End-to-end encrypted

Messaging that stays
between you

PEM relays encrypted envelopes. Your keys never leave your device — our server only sees ciphertext it cannot read.

App Store Google Play
A
Hey, can we talk privately?
Y
Sure — messages self-delete after 72h.
Messages encrypted end-to-end
A
Perfect. Sending you the file.
Y
Got it 👍

Why PEM

Privacy is the default, not an option

Zero plaintext on server

Every message is encrypted on your device before transmission. Our infrastructure only relays ciphertext — we have nothing to read or hand over.

Ephemeral by design

Messages are automatically purged after 72 hours. No archive, no history leak — conversations disappear on schedule.

Device-keyed bundles

Each device publishes its own key bundle. Messages are sealed for the specific recipient device, not an account you share credentials to.

Encrypted file attachments

Attachments are encrypted client-side and stored as opaque blobs. Download tickets expire — no permanent public URLs.

iOS & Android

Native mobile apps built with React Native. Fast, lightweight, and fully offline-capable for key management.

Open architecture

Rust backend, documented REST + WebSocket API. Auditable, self-hostable, and built without lock-in.

How it works

Simple to use, hard to compromise

1

Create an account with your email

A one-time verification code is sent. No passwords stored on our server — your identity is verified and discarded.

2

Your device generates a key pair

A cryptographic identity bundle is created locally and published to the directory. Your private key never leaves your phone.

3

Send encrypted envelopes

Messages are sealed to the recipient's public key before leaving your device. The server relays an opaque blob it cannot inspect.

4

Messages self-destruct

All envelopes are purged from the server after 72 hours, whether delivered or not. Nothing persists.