Frequently Asked Questions

Q: How long is my secret kept?

By default, a secret is kept for 7 days, unless someone reads it using the secret link, in which case it is immediately deleted.

Learn more about how Ones keeps your secrets secure

What is the idea?

Consider this an alternative to sending passwords and other secrets over mail or instant messaging where they will typically be saved for a longer time. With this service, the secret gets deleted once the receiver reads it.

How long is my secret kept?

By default, a secret is kept for 7 days, unless someone reads it using the secret link, in which case it's immediately deleted.

Can a burned secret be recovered?

No, we have no means to recover secrets. Once a secret is deleted, it's permanently gone.

Which data is stored about me?

When you visit this website, your IP address is kept in our log files. The site does not embed any 3rd party tracking or 3rd party cookies.

How is my secret secured?

Your secret is protected by multiple layers of encryption:

Client-Side Encryption

AES-256-GCM encryption in your browser • Key generated locally • Key never sent to servers

In Transit (HTTPS/TLS)

Already encrypted secret sent securely over HTTPS

Server-Side Encryption

Double-encrypted in database with different key

Viewing the Secret

Browser decrypts with key from URL fragment

Zero-Knowledge Architecture

The encryption key is stored in the URL fragment (after #k=), which is never sent to our servers. We literally cannot read your secrets.

Which browsers are supported?

This service requires modern browsers with Web Crypto API support:

Chrome v37+ (2014)

Firefox v34+ (2014)

Safari v11+ (2017)

Edge v79+ (2020)

Browser Coverage: ~97%

Approximately 97% of global internet users have a browser that supports this service. Internet Explorer is not supported.