Back to WhatPlan

Privacy Policy

Last updated: February 2026

End-to-End Encryption

WhatPlan uses AES-256-GCM encryption, performed entirely in your browser using the Web Crypto API. When you create or edit a document:

• A unique encryption key is generated on your device
• Your content is encrypted before being sent to our server
• The encryption key is stored in the URL fragment (the part after the #) which is never sent to the server
• Only people who have the full link can decrypt and read the document

What We Store

Our server stores only:

• Document ID — a short random identifier for each document
• Encrypted content — an opaque blob we cannot read or decrypt
• Timestamp — when the document was last updated

We do not store encryption keys, document titles, task names, photos in readable form, or any other plaintext content.

Local Storage

WhatPlan uses your browser's localStorage to:

• Keep a backup of your most recent edits (so you don't lose work if your connection drops)
• Remember your recently visited documents for quick access

This data stays on your device and is never sent to our server.

No Tracking or Analytics

WhatPlan does not use cookies, analytics services, advertising trackers, or any third-party tracking tools. We do not collect usage data, browsing behaviour, or personal information.

Photos

Photos added to tasks are resized on your device for efficiency, then encrypted alongside the rest of your document content before being stored. We cannot view or access your photos.

Data Retention

Documents remain stored on our server until they are naturally cleared. Since we cannot read document content, we cannot identify or target specific documents for removal. If you lose the link (and its encryption key), the document becomes permanently unreadable.

Contact

If you have questions about this privacy policy, you can reach us through the WhatPlan project page.