Frequently Asked Questions

SecureNote is a free service for sharing sensitive information securely. Your notes are encrypted in your browser before being sent to our servers, which means we never see your actual content.

When you create a note, your browser generates a random password and uses it to encrypt your content using AES-256 encryption. The password is included in the URL fragment (the part after #), which is never sent to our servers. Only someone with the complete link can decrypt and read your note.

This happens when the link you received is incomplete. The decryption password is normally embedded in the URL after the # symbol. If someone shared just the note link without the password part, or if the link got truncated when copying, you'll be prompted to enter it manually.

Ask the person who sent you the link to share the complete URL, including everything after the # symbol. Without the correct password, the note cannot be decrypted.

Yes! By default, SecureNote generates a secure random password for you, but you can choose to set your own custom password when creating a note. This is useful if you want to share the password separately (like verbally over the phone) or need something easier to remember.

Keep in mind that using a weak or guessable password reduces the security of your note.

No. We only receive and store the encrypted content. The decryption password never leaves your browser and is never transmitted over the network. Even if we wanted to, we cannot read your notes.

When a note expires or reaches its maximum view count, it is permanently deleted from our servers. There is no way to recover it. This ensures your sensitive information doesn't persist longer than necessary.

No. Once a note is created, there is no way to manually delete it. Notes are only removed when they reach their expiration date or view limit. This is why we strongly recommend always setting an expiration time when creating notes.

If you create a note set to "Never" expire with "Unlimited" views, it will remain on our servers indefinitely until removed through our abuse reporting system.

Yes, we will comply with valid legal requests. However, it's important to understand that any data we provide would be useless without the decryption password. Since the password is contained in the URL fragment and is never transmitted to our servers, we simply don't have access to it. Law enforcement would receive only encrypted data that cannot be decrypted.

For security purposes, we log IP addresses associated with note creation and access. Additionally, our CDN provider (Cloudflare) may log requests as part of their standard operations. However, neither the encrypted note content is useful without the password, nor is the password ever transmitted over the network, so these logs cannot be used to read your notes.

We use Umami, a privacy-focused, open-source analytics platform. Unlike traditional analytics tools, Umami does not use cookies, does not track users across websites, and does not collect any personal information. It only provides us with aggregate, anonymous statistics about page views to help us understand how the service is being used. You can learn more at umami.is.

If you lose the link to your note, there is no way to recover it. The link contains the unique note ID and the decryption password. Without both, the note cannot be accessed or decrypted. We recommend saving important links in a secure location.

Yes. Your preferred expiration time and view limit settings are saved locally in your browser. The next time you create a note, your previous choices will be pre-selected. These preferences are stored only on your device and are never sent to our servers.

Yes, you can embed images in Markdown notes using the standard syntax. However, for privacy and security reasons, we only support images hosted on specific platforms. Currently supported image hosts are:

• Imgur (i.imgur.com)
• ImgBB (i.ibb.co)
• Postimg (i.postimg.cc)

Images from other sources won't be displayed. This prevents tracking pixels and ensures your privacy when viewing notes.

Yes, notes are limited to a reasonable size to prevent abuse and ensure the service remains fast for everyone. For most use cases like passwords, API keys, and short messages, this limit is more than sufficient. You'll see a warning when approaching the limit.