Secretus logoSecretus
Secretus logo

Share Secrets Securely

Maximum Security gives you a live browser-to-browser session secured by authenticated X3DH-style setup plus ML-KEM-768 hybrid key agreement. Team Split brings threshold cryptography — previously the domain of HSMs and enterprise key vaults — entirely into your browser.

Browser-side encryption. Trust-minimized architecture. Storage behavior depends on the mode you choose.

Open Anytime

Standard mode: AES-256-GCM, recipient opens within 15 min up to 30 days

🔒

No Server Storage (P2P Mode)

Maximum Security: browser-to-browser P2P, so the secret payload is not stored server-side in this mode

🔬

Hybrid Post-Quantum

ML-KEM-768 (NIST FIPS 203) hybrid key agreement in Maximum Security mode to reduce harvest-now-decrypt-later risk

🔑

Team Split

Shamir's Secret Sharing: require 2-of-3 or 3-of-5 approval before anyone can read the secret

EU-Based Operation
Romanian operator, EU-hosted core account setup
Consent Controls
Optional analytics only after consent
X3DH-Style E2EE
Authenticated X3DH-style setup + per-direction symmetric ratchet
Post-Quantum Ready
ML-KEM-768 (NIST FIPS 203) hybrid — reduces harvest-now-decrypt-later exposure
Team Threshold Secrets
Shamir k-of-n: no single holder can reconstruct alone

Share Your Secret

Create a free account to send your first secret.

14-day free trial — full access, no credit card required.

Everything is encrypted in your browser — we never see your secret.

Security & Privacy First

Built with cutting-edge encryption and privacy technologies to keep your secrets safe.

🔒

X3DH-style + ML-KEM-768 Hybrid P2P

Maximum Security mode combines authenticated X3DH-style session setup with ML-KEM-768 hybrid key agreement and per-message symmetric ratcheting for short-lived browser-to-browser transfers.

Async Standard Mode

Send a secret without waiting for the recipient. They open it anytime within 15 minutes up to 30 days — encrypted with AES-256-GCM, key never leaves the URL fragment.

🔥

One-Time Viewing

Each async secret link is intended for single use. After the recipient opens it successfully, the ciphertext is deleted and the link becomes invalid.

🛡️

Zero-Knowledge Architecture

Our servers never hold your encryption keys. All cryptographic operations happen in your browser via Web Crypto API. For P2P sessions, compare the safety number with your recipient to confirm the connection is direct.

🌍

EU / GDPR Compliant

Operated from Romania, EU. All infrastructure within AWS eu-central-1. Analytics only after explicit consent. GDPR-first by design. Data export and deletion on request.

🔔

Delivery Confirmation & Revocation

Know the moment your secret is opened — real-time delivery status in the sender UI. Changed your mind? Revoke any unread secret instantly, even hours after sharing the link.

Secret Request Links & Templates

Generate a request link and ask someone to send YOU a secret — only you can decrypt it. Built-in templates for SSH keys, database credentials, API keys, and Wi-Fi passwords.

🔑

Team Split — Shamir's Secret Sharing

Split a secret into N shares with a k-of-n threshold: any 2-of-3 or 3-of-5 holders can reconstruct it, but no single holder can access it alone. 100% client-side, with share material kept out of server storage.

How Secretus Works

Three modes for different threat models. Choose the one that fits your situation.

1
✍️

Write Your Secret

Type your secret and choose an expiry — 15 minutes up to 30 days, or a custom date. AES-256-GCM encryption key is generated randomly in your browser.

2
🔗

Share the Link

A unique link is generated with the encryption key hidden in the #fragment — invisible to our server. Copy it or share via QR code.

3
👁️

Recipient Opens Anytime

The recipient clicks the link whenever they're ready — no scheduling needed. The secret is decrypted locally in their browser.

4
💨

Link Expires

After the first successful view, the link is invalidated immediately and the ciphertext is removed from the server shortly after. The key was never sent because it stayed in the URL fragment.

Why Users Love Secretus

Trusted by privacy-conscious individuals and teams worldwide.

Perfect For:

🔑

Sharing Passwords & PINs

Securely share login credentials, access codes, and sensitive account information.

📝

Confidential Notes & Links

Send private messages, private voice messages, confidential documents, or secure access links.

👥

Client & Team Onboarding

Safely onboard new clients or team members with temporary access credentials.

📅

Async Sharing

Send now, they open when ready. No scheduling, no simultaneous presence required.

🔑

Team Approval Workflows

Distribute API keys, recovery codes, or critical credentials requiring 2-of-3 or 3-of-5 approval before anyone can access them.

🛡️

Privacy-First Communication

For anyone who values privacy, security, and peace of mind in digital communication.

Key Benefits:

No server-side secret-payload storage in Maximum Security mode
One-time viewing — async ciphertext deleted after successful access
Open anytime within TTL — no simultaneous presence required
Authenticated X3DH-style + ML-KEM-768 hybrid P2P
Zero-knowledge architecture — we never see your keys
ML-KEM-768 hybrid layer reduces harvest-now-decrypt-later exposure
Works on any device
Team Split — Shamir k-of-n threshold, share material stays client-side
Simple, beautiful interface

Simple, Transparent Pricing

Every plan starts with a 14-day free trial — full access, no credit card required.

14 days free · No credit card · Cancel anytime · Monthly or annual (2 months free)

Starter

Async one-time secret sharing for individuals

€9/per month

14-day free trial included

  • Unlimited secrets — no monthly quota
  • Text-only secrets
  • ⚡ Standard Mode — AES-256-GCM (Grover-resistant symmetric encryption)
  • Custom expiry: 15 min to 30 days
  • One-time viewing — auto-deleted on open
  • Zero-knowledge architecture
  • Secret labels & annotations
  • Secret revocation — cancel before opening
  • Delivery confirmation — know when opened
  • 📬 Secret request links — ask others to send you secrets
  • Secret templates — SSH, database, API key, Wi-Fi
  • Audit log — 90-day history, JSON & CSV export
  • Two-factor authentication (TOTP / MFA)
  • Installable PWA — iOS & Android
Most Popular

Pro

Add hybrid P2P for high-security transfers

€19/per month

14-day free trial included

  • Everything in Starter
  • 🔒 Maximum Security — X3DH-style + ML-KEM-768 hybrid P2P
  • No secret-payload storage on the server in P2P mode
  • Priority support

Business

Full suite: files, voice & k-of-n team approval

€33/per month

14-day free trial included

  • Everything in Pro
  • 👥 Teams — share your plan with up to 5 members
  • 🔑 Team Split — Shamir k-of-n threshold
  • Text + file + audio attachments (up to 5 MB)
  • API keys — up to 5 keys, REST API integration
  • 📊 Compliance PDF — evidence for SOC-2, GDPR Art. 30, DORA
  • 1-year audit log retention

Need a custom plan for a larger team? Contact us.

Ready to Share Secrets Securely?

Trust-minimized, browser-side encryption for your most sensitive information. Start sharing secrets securely today.

Learn More