We preserve victim-authorized evidence of non-consensual intimate imagery, sexual deepfakes, and related extortion — as sealed, court-grade packages the adult victim or their representative transfers to counsel, law enforcement, or another competent authority.
TAKE IT DOWN Act — notice-and-removal; FTC enforcement since May 19, 2026. Recognizes victim or authorized-person requests.
Lets governmental entities require providers to preserve records pending legal process.
Authentication and self-authentication of digital and electronically-generated records.
Familiar authorization-under-penalty-of-perjury structure for a representative.
Not "just a screenshot." Each package is a structured record that can be re-hashed, replayed, time-checked, and signature-checked by counsel, investigators, or forensic examiners.
Replayable web archive of the page and its subresources — not just an image.
Full HTTP request/response log: URLs, status codes, headers, timings.
Human-readable full-page visual of the captured state.
Filing-friendly printable rendering.
Browser console output — explains blocked resources or script failures.
Supplemental network metadata; cross-checks capture completeness.
Blocked, unavailable, or authenticated content and platform-side changes are logged as limitations — never filled in.
Per-artifact byte fingerprint; any change alters the digest.
One signed root protects every artifact hash.
Root signed by the production key managed in AWS KMS.
DigiCert timestamp binds the sealed hash to trusted external time.
URL, capture time, inventory, hashes, versions, signature, timestamp chain.
Ordered: capture, hash, sign, timestamp, export, verify, transfer.
Multi-region log of KMS signing and key access.
Compliance-mode retention; sealed objects can't be overwritten or deleted.
Independent signed checkpoint chain to detect later tampering.
Anyone can verify a sealed package offline — without trusting takeitdown.help. The verifier re-hashes every artifact, recomputes the Merkle root, checks the ECDSA P-384 signature and RFC 3161 timestamp, reconciles the manifest against the custody log, and returns a pass/fail report naming any mismatch. The WACZ archive replays in standard tooling.
Aligned to the reliability factors — without guaranteeing any court will admit a particular record.
Re-hash, signature-, timestamp-, manifest-, and replay-checked offline.
Measured against a documented validation corpus.
SHA-384, ECDSA P-384, RFC 3161, WACZ, HAR — published formats.
Versions, manifests, signatures, timestamps, custody, CloudTrail, Object Lock.
Hashing, signatures, trusted time, web archives, immutable storage, custody logs.
Sealed-package transfer and technical-annex access after institutional verification. Do not email intimate content.
takeitdown.help is an automated evidence-preservation utility — not a law firm, forensic laboratory, court, or government service. It does not guarantee removal, admissibility, or prosecution. Whether a preserved record is admissible, reliable, or sufficient is determined solely by the relevant court or competent authority. Full technical methodology is available to qualified professionals on request.
We preserve victim-authorized evidence of NCII, sexual deepfakes, and extortion — as sealed, court-grade packages transferred by the victim or their representative.
TAKE IT DOWN Act — notice-and-removal; FTC enforcement since May 19, 2026. Recognizes victim or authorized-person requests.
Lets governmental entities require providers to preserve records pending legal process.
Authentication and self-authentication of digital and electronically-generated records.
Familiar authorization-under-penalty-of-perjury structure for a representative.
Not just a screenshot. Each package is structured, replayable, hash-checked, time-checked, and signature-checked.
Replayable web archive of the page and its subresources — not just an image.
Full HTTP request/response log: URLs, status codes, headers, timings.
Human-readable full-page visual of the captured state.
Filing-friendly printable rendering.
Browser console output — explains blocked resources or script failures.
Supplemental network metadata; cross-checks capture completeness.
Blocked, unavailable, or authenticated content is logged as a limitation — never filled in.
Per-artifact byte fingerprint; any change alters the digest.
One signed root protects every artifact hash.
Root signed by the production key managed in AWS KMS.
DigiCert timestamp binds the sealed hash to trusted external time.
URL, capture time, inventory, hashes, versions, signature, timestamp chain.
Ordered: capture, hash, sign, timestamp, export, verify, transfer.
Multi-region log of KMS signing and key access.
Compliance-mode retention; sealed objects can't be overwritten or deleted.
Independent signed checkpoint chain to detect later tampering.
Aligned to reliability factors — without guaranteeing a court will admit any particular record.
Re-hash, signature-, timestamp-, manifest-, and replay-checked offline.
Measured against a documented validation corpus.
SHA-384, ECDSA P-384, RFC 3161, WACZ, HAR — published formats.
Versions, manifests, signatures, timestamps, custody, CloudTrail, Object Lock.
Hashing, signatures, trusted time, web archives, immutable storage, custody logs.
Verify any sealed package offline — re-hash artifacts, recompute the Merkle root, check the ECDSA P-384 signature and RFC 3161 timestamp, reconcile the manifest and custody log, get a pass/fail report. No need to trust takeitdown.help.
Sealed-package transfer after institutional verification. Do not email intimate content.
takeitdown.help is an automated evidence-preservation utility — not a law firm, forensic lab, court, or government service. It does not guarantee removal, admissibility, or prosecution. Admissibility is determined solely by the relevant court or authority.