By using ttl.space (the “Service”), whether through the website or the command-line tool, you agree to these terms. If you do not agree, please do not use the Service.
ttl.space provides end-to-end encrypted, ephemeral file storage. Files are encrypted on your device before upload — the server only ever sees ciphertext. Every file is automatically and permanently deleted once its TTL expires.
The open tier of the Service requires no account and is free to use. The Orbit plan is a paid subscription that offers increased file size limits, longer TTLs, and additional storage. Payments for the Orbit plan are processed by Dodope Payments Limited, who acts as the merchant of record. VAT is automatically applied based on your country and region.
You must not use the Service to store, transfer, or distribute:
The Service must not be used as infrastructure for any of the above purposes in any form.
By uploading a file, using the command-line tool, or subscribing to a paid plan, you confirm that you have read, understood, and accepted these terms.
The Service is provided “as is” without any warranty. We do not guarantee availability, uptime, or data integrity, and files may be removed at any time. We are not responsible for data loss. If you lose or forget your encryption password, we cannot recover your files — the server holds only ciphertext and has no access to plaintext data or encryption keys.
To the fullest extent permitted by law, we shall not be liable for any direct, indirect, incidental, or consequential damages arising from your use of, or inability to use, the Service.
We may update these terms at any time. Continued use of the Service means you accept the updated terms.
ttl.space does not require registration or accounts. We use minimal, cookieless, privacy-respecting analytics to understand aggregate usage patterns (page views, countries). No personal data is collected or stored by our analytics. We do not use cookies, tracking pixels, or any form of user profiling. We do not sell, share, or monetise any data.
The server stores only ciphertext (encrypted data). We have no access to file contents, filenames, or any plaintext data whatsoever. All ciphertext is temporary and is permanently deleted once the TTL expires.
We log IP addresses and access timestamps. No other personal data is processed or stored, except for Orbit subscribers as described under Third-party services. These logs are used solely for abuse prevention and legal compliance.
Logs may be disclosed to law enforcement authorities when required by law or in response to a valid legal request. We cooperate with authorities to prevent abuse of the Service.
Processing of server logs is based on legitimate interest (Art. 6(1)(f) GDPR; Art. 5(2)(f) KVKK) for service security, abuse prevention, and legal compliance. Processing of email addresses and subscription data for Orbit subscribers is based on contractual necessity (Art. 6(1)(b) GDPR; Art. 5(2)(c) KVKK). You have the right to object to processing based on legitimate interest under Art. 21 GDPR and Art. 11 KVKK.
Under applicable data protection law (including GDPR and KVKK), you have the right to access, rectification, erasure, restriction, and portability of your personal data, as well as the right to object to processing. You also have the right to lodge a complaint with a data protection supervisory authority in your country of residence. To exercise any of these rights, contact us at the address below.
We use self-hosted, cookieless analytics (Umami) to collect anonymous, aggregate usage statistics.
Payments are processed by Dodope Payments Limited (merchant of record). Dodope Payments Limited may collect your name, email, and payment information under their own privacy policy. We store only your email address and subscription identifier to deliver your API key. We do not store payment card details. Transactional emails are sent via Resend.com; only your email address is shared with Resend for this purpose.
Uploaded files are deleted automatically after TTL expiry (up to 7 days on the open tier, up to 30 days on the Orbit plan). Server logs (IP addresses and access timestamps) are retained for as long as necessary for abuse prevention, service security, and compliance with applicable legal obligations, and are permanently deleted when no longer needed for these purposes.
This policy applies to the Orbit plan.
You may cancel your Orbit subscription at any time. Upon cancellation, you will retain access to Orbit features until the end of your current billing period. No further charges will be made after cancellation.
We do not offer refunds for partial billing periods. If you believe you have been charged in error, contact us within 14 days of the charge and we will review your request.
Contact us at the email address listed in the Impressum section below. Refunds, where approved, are issued through Dodope Payments Limited to the original payment method.
These terms are governed by the laws of the Republic of Türkiye. Any disputes arising from the use of the Service shall be subject to the exclusive jurisdiction of the courts of Bursa, Türkiye.
This service is operated from outside the European Union.