Share Passwords Securely – With a Self-Destructing One-Time Link
Transmit passwords and credentials securely instead of plaintext email: encrypted in your browser, readable once, then irreversibly deleted. Free, no registration.
Send a password securely in 3 steps
Enter password
Enter the password or credentials on the homepage. Encryption (AES-256-GCM) happens directly in your browser.
Create one-time link
You get an encrypted link and QR code. The key never reaches our server – nobody except the recipient can read the data.
Share the link
Send the link via email or messenger. After the first read, the message destroys itself automatically and irreversibly.
Why not send passwords via email?
An email containing a password sits unencrypted in at least two mailboxes, on multiple servers and in backups – often for years. Every data breach, hacked account or lost device exposes it. A self-destructing one-time link solves exactly this problem:
| Password via email | One-time link (Encipher.Me) | |
|---|---|---|
| Storage duration | Unlimited (mailboxes, backups) | Until first read, max. 30 days |
| Readable by server operators | Yes (plaintext) | No (zero-knowledge) |
| Exposed in a data breach | Yes, permanently | No – the message no longer exists |
| Know whether it was read | No | Yes – the link works only once |
Typical use cases: credentials for clients, Wi-Fi keys for guests, API keys and license keys, server passwords within a team, confidential contract details. More on the technology: zero-knowledge encryption explained and self-destructing messages.
Frequently asked questions about sharing passwords securely
Why shouldn't I just send passwords via email?
Emails are stored unencrypted - by the sender, the recipient, on mail servers and in backups. A password sent by email often sits there in plaintext for years and gets compromised with every data breach, every hacked mailbox and every lost laptop. Deleting the email doesn't help either: it lives on in backups and in the recipient's inbox.
How do I share a password securely with colleagues or clients?
Enter the password on encipher.me and create an encrypted one-time link. Send the link via email or messenger - it contains no readable data. After the first opening, the message destroys itself automatically. For particularly sensitive credentials, additionally enable password protection and share that second password via a different channel, e.g. by phone.
Is it really free?
Yes. Encrypting and sharing passwords and messages is completely free, with no registration, no ads and no tracking. An optional free account adds convenience features such as a message overview and encrypted file attachments.
Can the operator see my passwords?
No - it is technically impossible. Encryption (AES-256-GCM) happens entirely in your browser before any data is transmitted. The decryption key lives in the part of the link after the # character, which browsers never send to servers. Our server only stores encrypted data blocks - even in case of a hack or a government request, there is nothing readable to hand over. This is called a zero-knowledge architecture.
What happens if someone intercepts the link?
A one-time link works exactly once: if the intended recipient has already opened the message, it is irreversibly deleted - the intercepted link leads nowhere. If an attacker opens the link first instead, the real recipient sees a message that the content no longer exists, and you know immediately that the password must be changed. For extra protection, enable the optional password layer - then the link alone is not enough.
Do I need an account or any software?
No. A modern browser is all it takes - no installation, no registration, no app. The recipient doesn't need anything except the link either. That makes Encipher.Me especially practical for exchanges with clients and external partners who can't be forced to install a tool.
No registration. No software. No tracking.