Secure Your Human Intent.
Definitive Email Protection.
HumanAttest eliminates session hijacking and bot-driven emails through mandatory physical intent verification — without ever reading your emails.
ENTERPRISE-GRADE PROTECTION · CHROME & GOOGLE WORKSPACE
Zero-Risk Architecture
We Never Touch Your Emails. Ever.
HumanAttest works entirely at the send-action layer. We intercept the click — not the content. Your Gmail data stays 100% private.
- ✕ Your Gmail address or account ID
- ✕ Email subject lines or body text
- ✕ Recipient email addresses
- ✕ Attachments or file contents
- ✕ Draft or sent folder data
- ✕ Any Google OAuth tokens
- ✓ SHA-256 cryptographic hash of send-action
- ✓ Verification timestamp (UTC)
- ✓ Your registered full name (for audit)
- ✓ TOTP verification result (pass/fail)
- → Extension has no Gmail read permission
- → Verification runs locally on your device
- → No server ever sees email content
- → Open audit log — you own your data
- → GDPR & CCPA compliant by design
- → Legal in all jurisdictions worldwide
The Protocol
How HumanAttest Enforces Trust.
HumanAttest intercepts the Gmail 'Send' event at the browser level. No email leaves without a verified physical handshake — and no email content is ever read.
Send Action Intercepted
The extension detects the Gmail send click and immediately pauses the action. Your email stays in the browser — nothing is transmitted yet.
2FA Authenticator Scan
You verify your physical presence by scanning a secure QR code and entering a rotating OTP from Google Authenticator or any standard 2FA app.
Cryptographic Release
A one-time SHA-256 token is generated and logged. The send action is released. Only the hash — never the email — reaches our servers.
End-to-End Ecosystem
Unified Security Workflow.
Whether you are sending or receiving, HVEL ensures every interaction is physically verified and cryptographically signed.
For Senders EXTENSION REQUIRED
⚡ One-Click Install
Download the Chrome extension and refresh Gmail. No complex signup required.
📱 2FA Pairing
Scan the secure QR code with Google Authenticator to link your physical device.
🔒 Send Action Intercept
Click "Send" in Gmail. HVEL pauses the action and triggers a security handshake.
🚀 Cryptographic Release
Enter your 2FA OTP. HVEL signs the email with a unique hash and releases it.
For Recipients NO EXTENSION NEEDED
🛡️ Visual Trust Badge
Instantly recognize verified humans via the HVEL Trust Stamp in your inbox.
🔍 One-Click Verify
Click the stamp to view the full cryptographic audit trail and sender identity.
⚠️ Security Nudges
If an unverified reply is received, HVEL alerts you and nudges the sender to verify.
✅ Identity Protection
Even without the extension, our server-side gates prevent identity mismatch attacks.
The Inbox Experience
Receiver HAS Extension
Native Integration: The extension automatically detects the hidden hash and injects a real-time trust badge into the Gmail interface.
Receiver NO Extension
Universal Portal: Non-users see a professional Trust Stamp. Clicking it opens a secure hosted page showing the full audit trail.
🚀 Pro Tip: Non-extension users are automatically nudged to join the protocol upon their first reply, ensuring viral network security.
Modern Security Stack
Engineered for Absolute Assurance.
2FA OTP Scan
Military-grade 2FA integration using Google Authenticator. Verify your physical intent by scanning a secure QR code for every sensitive send.
Native Gmail Hook
Direct injection into the Gmail send pipeline. The extension intercepts the action before any data leaves your browser.
Security Nudges
Recipients see a verified human badge on emails sent through HumanAttest, building trust at the inbox level.
Audit Engine
Every verification is logged as a cryptographic hash to a secure PostgreSQL database. Full audit trail, zero email content.
Business Profile
HUMANATTEST SECURITY LTD.
Network
Decentralized
Protocols
WebAuthn, TOTP
Data Policy
Zero Email Storage
Compliance
SOC2 Ready