Receive Link Storage Tiers & Embeddable Upload Widgets: A Secure File Inbox for Your Website
SecureEU Team
Privacy & Security
SecureEU's Receive Mode lets you create a link that other people use to upload files to you — with full end-to-end encryption, no account required on either side. Now it's even more powerful: choose from five storage tiers up to 50 GB, set a custom expiry from 7 to 90 days, and embed a one-click upload widget on any website with a single script tag.
Storage Tiers: From 1 GB to 50 GB
When you create a receive link, you now pick how much total storage it should accept. The free tier gives you 1 GB — enough for documents, photos, or small archives. Paid tiers scale up for heavier use:
📦 Receive Link Storage Tiers
| Tier | Storage | Price | Best For |
|---|---|---|---|
| Free | 1 GB | €0 | Documents, forms, small files |
| Starter | 5 GB | €2.99 | Photo sets, project deliverables |
| Standard | 10 GB | €4.99 | Video files, design assets |
| Professional | 20 GB | €6.99 | Large media, dataset collection |
| Enterprise | 50 GB | €9.99 | Bulk file collection, backups |
Server-Side & Client-Side Enforcement
Storage limits are enforced in two places for reliability:
- Server-side — when an upload is initiated, the API checks how much storage the receive link has already consumed. If the new file would exceed the limit, the upload is rejected with a clear error message before any bytes are transferred.
- Client-side — the upload page shows a real-time storage usage bar with the amount remaining. When you select files, the interface checks whether the total size fits and disables the upload button if it doesn't. After each successful upload, the bar updates instantly.
This dual enforcement means uploaders get immediate feedback without wasting bandwidth, while the server remains the authoritative gatekeeper — even if someone bypasses the UI.
Custom Expiry: 7 to 90 Days
Free receive links are active for 7 days. Paid tiers let you choose exactly how long your link should accept uploads: 7, 14, 30, 60, or 90 days. The expiry timer starts when you pay — not when you create the link.
📅 Expiry Starts at Payment
If you create a paid receive link at 10:00 AM and complete payment at 10:05 AM, your 30-day window runs from 10:05 AM — not 10:00 AM. This ensures you get the full duration you paid for, even if checkout takes a few minutes.
- Stripe webhook sets the expiry from payment confirmation time
- A direct Stripe API fallback activates the link instantly if the webhook hasn't arrived yet
- Unpaid links are automatically cleaned up after 18 hours by the background worker
Embeddable Upload Widget
Every receive link comes with an embeddable version that you can drop into any website — your portfolio, a client portal, an internal HR page, or a support form. It's a single line of HTML:
<script src="https://secureeutransfers.com/receive/YOUR-SLUG/embed.js"></script>
This injects a small button onto your page. When a visitor clicks it, a modal opens with a full-featured upload interface — file picker, drag-and-drop, encryption progress bar, and storage usage indicator. The upload runs inside an iframe pointing to your receive link's dedicated embed page, so:
- Zero dependencies — no frameworks, no libraries, just one script tag
- Fully sandboxed — the iframe isolates the upload from your page's JavaScript
- Same encryption — AES-256-GCM in the visitor's browser, identical to the standalone upload page
- Responsive design — works on mobile, tablet, and desktop
- Styled to fit — clean, minimal UI that doesn't clash with your site's design
Use Cases for the Embed Widget
| Industry | Example |
|---|---|
| Freelancers | "Send me your files" button on your portfolio site |
| Accounting | Clients securely upload tax documents, invoices, receipts |
| HR / Recruiting | Candidates submit CVs, portfolios, ID documents |
| Legal | Case-related documents exchanged under GDPR compliance |
| Healthcare | Patients upload medical records, imaging files, consent forms |
| Education | Students submit assignments or research datasets |
Everything Is Encrypted — Even via Embed
The embed widget uses the exact same encryption pipeline as the main site. Files are encrypted with AES-256-GCM in the uploader's browser before any bytes leave their device. The encryption key is delivered to you via the receive link's notification — it never passes through our servers. Whether someone uploads through the main page, the direct link, or your embedded widget, the security guarantees are identical.
Get Started
Create a receive link from the Receive page, choose your storage tier and expiry, and you'll get both a shareable upload link and a ready-to-copy embed snippet. The free 1 GB tier is perfect for trying it out — no payment required.