GlobaLeaks
Self-HostedOpen-source whistleblowing platform for secure anonymous disclosures
Overview
GlobaLeaks is a self-hosted, open-source whistleblowing system enabling secure, anonymous disclosures to organizations (NGOs, media, businesses). It supports encrypted submissions, customizable workflows for tip management, multi-language interfaces, and audit trails for transparency. Deployable via Docker or Linux server setups, it empowers entities to create safe channels without third-party reliance, complying with GDPR and other data protection laws. Key features include end-to-end encryption, role-based access control, and automatic data retention policies.
Key Features
- Secure anonymous submissions with end-to-end encryption
- Customizable tip management workflows
- Audit trails for compliance and transparency
Frequently Asked Questions
? Is GlobaLeaks hard to install?
GlobaLeaks offers simplified deployment via Docker, suitable for users with basic sysadmin skills. Traditional setups require Linux server knowledge (Ubuntu/Debian), but official documentation provides detailed step-by-step guides for both methods.
? Is GlobaLeaks a good alternative to proprietary whistleblowing tools like EthicsPoint?
Yes—GlobaLeaks provides core whistleblowing functionality (secure submissions, workflow tracking) while offering self-hosting, no subscription fees, and full data control. It’s ideal for organizations prioritizing privacy and avoiding vendor lock-in.
? Is GlobaLeaks completely free?
Yes—GlobaLeaks is open-source under the AGPLv3 license, so it’s free to use, modify, and self-host. There are no licensing costs, though hosting or maintenance expenses may apply depending on your setup.
Top Alternatives
Tool Info
Pros
- ⊕ Privacy-first design protecting whistleblower anonymity
- ⊕ Self-hosted to avoid third-party data risks and vendor lock-in
Cons
- ⊖ Requires Linux server expertise for traditional deployments
- ⊖ Steeper learning curve for workflow customization