Table of contents
Start for free
Is Notion end-to-end encrypted?Is Notion end-to-end encrypted? Are your notes, wikis, and documents safe and secure?
To answer the question: No, Notion is not end-to-end encrypted. Almost all productivity apps that consumers use today were not built with security in mind, including Notion, Evernote, Roam, Bear Notes, Google Workspace, and other note-taking apps. Although they have invested in better security practices, data is generally stored with the most basic levels of symmetric encryption, which can leave sensitive information open to exploitation from employees, service providers, or other hackers and malicious actors.This has led to some catastrophic data breaches, such as Evernote’s data breach that exposed millions of user accounts, including consumers’ most sensitive information stored inside their notes. For some people, this could be years of personal notes, memories, interviews, work information, health tracking, or financial information that could lead to fraud or identity theft exposed (not to mention significant personal or professional consequences). With a variety of options for writing, collaborating, and sharing online, consumers have prioritized the security and encryption of their cloud products.Notion has become an all-in-one workspace for numerous different consumer needs, from writing wikis and todo lists to personal notes and project management. However, given this level of critical data stored inside the product, end-to-end encryption has emerged as a clear need for any product entrusted with our life’s notes and thoughts. Read on to learn more about Notion’s security practices and some excellent, consumer friendly end-to-end encrypted products.
What is end-to-end encryption?End-to-end encryption is a type of encryption where only the communicating parties can decrypt and read messages, files, or notes. It works by each party generating a secret key (private key) that only they know as well as a set of public keys that can be shared with other individuals. Users’ public keys are then used to encrypt messages, while private keys are used to decrypt messages, files, or data once encrypted. In an end-to-end encrypted product, only users, and not service providers or anyone else, have access to their private key, ensuring that any encrypted data can only be decrypted on a user’s device. This has led to the emergence of the terms “client side encryption” and “zero knowledge encryption” to describe this security model.End-to-end encryption is a different paradigm for building products, wherein users maintain all control over their data. As a result, companies have had to redesign the way products work to respect privacy out of the box. This includes writing new search algorithms that work with client-side encryption but can still perform fast, free full text search over all of a user’s data.
The benefits of end-to-end encryptionEnd-to-end encryption has become a standard in all messaging products today, including Signal, Session, iMessage, WhatsApp, Telegram Secret Chats, and Android Messenger. This ensures that only senders and recipients can see the content of their messages, and not cloud providers or device makers.End-to-end encryption is also a common security need for cloud storage providers, where the costs of exposing customer data, credit card information, or other sensitive information could be extremely high. Popular end-to-end encrypted cloud storage providers include Skiff and Tresorit, whereas Microsoft OneDrive, Dropbox, and Google Drive are not end-to-end encrypted.In some of the most alarming cases of non end-to-end encrypted providers hurting users, individuals of some productivity apps have been de-platformed and kicked out of their accounts, such as when the creator of popular TV show Rick and Morty was unexpectedly and involuntarily banned from Dropbox, or a well known journalist was removed from their Google Account. As a result, end-to-end encryption empowers individuals to work more creatively, freely, and effectively knowing that their personal information is kept completely private.
Using the full encrypted Skiff product suiteSkiff's fully encrypted product suite offers privacy-first file storage, real-time collaboration, notes, wikis, calendar, and email.Every Skiff user has access to the following products:
- Skiff Mail (end-to-end encrypted, private email)
- Skiff Drive (all data end-to-end encrypted, unlike Notion)
- Skiff Pages (for wikis, notes, documents, and real-time collaboration - end-to-end encrypted, unlike Notion)
- Skiff Calendar (integrates natively with Skiff Mail)
|Drive storage||10 GB||200 GB||1 TB|
|Folders and labels||5||Unlimited||Unlimited|
|Schedule or undo send|
|Email + doc text search|
|E2EE link sharing|
|Doc version history||24 hours||Unlimited||Unlimited|
End-to-end encrypted Notion alternativesIf you’re looking for an alternative to Notion that is more private and uses end-to-encryption, or client-side encryption, consider these products below.Standard Notes: Standard Notes is a multi-device product for writing notes. Generally perceived as a replacement to products like Apple Notes, Standard Notes maintains highly rated native applications (iOS, Android, and more), and the company has had good transparency on their product and security features.Joplin: Joplin is an open-source note-taking app that has become increasingly popular for consumers. Beyond simply writing, Joplin focuses on sharing features for collaborating on notes with others. Unlike Standard Notes and Skiff, however, Joplin is not end-to-end encrypted by default; this can be configured from inside the app. As a result, consumers looking for a simpler experience may select one of the other options.Skiff: Skiff is a privacy-first, end-to-end encrypted workspace with products for notes, file sharing, cloud storage, and email. Skiff offers a macOS app and mobile apps on iOS and Android for both their Pages product (notes, wikis, file storage and sharing) as well as for Skiff Mail. Skiff offers 10 GB of storage on their free plan, as well as an integrated workspace product for writing, collaboration, and sharing privately.
ConclusionEnd-to-end encryption (E2EE) provides much-needed privacy and security benefits to consumers without any significant downsides. E2EE keeps your information private to you alone, preventing the risks from data breaches or service provider employees accessing your account information. Given how much personal information is stored in a Notion workspace, Evernote account, or note-taking app, it is critical to choose a trustworthy, end-to-end encrypted provider and join millions of consumers making this critical shift.
Andrew MilichWhat's the best encrypted cloud storage provider?Choosing a cloud storage provider? Consider these platforms, security guidelines, and tips when setting up your account.
Skiff TeamWhy Web3 companies use Skiff Mail, Calendar, Pages, and DriveHow distributed, high-performance teams leverage Skiff's products for communicating and collaborating.
Skiff TeamIs Google Drive end-to-end encrypted?Over a billion people use Google Drive. Is Google Drive secure, encrypted, and end-to-end encrypted?
Skiff TeamWeb3 email and messagingUnderstanding Web3 and how it dramatically changes the future of email and online communication.
Peter LuThe best encrypted note taking apps in 2023We store more private information in our note-taking apps than in our homes. What are the best encrypted notes apps with fantastic privacy and best-in-class features?
Andrew MilichEmail marketing and tracking privacy protectionYour email inbox is home to your most sensitive personal and professional communications. Yet, emails are constantly exposed to invasive trackers, spam, and phishing. How can you protect your email?
Skiff TeamIs Dropbox end-to-end encrypted?Almost a billion people use Dropbox for for cloud storage, to share files, and to collaborate. Is it secure?
Skiff TeamIs Gmail Encrypted?Gmail is not end-to-end encrypted. Can it be trusted?