Journal entries stored unencrypted

PurpleToupee

Hi! I recently signed up for a new subscription, but I'm concerned that encryption does not seem to actually work. I enabled end-to-end encryption I have noticed that my journal entries are stored on my local drive unencrypted (in .config/IndexedDB/journey-assets_frontend_0.indexeddb.leveldb/000006.log and 000007.ldb, in my case). Even after I have closed the app, I can still read the full text of my journal.

Am I doing something wrong? Because this sure doesn't meet my expectations for "end-to-end encryption."

John

PurpleToupee Thank you for reaching out with your concerns about encryption. I understand your confusion. "End-to-end encryption" means that decryption is done on the client side—your PC in this case. This ensures that no one from our server can read the contents of your journal. However, once the data is decrypted on your PC, it is stored in the desktop app using IndexedDB, and we cannot change the storage or encryption methods of this component.

We do not perform decryption at runtime as it does not align with the definition of end-to-end encryption, and doing so could slow down your computer. Additionally, encrypting the database on your device could potentially limit future features, such as client-side search for encrypted entries, while still being susceptible to decryption if someone hacks your computer.

To ensure your data remains secure, I recommend using a PC that's password protected. If you're still uncomfortable with this setup, you might consider using the Mac Catalyst app or our web app (decryption at runtime) for your entries.

I hope this helps clarify things for you! If you have any more questions or need further assistance, feel free to reach out.