// Step 01 / Compose
Paste it. Lock it.
Disappear it.
Content is encrypted in your browser with AES-256-GCM before it ever leaves the device. The server adds a second Fernet layer, and the decryption key lives only in the URL you share.
Plaintext Buffer · local only
0 chars1 lines0.00 KB
/dev/null ← what the server sees of your plaintextCTRL + ENTER to encrypt
Zero-knowledge
Encryption key never touches our servers. It lives in the URL fragment, which browsers don't transmit.
Dual-layer
Browser-side AES-256-GCM is wrapped again by Fernet (AES-128-CBC + HMAC) on the server.
Ephemeral by design
Burn-after-read, view limits, and TTL expiry guarantee secrets do not linger.