communication and file sharing.
Encrypted lockers for secure client communication and file sharing.
Locker Features
- Individual Client Lockers: Each client gets a unique, password-protected, secure area
- Secure File Sharing: Upload and download encrypted files with full privacy
- Message Thread: Secure, timestamped communication log between lawyer and client
- Activity Audit Trail: Track all locker access, file downloads, and messages
- No Client Accounts Required: Share a simple URL with encryption key in the fragment
Lockbox Features
- One-offs: One-time encrypted messages that self-destruct after reading
- End-to-End Encryption: All data is encrypted in the browser using AES-256-GCM before transmission
- Zero-Knowledge Server: The server never has access to encryption keys or plaintext data
- No Client Accounts Required: Share a simple URL with encryption key in the fragment
How it Works
- Lawyer creates a locker in WordPress admin
- Plugin generates a unique URL with encryption key (
/locker/abc123/#encryption-key) - Lawyer shares this URL securely with their client
- Both parties access the locker using the same URL
- All messages and files are encrypted/decrypted locally in the browser
- Server only stores encrypted blobs (no plaintext ever touches the server)
Security Notice
The encryption key is included in the URL fragment (after the #). This must be shared securely:
- Use encrypted email (Proton)
- Use secure messaging (Signal)
- Use the built-in Lockbox feature
- Share in-person or via phone
- DO NOT send via regular email (Gmail, Yahoo, Hotmail) or SMS
Perfect For
- Law firms managing sensitive client communications
- Accountants sharing financial documents
- Healthcare providers (HIPAA compliance considerations)
- Politicians and government officials
- Journalists and activists
- Anyone requiring genuine privacy and confidentiality
Technical Details
- Uses Web Crypto API for browser-based AES-256-GCM encryption
- Custom database tables for encrypted files and activity logs
- No third-party dependencies
- Clean, minimal codebase
Browser Requirements
- Modern browser with Web Crypto API support (all current browsers)
- JavaScript must be enabled (required for encryption/decryption)
For the Lawyers
Lawyer Locker is part of the For the Lawyers initiative, a project dedicated to lawyers, finding all the gaps on the web to make their lives easier, and filling them.
For support and other WordPress tools for legal pros, go to forthelawyers.co.