How it works
1 Create your secret
Paste your sensitive content and choose an expiration time. Your secret will be automatically destroyed after that period, even if nobody views it.
2 End-to-end encryption
By default, secrets are encrypted in your browser before being sent to the server. The decryption key is embedded in the URL fragment (#key) which is never transmitted to the server.
3 One-time access
Once a secret is viewed, it is immediately and permanently deleted. There is no way to retrieve it again. This guarantees the content can only ever be read once.
4 View confirmation
To prevent accidental consumption, you must explicitly confirm before viewing. This ensures the secret is not destroyed by link previews or bots.
5 API access
Retrieve secrets programmatically via HTTP. Enable cURL mode when creating a secret to skip encryption and use ?raw=true for plain text output.