I built a note-taking app where I literally can't access your data

Source: Dev.to

Overview

I’ve been working on a side project called Mindpad, a simple note‑taking app that prioritizes privacy through end‑to‑end encryption.

Why a New Note‑Taking App?

Free note‑taking services often monetize user data. Your notes can be sold to advertisers or used to train AI models. I wanted a solution I could trust with my private thoughts.

Core Features

• End‑to‑end encryption using OpenPGP.js – battle‑tested, open source, and used by major privacy‑focused companies.
• Notes are encrypted before they ever leave your device, not just “encrypted at rest” or “encrypted in transit.”
• All data syncs only after encryption, ensuring the server never sees unencrypted content.
• The stack relies exclusively on European companies, taking advantage of the EU’s strong privacy regulations.
• No password resets or support‑based recovery – if you lose your encryption key, the notes are unrecoverable. This is the trade‑off for true privacy.

Hosting

All services are hosted on EU servers. One component uses a non‑EU provider, but the data remains stored within the EU.

Current Status

• The app is functional and used daily.
• The landing page and some UX elements still need polishing.

Feedback

I’m interested in hearing thoughts on the UX/privacy trade‑offs and any suggestions for improvement.

Try Mindpad