End-to-end encrypted sync

OriginText can sync your notes across all your devices without ever sending plaintext to a server. Encryption keys are derived on your device and stay there — our servers only ever receive and store ciphertext.

Encrypted before it leaves your device

Each note is encrypted with AES-GCM using keys derived locally from your credentials. The encryption step happens entirely on your device before any data is written to the sync layer — there is no plaintext in transit and no plaintext at rest on our servers.

We only see ciphertext

Because keys are never transmitted, OriginText cannot read your notes even if compelled to. This zero-knowledge design is explained in detail on the how it works page — from on-device key derivation through to encrypted storage.

Across your devices

Sign in to OriginText on another device and your notes sync automatically. The new device derives the same keys locally and decrypts the ciphertext it fetches — no manual export, no unencrypted backup, just your notes appearing as if they were always there.