Privacy Policy

Your secrets should stay yours. OneSecret is designed so we never see them — and never keep them.

Client-side encryption Encrypted in your browser
No tracking No account needed
Auto-delete After viewing or expiry
Zero Knowledge We cannot read your secrets

🔐 What We Store

When you create a secret, we only store the encrypted version of your message. It is unreadable without the decryption key.

  • Encrypted message (ciphertext)
  • Expiry time (if set)
  • Remaining view count
We do not store your password or decryption key.

🧠 How Encryption Works

All encryption happens in your browser before anything is sent to our servers.

  • The decryption key lives only in the URL fragment (#)
  • That fragment is never sent to the server
  • Only you (and the person you share it with) can decrypt the secret
We cannot read your secrets — even if we wanted to.

💣 Self-Destructing Secrets

Secrets are designed to disappear:

  • Deleted after the allowed number of views
  • Automatically expire after a set time
Once deleted, they are permanently removed and cannot be recovered.

👀 Tracking & Analytics

We keep this simple and minimal:

  • No user accounts
  • No tracking cookies
  • No analytics scripts
  • No third-party data sharing

⚠️ What You Should Know

  • Anyone with the full link can view the secret
  • If someone copies the content, it cannot be “unseen”
  • Always share links securely

Related pages

Last updated: June 2026