The Path to Sovereignty: A Technical & Ethical Deep Dive

Thank you for taking the next step toward digital independence. Moving away from “Big Tech” serfdom is a significant decision. This page is designed to help you understand the Smart Personal Cloud (SPC) architecture, its history, and the deliberate trade-offs we made to ensure your data remains yours—forever.

Our Origins: From Innovation to Intervention

We are a small team based in Washington State, USA. In 2016, we released SkanApp and the SkanStick. It was a breakthrough in mobile productivity: 400 pages in 10 minutes, 100+ OCR languages, and the world’s first AR-interface buttons.

For years, a global community across 170 countries—speaking over 40 languages—enjoyed total freedom: saving files simultaneously to SD cards, PCs, and Linux servers. To us, “freedom” meant being language-agnostic from the ground up; we built our tools so that users could switch UI and OCR languages dynamically, without the rigid restarts or locale-locks imposed by standard mobile operating systems.

But then, the environment changed. Google began a systematic “clamping down” on the Android platform. They issued ultimatums that would have forced us to strip away 50% of SkanApp’s utility, effectively banning an app from being both a “scanner” and a “backup tool.”

The writing was on the wall: We could either remain at the mercy of Big Tech’s whims or build a new venue for innovation. We chose to pivot. We took the Linux backend we had already perfected and turned it into the SPC Station—a hub for a new paradigm where the cloud belongs to you, not a corporation.

The SPC Philosophy: Real-World Security vs. “The TPM Trap”

Modern Windows 11 computers require a TPM (Trusted Platform Module). While this sounds secure, it creates a “Dependency Trap.” If your motherboard fails or a BIOS update glitches, your data can become permanently inaccessible unless you have a recovery key stored on Microsoft’s servers.

We chose a more practical, “Commodity-First” approach:

  1. Hardware Independence: Your SPC drive is not “married” to your motherboard. If your Mini-PC breaks, you simply unplug the SPC drive and plug it into another one. Your cloud is back online in seconds.
  2. Auto-Boot Convenience: We modified the Linux loading module so the SPC Station can reboot automatically after a power outage without needing a keyboard or monitor attached. This allows you to hide the server in a closet, attic, or garage for physical security.
  3. The Security Trade-off: Because we do not lock the encryption to the TPM, a sophisticated software engineer with physical possession of the drive could eventually decrypt it.

Security Architecture & The “Inconvenience” Factor

When it comes to physical possession of a drive, no system is 100% impenetrable to a determined expert with unlimited time. Our security model is based on Economic Disincentive rather than the illusion of absolute invincibility.

The ROI of an Attack

In the “Big Tech” world, a single successful exploit on a centralized server yields millions of user records, making the high cost of a sophisticated hack extremely profitable. With the Smart Personal Cloud (SPC), the ROI for an adversary collapses:

  • Isolation: There is no “master key” or central database. A successful attack on one drive yields exactly one SPC server’s users’ data—typically just a family or the handful of users in a small business.
  • Invisible by Default: If port forwarding is not configured for external access, the SPC is simply invisible to the outside world. Even when configured, the database is never directly accessible from the internet or the LAN; it is shielded behind a web service interface.
  • Brute-Force Protection: The only entry point is the user login, which is protected by aggressive rate-limiting (e.g., a 24-hour lockout after 3 failed attempts).
  • High Friction: To access files, an intruder cannot simply “browse” the disk. They would need to bypass the Full Disk Encryption, navigate a non-standard boot environment, and then reconstruct a fragmented database schema. Because files are stored internally as sets of small data chunks within the database rather than as discrete files on a standard file system, an attacker would have to develop custom software just to extract and reassemble the data.
  • The Time Penalty: While a state actor or a highly motivated specialist could eventually deconstruct these layers, it requires a level of manual labor that is simply not scalable.

Physical Sovereignty vs. Cloud Vulnerability

The primary threat to your privacy today isn’t a ninja stealing your USB drive; it is a script-bot or a corporate algorithm scanning millions of cloud accounts simultaneously.

By moving your data to an SPC, you trade “theoretically perfect” hardware encryption (which often relies on proprietary TPM chips that can be backdoored) for Physical Sovereignty. Your data is invisible to the internet predators. Unless you are a high-value target for a state-level investigation, the “cost to crack” an SPC far exceeds the value of the data for 99.9% of potential intruders.

Technical Foundation: Media & Longevity

The SPC software is available on two types of media: USB 128GB Flash Drives (CloudOTG) and NVMe 1TB SSDs (Smart Personal Cloud). While the software is nearly identical (CloudOTG has fewer Music Visualizer videos due to size), the hardware characteristics differ significantly:

  • Life Expectancy: Standard flash drives are designed for “static” storage (like photos). Using them as an Operating System—which constantly writes logs—wears out the storage cells faster.
  • NVMe Advantage: NVMe drives are built for OS usage. They include advanced controllers that distribute “write” operations equally across all cells (wear leveling), ensuring a much longer lifespan.
  • Maintenance: Flash drives must be plugged into a USB port at least once a year to prevent the storage cells from discharging and losing data.

