EncryptedNote LogoEncryptedNote
|
Get Started

About EncryptedNote: Privacy-First Secret Sharing

EncryptedNote was founded in 2024 with a singular mission: make secure, private communication accessible to everyone without compromising on security or requiring users to sacrifice their privacy.

Why We Built EncryptedNote

In today's digital landscape, sharing sensitive information like passwords, API keys, credit card details, or confidential messages is risky. Traditional channels like email, Slack, or messaging apps store your data permanently, often in plaintext, making them vulnerable to breaches, subpoenas, and unauthorized access.

We witnessed too many security incidents where sensitive credentials were leaked because they were shared via insecure channels or stored in password managers with poor sharing controls. Teams needed a way to share secrets temporarily without leaving permanent records—and without requiring recipients to create accounts or install software.

EncryptedNote solves this problem with a zero-knowledge architecture. Your secrets are encrypted in your browser using XChaCha20-Poly1305 before transmission. We literally cannot read your messages, even if compelled by legal order or compromised by attackers. After the recipient reads your note, it's permanently deleted from our servers.

Our Technical Approach

Security isn't about trust—it's about mathematics and architecture. EncryptedNote is built on three core principles:

  • Zero-Knowledge Encryption: All encryption happens client-side using XChaCha20-Poly1305, a state-of-the-art authenticated encryption algorithm. Decryption keys never touch our servers—they're embedded in the URL fragment, which browsers never transmit to servers.
  • Self-Destructing by Default: Notes automatically expire after one view or a set time period. Once deleted, encrypted data is purged from our systems permanently. We don't keep backups of encrypted content.
  • No Accounts, No Tracking: We don't require user registration, collect personal information, or track behavior across sessions. You can share secrets anonymously without creating digital footprints.

Our technical implementation prioritizes security over convenience. We use cryptographically secure random number generators for key generation, implement strict Content Security Policies to prevent XSS attacks, and serve all traffic over TLS 1.3. Learn more about our security architecture.

Who We Serve

EncryptedNote is trusted by security-conscious individuals and teams worldwide:

  • Development Teams: Share API keys, database credentials, and deployment secrets with contractors or team members without exposing them in Git repositories or Slack channels.
  • Remote Workers: Securely transmit WiFi passwords, VPN credentials, or temporary access codes to colleagues working from different locations.
  • Privacy Advocates: Communicate sensitive information without creating permanent records that could be subpoenaed, hacked, or sold.
  • Everyday Users: Share credit card details for one-time purchases, send login credentials to family members, or transmit personal information that shouldn't live in email archives forever.

Our Privacy Commitment

Privacy isn't a feature—it's our foundation. We've designed EncryptedNote so that even we cannot access your secrets:

  • No Data Retention: After a note is read or expires, encrypted content is permanently deleted. We don't keep logs of note contents.
  • Minimal Metadata: We collect only what's necessary to deliver the service (note expiration timestamps, view counts). We never log IP addresses in connection with note content.
  • Open Source Cryptography: We use battle-tested, open-source encryption libraries (libsodium/NaCl) audited by security researchers worldwide.
  • Transparency: Our technical documentation explains exactly how encryption, key management, and data handling work. We have nothing to hide.

Why Choose EncryptedNote Over Alternatives?

Unlike password managers with sharing features or encrypted messaging apps, EncryptedNote is purpose-built for temporary secret sharing:

  • No Software Installation: Recipients don't need accounts, apps, or browser extensions. Just click a link.
  • Self-Destructing: Unlike Slack or email, messages don't persist forever. They vanish after reading.
  • Zero-Knowledge: Unlike most password managers, we cannot decrypt your data even if we wanted to.
  • Anonymous: No signup means no user database to breach, no passwords to crack, no accounts to compromise.
  • Free Forever: We believe privacy is a right, not a premium feature. EncryptedNote is free with no usage limits.

Get Started

Ready to share your first secret? No signup required. Create an encrypted note in seconds. Have questions? Check our FAQ for detailed answers about security, privacy, and how the service works.