Meta
Business PartnerVerified · 2026
Trust & security

Your case files are treated like evidence.

Encrypted at rest. Scoped to one expert. Logged on every access. Deleted after 90 days. The full breakdown — no marketing-speak.

Start a case Read privacy policy
Short answer
How does Shilder protect my data and payment?

Sensitive uploads are encrypted at rest, scoped to the single expert handling your case, and deleted 90 days after closure. Every access is audit-logged. Payment is held by a third-party escrow until your account is confirmed recovered — Shilder cannot touch it until then.

Encryption at rest

All sensitive uploads — photo ID, screenshots, personal documents — are encrypted at rest. Database-level and file-storage-level.

TLS everywhere

Every connection uses TLS 1.3. No data ever travels unencrypted, whether you’re uploading or messaging your expert.

Scoped expert access

Only the expert assigned to your case can view your files. Other experts, support staff, and operations cannot — even briefly.

Audit logs

Every file access, every status change, every message edit is logged. We can reconstruct exactly who touched what and when.

Short retention

Sensitive uploads are deleted 90 days after your case closes unless you ask us to keep them or a legal hold applies.

Background-checked experts

Every recovery specialist is identity-verified, NDA-bound, and subject to a background check before handling cases.

Escrow-held payment

Your fee sits in a neutral escrow account from submission to outcome. We do not have direct access until recovery is confirmed.

No password collection

We never ask for your account password. Recovery uses Meta’s official appeal channels — not by logging in for you.

If something goes wrong

Incident response — what you can expect.

If a security event affects your data, we follow a documented incident-response playbook:

  1. Contain the issue within hours, not days.
  2. Notify affected users by email with the facts — what happened, what data was involved, what we’re doing.
  3. Report to relevant authorities within statutory timeframes (72 hours for GDPR-scope breaches).
  4. Publish a post-mortem within 30 days describing root cause and the changes we’re making.

To report a vulnerability or security concern, email hello@shilder.com with the subject line “Security”. We aim to acknowledge within 24 hours.

Ready to get your account back?

Submit your case in under three minutes. Expert review starts the same day.

Start a case Read the FAQ