Encryption

  • Unknown's avatar
    jm7scrhbm4 · Member ·

    A question how the software works in regards to encryption. When encrypting the data is my key the only key the data is encrypted with? How can I be certain no ADK’s are being used to encrypt with? Is this covered in any type of audit where I can see proof of this?

  • staff-cara · Staff ·

    Hi, @jm7scrhbm4!

    When encrypting the data is my key the only key the data is encrypted with? How can I be certain no ADK’s are being used to encrypt with?

    Only your key can be used to decrypt your data. We also never have access to it, which is why, once the key is lost, there is no way to decrypt the data.

    Is this covered in any type of audit where I can see proof of this?

    Yes, a third-party security firm, nVisium, reviewed our End-to-End Encryption architecture. You can view their full report here.

    You may also find our End-to-End Encryption FAQ helpful.

  • Unknown's avatar
    jm7scrhbm4 · Member ·

    Thank you for the response.

    Not trying to be difficult but my specific question was is my key the only key used to encrypt my data? Meaning no ADK (Additionally decryption keys) are used and is there proof of that?

    My questions stems because to me, it seems that this would be a help desk/ customer server issue. Many people have no idea that if they lose their key the data is lost and would call/email in asking for help. As a company you’d waste a lot of time fielding these requests.

  • Unknown's avatar
    helper-james · Member ·

    Hi @jm7scrhbm4 No difficulty detected! Thanks.

    There are no additional decryption keys for our end-to-end encryption feature. If the key is lost, we do not have a way to recover data on our end.

    Many people have no idea that if they lose their key the data is lost and would call/email in asking for help.

    That’s a great call-out. Day One backs up the key to iCloud/Google Drive to avoid losing it. You can check this setting in Day One > Settings > Sync > Advanced.

    Encryption keeps your data safe while in transit to and on the Day One servers. Journal data is also stored locally on the device. If the key is lost, local data is usually still intact on the device. There are also additional backup methods that can be used concurrently to avoid data loss. https://dayoneapp.com/guides/day-one-sync/backup-and-sync-options-on-ios-and-macos

    Let us know if you have additional questions.

Reply to Encryption