SES PeregrinoSES Peregrino
Security and privacy

Privacy isn't a feature. It's the architecture.

SES Peregrino is designed from the ground up so that nobody — not even us — can access your sensitive data.

Security principles

Zero knowledge

Wise Pilgrim SL has no access to your SES credentials or guest data. Credentials are stored on your device only. Guest records are encrypted on your device before upload — our server stores only encrypted blobs we cannot decrypt.

Client-side encryption

SES credentials are stored encrypted on your device (Keychain/Keystore). After submission to the Ministry, guest data is encrypted with your personal password and stored as an unreadable blob for the 3-year legal retention period. Plaintext data is then cleared from memory.

Direct connection

Your device communicates directly with the Ministry of Interior's SOAP API over HTTPS. No intermediary. No proxy. Your phone talks to the Ministry, period.

Real encryption

Guest records are encrypted with AES-256-GCM using a key derived from your password (PBKDF2, 600,000 iterations). The key never leaves your device. Without your password, the stored data is mathematically unreadable.

Data minimization

We only collect what Royal Decree 933/2021 requires. Not one field more. We comply with GDPR and LOPDGDD by design, not by patch.

Automatic deletion

Encrypted records are automatically deleted 3 years after creation. We meet the legal deadline without you having to do anything.

Screenshot protection

Every screen displaying personal data is protected against screenshots and screen recordings. Sensitive information cannot be captured.

Data flow

Hospitalero side

  1. 1Pilgrim shows encrypted QR
  2. 2App scans, decrypts, and decodes in memory
  3. 3Hospitalero reviews data on screen
  4. 4Data sent via HTTPS to the Ministry
  5. 5Encrypted record uploaded to secure cloud storage for the 3-year legal period
  6. 6Only submission metadata visible (reference, date, status)

Pilgrim side

  1. 1Pilgrim enters data in the app
  2. 2Data saved only on the device
  3. 3App generates encrypted QR with compressed data
  4. 4QR displayed on screen
  5. 5Data never leaves the pilgrim's device

Regulatory compliance

General Data Protection Regulation (GDPR)Spanish Organic Law on Data Protection and Digital Rights (LOPDGDD)Royal Decree 933/2021 of the Ministry of Interior

SES Peregrino complies with these regulations by architectural design, not by privacy policy. The best data protection is making the data unreadable — even to us.