How Our Encrypted Chat Room Protects Your Messages
Client-side AES encryption, room keys, PostgreSQL storage, and what we never see on the server.
Published 2025-06-05 · 7 min read
Encryption before upload
Your browser encrypts each message with AES-GCM using a room key from the invite link. The server stores ciphertext and metadata (room ID, timestamp) — not readable message content.
Room keys and sharing
Anyone with the room ID and encryption key can decrypt messages. Share invite links only with people you trust. Keys are not stored on our server in plain text.
Ephemeral by design
Messages clear when you refresh. Rooms expire after inactivity. For long-term records, copy important text yourself — we do not provide message export.
New to secret chat?
For a beginner-friendly walkthrough — create a room, invite anyone without a phone number, and privacy tips — read our tutorial: How to Secret Chat With Anyone Online (No Phone Number).