Flowvault · Encrypted Send

Send a secret that self-destructs.

Encrypt a one-off note in this browser, pick how long it lives and how many times it can be opened, and share the link. The AES-256 key travels in the URL fragment (the part after #), so our servers never see it. After the final view the note is hard-deleted — not even Flowvault can bring it back. Learn more on the security page.

Note0 / 131,072 bytes

Expires after

Destroy after

The note is hard-deleted from our database the moment the last view is used — whichever comes first, views or expiry.

Also require a password to openAdds a second gate on top of the link’s secret key. Useful if the link might leak through email, chat, or a forwarded reply. Share the password through a different channel.

Encrypted client-side with AES-256-GCM. The key lives in the URL’s #fragment— browsers never send fragments to servers, so we literally cannot decrypt this note even if we wanted to.