Secure Notes —
private text that stays private

Note content is encrypted with AES-256-GCM before leaving your browser — the exact same encryption applied to passwords and credentials. The server stores only ciphertext. Even the note title is encrypted, so no metadata about your content is exposed.

No rigid templates or required fields. Write exactly what you need — multi-line text, formatted blocks, code snippets, numbered lists, anything. The note editor accepts any plain text format. Your structure, not a forced schema.

Copy the entire note content to clipboard with one click — no need to select text manually. Useful for multi-line recovery codes where you need to paste the full content elsewhere. Content is cleared from clipboard after 30 seconds automatically.

Notes are editable in place. Re-encrypt and save a new version whenever the content changes — for example when you rotate recovery codes or update a server configuration. Every edit re-encrypts with a fresh IV.

Secure notes live in the same vaults and folders as your passwords. Keep a note next to the login it relates to — a server config note in the same folder as the SSH credentials, a recovery code note in the same vault as the account it belongs to.

Show only secure notes using the type filter. Quickly browse all your notes across the vault without seeing login credentials. Combine type filtering with folder selection to drill down to exactly what you need.

Notes in shared team vaults are accessible to all vault members. Shared notes work the same as personal notes — each member decrypts with their own vault key. Use shared notes for team runbooks, shared codes, or internal instructions.