Your notes.
Truly private.
FINGERPAD is compiled in your browser. Encrypted with your keys. It is the only secure place for your thoughts.
Get started in 20 seconds
No names, email addresses, phone numbers, or credit cards required. FINGERPAD is totally free — we rely on grants and donations.
Built with industry-standard cryptography
Learn more about how we secure your data in our open-source whitepaper and audit reports.
End-to-end encrypted
Only you can read your notes. We can't read them, even if we wanted to.
Password authentication
Your password is required to decrypt your keys locally. We never store it.
Device-bound keys
Your keys never leave your device. They are generated and stored locally.
No Trackers
We don't track your IP address, browser fingerprint, or anything else.
Forward Secrecy
If a session key is compromised, your past and future notes remain secure.
Open Source
FINGERPAD is open source. You can verify our cryptography architecture yourself.
Engineered for absolute privacy
Every decision is driven by one core principle — keeping your data yours.
End-to-end encryption
Data is encrypted locally in your browser before being transmitted to our servers. Only the encrypted ciphertext ever touches our database.
Client-Side Decryption
Your data is downloaded encrypted and decrypted locally on your device. We never see plaintext, ensuring your privacy remains absolute.
Primary Secret Key
Your unique Master Key is generated locally and never leaves your device. It acts as the root of trust for all your encrypted data.
No Trackers
FINGERPAD completely eliminates third-party analytics, tracking pixels, or identifying cookies. Your activity is entirely your own.
Air-gapped
Exports of your encrypted data can be managed in fully offline environments, providing a physical layer of security against network threats.
Zero-Knowledge Architecture
We designed the architecture so that the server holds zero knowledge of the actual user data, metadata, or organizational structure.
Password Authentication
Your master password encrypts your local keys. If you lose it, we cannot recover your account. This ensures nobody else can access it either.
Decentralized
Optional sync across decentralized storage nodes ensures 100% uptime and prevents any single point of failure or censorship.
We don't just promise privacy — we make it mathematically impossible for anyone, including us, to access your data. Your encryption key exists only in your browser's memory. We never see it.
Security you can measure
256-bit
Encryption standard
7,518
Active private users
3
Third-party audits
100%
Open source code
Start writing with
complete privacy
Join the next generation of thinkers who trust FINGERPAD with their most valuable assets.