[GH-ISSUE #8438] [FR] End-to-End Encrypted Sync & Encrypted Local Storage #3837

New issue

Open

opened 2026-03-23 21:33:28 +00:00 by mirror · 0 comments

mirror commented

2026-03-23 21:33:28 +00:00

Owner

Originally created by @nikunjkumarnakum on GitHub (Jan 18, 2026).
Original GitHub issue: https://github.com/AppFlowy-IO/AppFlowy/issues/8438

Description

I would like AppFlowy to support full data encryption both at rest (on-device storage) and in transit (sync), ensuring that user data is protected end-to-end and remains private across devices.

AppFlowy is positioned as a privacy-focused, local-first productivity tool. However:

Data stored locally on the device is not fully encrypted at rest
Synced data is not end-to-end encrypted

This means that:

Anyone with access to the device’s file system can potentially read user data
Servers involved in sync may have access to unencrypted content

For users handling sensitive personal, professional, or confidential information, this creates a significant privacy and security concern.

Impact

Security & Privacy

Prevents unauthorized access to user data at rest and during sync
Reduces risk in case of server compromise or filesystem exposure
Enables zero-knowledge storage and sync

User Experience

Adds optional authentication flows (passphrase, bio-metric unlock)
Minimal day-to-day impact once unlocked
Clear trade-offs between convenience and security

Product Impact

Strengthens AppFlowy’s positioning as a privacy-first, local-first tool
Differentiates AppFlowy from mainstream note-taking apps
Encourages adoption in security-sensitive communities and organizations
Aligns well with open-source and self-hosted use cases

Additional Context

No response

Originally created by @nikunjkumarnakum on GitHub (Jan 18, 2026). Original GitHub issue: https://github.com/AppFlowy-IO/AppFlowy/issues/8438 ### Description I would like AppFlowy to support full data encryption both at rest (on-device storage) and in transit (sync), ensuring that user data is protected end-to-end and remains private across devices. AppFlowy is positioned as a privacy-focused, local-first productivity tool. However: - Data stored locally on the device is not fully encrypted at rest - Synced data is not end-to-end encrypted This means that: - Anyone with access to the device’s file system can potentially read user data - Servers involved in sync may have access to unencrypted content For users handling sensitive personal, professional, or confidential information, this creates a significant privacy and security concern. ### Impact Security & Privacy - Prevents unauthorized access to user data at rest and during sync - Reduces risk in case of server compromise or filesystem exposure - Enables zero-knowledge storage and sync User Experience - Adds optional authentication flows (passphrase, bio-metric unlock) - Minimal day-to-day impact once unlocked - Clear trade-offs between convenience and security Product Impact - Strengthens AppFlowy’s positioning as a privacy-first, local-first tool - Differentiates AppFlowy from mainstream note-taking apps - Encourages adoption in security-sensitive communities and organizations - Aligns well with open-source and self-hosted use cases ### Additional Context _No response_