I am making a streamlit app where a non-tech-savvy professional can upload (with st.file_uploader) a csv/excel report containing sensitive data about clients. My app visualizes those data.
I have no experience with cyber security and am wondering if this approach is secure (provided I use SSL/TLS), or whether the data can leak somehow? Are they send to and from my app encrypted? In another post someone shared the following:
“I’m breaching the “locally” part but could you host your Streamlit app on a server and use the
st.file_uploader so users can upload their private data and analyze it ? Each user should get their session and not access other people’s sessions.”
Would really appreciate your input!