Security and Privacy

Built on a foundation of privacy. We offer robust protection for every user out of the box, with optional high-security features for those who want total cryptographic isolation.

Privacy Levels

Standard Security

Reliable protection by default. Accounts is guarded by multi-layered security protocols designed to block unauthorized access.

Encrypted at Rest: Data is stored in encrypted databases.
Encrypted in Transit: Protected by TLS 1.3 at all times.

Personal Encryption (E2EE)

Total privacy. Your data is encrypted with a passphrase that only you know. It never leaves your device.

Subpoena Proof: Only you hold the keys. We can’t provide your data.
Client-Side Only: Encryption and decryption happen in your browser.
Our Team Can't Read It: Your tasks look like random text to us.

Technical Specifications

End-to-End Encryption

For personal encryption, we use AES-256 in Galois/Counter Mode. This provides both data confidentiality and a way to verify that your data hasn't been tampered with.

PBKDF2 Key Derivation

Your passphrase is never stored. We derive your unique key using PBKDF2 with 100,000 iterations and a random salt, making brute-force attacks extremely difficult.

Modern TLS 1.3

All communication is wrapped in TLS 1.3. This ensures that no one on your local network or at your ISP can see or modify the data being synced.

Secure Infrastructure

Our servers are hardened and follow security best practices. Even for non-encrypted accounts, your information is protected by strictly controlled access layers.