When running DisplayNote the host device acts as the server so no content is stored on our servers. If using our cloud connectivity, the content is not uploaded to the cloud servers - they are used solely for tunneling information between host and participant.
The host will enforce encryption by only allowing TLS connections. No unencrypted connections are accepted by any server or service.
Session tokens are required to access services not using explicit user-entered login credentials. These session tokens are only exchanged through encrypted channels from client-to-server and server-to-server and are encrypted in both directions.
The certificate used in the servers uses a SHA-256 with RSA Encryption algorithm. Key size is 2048 bits.