NOTE: The Smart Personal Cloud requires Secure Boot to be disabled in your BIOS, as we use a custom loading module for automatic, passwordless reboots.

Choosing Your “Flavor” of SPC

1. CloudOTG (USB Flash Drive)

Pros: Highly portable and inexpensive (approx. $20 for the media to clone to). It allows you to clone the entire system—OS and data—easily. This creates a “bootable backup” that can be plugged into any PC to bring your cloud online in seconds.

The Economic Edge: Because the media is so affordable, you can maintain several $20 flash drive clones for total data safety, rather than investing nearly $200 for a single 1TB NVMe SSD. However, note that cloning via command-line carries the risk of destroying data if not executed with extreme caution.

Best For: Being small enough to fit in a wallet, it is perfect for users who travel between locations (e.g., home and office) and don’t want to expose highly sensitive data to internet access (preferring local Wi-Fi/direct connection), or those whose ISP uses CGNAT (like StarLink), which prevents remote access via Port Forwarding. It’s also ideal for security-conscious users who want to physically remove and hide their cloud when not in use.

2. SPC (NVMe SSD Only)

Pros: If you have a PC made “obsolete” by Windows 11 TPM requirements, this is the perfect way to repurpose it. Installing the SSD directly onto the motherboard offers the maximum speed possible via the PCIe interface.
Cons: Cloning is more “awkward” because it requires opening the computer to remove the drive. You will likely rely on the SPC web interface for content-only backups. If the drive fails or is stolen, you would need both a new drive and your backup file to restore.

3. SPC (NVMe + USB Enclosure)

Pros: The most flexible “hybrid” option. While it might look “utilitarian” with a cable sticking out, it offers the industrial reliability of NVMe with the portability of a flash drive. The Advantage: You can use a hardware duplicator (like the Sabrent EC-SSD2) to clone the entire system—OS and data—without ever touching a screwdriver or a command line.
Cons: Requires Secure Boot disabled (See our Host Preparation Guide for BitLocker-enabled systems).

4. SPC (NVMe inside Turnkey Mini-PC)

Pros: A true “Black Box” experience. No cables sticking out, no assembly required. This is the ultimate “Guardian” setup for your living room. Capabilities: Connect it to your Big Screen TV to use LibreOffice, GIMP, or act as a Media Hub. You can even use an HDMI extender to “toss” your video/music to a TV in the kitchen or bedroom from your sofa. Maintenance: Since opening the chassis to clone the drive is difficult for some, we offer to provide a pre-cloned duplicate SSD at the time of purchase which you can keep in a safe place.

Important Note on Warranties: For the Turnkey Mini-PC options, we manually open the chassis to install the Samsung 990 Pro 1TB SSD. While most manufacturers (like Cybergeek or Beelink) allow users to upgrade their own hardware, our act of opening and modifying the unit for resale may void the original manufacturer’s warranty. If you are comfortable using a screwdriver, we recommend buying the hardware yourself and purchasing our NVMe drive separately to maintain your hardware warranty.

The “Guardian” Advantage: Beyond Just Storage

When you connect your SPC Station to a TV via HDMI, it transforms into a localized powerhouse (supporting 5 primary UI languages) for both the server and the local user experience:

  • Full Office Suite: LibreOffice (Microsoft Office equivalent) for document editing and professional productivity.
  • Creative Tools: GIMP (Photoshop equivalent) for high-end image manipulation.
  • Simultaneous Multi-Language Engine: The server dynamically responds to each user in the language selected at their individual login screen. This occurs regardless of the server’s underlying system locale. Multiple users can query the server in different languages (e.g., English, Spanish, French) simultaneously without any cross-interference or impact on other users’ interfaces.
  • Specialized Recording:
    • Video Capture: Record high-quality video streams (audio track is excluded).
    • Snapshot Capture: Precision-select an area of interest or capture full-screen stills at specific timeline points.
    • Audio Studio: Record audio streams with optional automatic silence-detection for smart file splitting or manual trimming.
  • Multimedia Studio & Spatial Management:
    • High-Performance Playback: Smooth, high-bitrate playback of music and video files, whether retrieved from the database, another SPC server, or a web search.
    • Persistent Spatial Memory: Select the exact position and size for the browser or media player; the system saves these settings independently so they return to the same spot even after a reboot.
    • Multi-Tasking Layouts: Configure your workspace to automatically open a music playlist or internet browser in a specific corner while keeping your primary work area clear for document editing or database research.
    • Multi-Display Routing: In setups with two TVs, you can assign media to a specific screen, ensuring your reference material and primary tasks never compete for the same pixels.
  • Dynamic Presentation Engine: All media files in search results (such as PDF, Word, Images, Audio, Video, etc.) are automatically accompanied by their own private playback panel for independent in-place and on-the-server’s TVs viewing. Use these individual panels to “toss” specific pages or files to the TV with a single tap, ensuring only the selected content is visible to the audience while the rest of the document remains private on your device.
  • Dedicated Presentation Mode: Through the “Server Local UI” toggle, you can completely hide the login interface and the multi-page user toolbar from the connected TV. This creates a clean, black canvas for professional environments or high-end media playback. While the server remains fully operational in the background, the big screen stays dark and undistracted until a user—regardless of where they are logged in—surgically “tosses” a specific document page, music file, or high-bitrate video to the display.
  • Universal Remote Control: Use any device (phone, tablet, laptop) from across the room or across the globe to “toss” media to the big screen without a single byte of data leaving your private network.

