Share Secrets That Burn After Reading
Securely share passwords, API keys, and sensitive information with end-to-end encryption. View once, then it's gone forever.
How It Works
Share secrets securely in three simple steps
Enter Your Secret
Type or paste any sensitive information—passwords, API keys, private notes. Your secret is encrypted right in your browser.
Share the Link
Get a unique, secure link to share via email, chat, or any channel. The encryption key is embedded in the URL.
View Once, Gone Forever
Your recipient views the secret one time. After that, it's permanently deleted from our servers. No traces left behind.
Protected, Even From Us
Your secrets are encrypted before they leave your browser. We designed Burnvelope so that even we cannot access your sensitive information.
End-to-End Encryption
Your secret is encrypted in your browser before it ever leaves your device. The encryption key never touches our servers.
Zero-Knowledge Architecture
We literally cannot read your secrets. Even if our servers were compromised, your data remains encrypted and unreadable.
One-Time Access
Once viewed, your secret is immediately and permanently deleted. No backups, no logs, no traces.
Automatic Expiration
Set an expiration time from 1 hour to 7 days. Unviewed secrets are automatically purged when they expire.
Perfect For
Secure sharing for every situation
Passwords
Share login credentials with team members or clients without leaving traces in chat or email.
API Keys
Onboard developers securely by sharing API keys, tokens, and secrets that self-destruct.
Payment Info
Share credit card numbers or bank details securely when needed for one-time transactions.
Private Notes
Send confidential messages, codes, or sensitive information that shouldn't persist.
Frequently Asked Questions
Everything you need to know about sharing secrets securely
Is Burnvelope really secure?
Yes. Burnvelope uses AES-256-GCM encryption, the same standard used by governments and banks. Your secret is encrypted in your browser before being sent to our servers. The encryption key is embedded in the URL hash, which is never sent to our servers. Even if our database was compromised, attackers would only see encrypted data they cannot decrypt.
Can you read my secrets?
No. We designed Burnvelope with a zero-knowledge architecture. Your secret is encrypted with a key that never touches our servers—it stays in the URL. We only store double-encrypted data that is useless without the key in your link. We literally cannot read your secrets.
What happens after someone views my secret?
The moment your recipient views the secret, it is immediately and permanently deleted from our servers. There are no backups, no logs, and no way to recover it. The link becomes invalid and will show a "not found" message if accessed again.
What if no one views my secret?
Unviewed secrets automatically expire based on your chosen time limit (1 hour to 7 days). When a secret expires, it is permanently deleted from our servers. This ensures no sensitive data lingers indefinitely.
Why is this better than sending passwords by email?
Emails sit in inboxes forever, get forwarded, and are often stored on multiple servers. With Burnvelope, your secret exists only until it's viewed once—then it's gone. Even if someone later accesses your email, the link will be useless. It's the digital equivalent of a self-destructing message.
Is Burnvelope free to use?
Yes, Burnvelope is completely free and open source. There are no premium tiers, no limits, and no accounts required. We believe secure secret sharing should be accessible to everyone.
What should I use Burnvelope for?
Burnvelope is perfect for sharing passwords, API keys, private keys, credit card numbers, confidential notes, or any sensitive text you need to share securely. It's great for onboarding new team members, sharing credentials with clients, or sending sensitive information to friends and family.
Ready to Share Securely?
Start sharing secrets that burn after reading. No signup required.
Create a Secret Link