Submit a Disclosure

Everything on this page happens on your device. We never see your email. We never see your name.

CLIENT-SIDE PROVING|NO DATA TRANSMITTED UNTIL YOU SUBMIT|NO ACCOUNTS REQUIRED

1. Upload Email

2. Verify Domain

3. Describe Event

4. Publish Proof

Step 1: Upload

Upload a corporate email file (.eml)

This email proves your organization sent it. We extract the DKIM signature. Nothing else.

Verification Feedback

Extracting DKIM signature...WAITING

Generating ZK proof (client-side)....WAITING

Verifying against domain DNS WAITING

Step 2: Your Disclosure

Title0/100

Description0/1000

Disclosure Type

Identified OrganisationThis field is automatically set from the verified email domain.

Step 3: Review Disclosure

What will be public:

disclosure text, verified domain, timestamp, content hash

What will NOT be public:

your email, your name, your IP, anything identifying

What we verify, and what we don't

Security & Identity

While zkWhistleblower ensures your identity is never sent to our servers, your local browser environment could still be compromised. We recommend using a fresh Brave or Tor browser instance in Private mode to minimize local forensic traces.

Content Verification

ZK proofs verify the source domain of an email but cannot verify the absolute truth of the content within the email. The cryptographic guarantee is only that the text was sent from the stated organization's servers at the specified time.