Why this is unique: Unlike standard screen-mirroring or PC desktops, the SPC allows for total Interface Decoupling. By toggling the Server Local UI, you ensure that the audience only sees the “surgically selected” media or document pages you choose to display. Your private navigation through the multi-page toolbar or file remains strictly on your remote device (phone, tablet, or laptop), making it the perfect tool for secure, professional presentations where the big screen is reserved exclusively for the content, not the interface.

No Vendor Lock-in: Your Data, Your Terms

It is natural to question if entrusting your family’s digital legacy to software developed by a small company is wise. What happens if a better solution becomes available tomorrow?

The SPC is built on the principle of transparency. The SPC UI includes a built-in “Export Database” option, allowing you to extract and save all files searchable by you to a USB drive or a shared folder on your LAN.

  • Permission-Based Export: When you trigger an export, the system packages everything you have permission to see: your private files, the public library, and all files within the user groups you belong to.
  • Privacy by Design: Because the export respects individual permissions, the private files of other users remain secure and are not included in your backup. Each user maintains their own digital sovereignty and can export their respective private data independently.

Your data is never locked behind a proprietary wall; you remain the sole architect of your digital estate.

Versioning & Feature Subscriptions

The Package-Based Update System

The SPC doesn’t just “update”; it evolves through chronological packages named by date (YYYYMMDD_XXX).

  • The Pull Logic: Your SPC periodically connects to the Go2Get portal to check for pending packages. If an update is available, it is pulled to your local storage.
  • User Control: The “Configure” page provides a Server Details panel showing your current version. If updates are available, the admin can view a chronological list. Clicking the Info Icon reveals the “Readme” for that specific package.
  • Sequential Integrity: To ensure system stability, packages must be installed in the order they were created.
Subscription vs. Security

We believe you should own what you buy. Therefore, we distinguish between system maintenance and new features:

  • Life-Long Security: Critical security and stability patches are made available to all units globally, regardless of subscription status. Whether or not you choose to install them, your “Black Box” has a permanent right to stay hardened. If you follow the “if it ain’t broke, don’t fix it” rule, the choice to remain on a specific version is entirely yours.
  • Feature Subscriptions: A subscription grants access to new software modules, tools, and UI enhancements.
    • Example: A new Security Camera Module might be released. Unlike third-party systems that stream your private footage to a hackable cloud, the SPC processes everything locally. The subscription covers the development of the software, but your data never leaves your house.

Connectivity & Remote Access

The Go2Get Gateway: Your Personal Signpost

Every SPC owner has the option to utilize a “DNS-like” capability through our Public Gateway. Instead of tracking a shifting public IP address, you can access your home server via a persistent, human-readable URL (e.g., go2get.com/spc-1b2).

How it works (The User-Controlled Logic)

To use this feature, you must explicitly enable Port Forwarding on your router and activate the “Remote Access” toggle on your SPC.

  • The Indicator File: Once activated, your SPC simply uploads a small text-based indicator file containing its current public IP to our gateway. Our site acts as a passive storage for this pointer—we never initiate a connection to your server.
  • Persistent Location: If your ISP changes your IP address or if you move your hardware (e.g., a CloudOTG or Core Plus unit) to a new network, your SPC will refresh its indicator file. This ensures your custom URL always points to your hardware’s current location without requiring a central account or third-party tracking.
  • Zero-Tracking Architecture: This is a one-way update. The gateway does not “monitor” your server; it simply waits for your SPC to check in. If you turn off the toggle, the indicator file is no longer updated, and the “signpost” disappears.
Why this matters for Privacy

Unlike traditional “Remote Desktop” software that requires you to log into a corporate server (giving them a record of your location and activity), the Go2Get Gateway is a stateless signpost. We don’t act as a middleman for your data; we simply tell your browser where your hardware is currently located.

Security & Privacy Controls (User-Enabled)

This convenience is entirely optional and must be manually configured by the user:

  • User Enablement: This feature only works if you choose to enable it. This is done either via the SPC local UI or through the “SPC Access & Security” page on Go2Get.com.
  • Prerequisites: To access your SPC from the internet, you must configure port forwarding on your router and choose to “publish” your public IP and keys to the gateway.
  • Total Isolation: If you prefer maximum security and choose to completely isolate your SPC from the internet, or simply have no need for remote access, this feature is not applicable. In this state, your SPC is “invisible” to the outside world, serving only your local network.

Final Advice: The “Clone” Strategy

Every SPC server is unique. To protect against theft or fire, we strongly recommend creating a duplicate clone of your SPC drive. Since each server uses a unique internal encryption key, “Server A” cannot restore a backup from “Server B.”

Having a physical clone in a safe-deposit box is the ultimate insurance policy for your digital legacy.

Questions? We are here to help: [email protected]