What Zero-Knowledge Encryption Means for Your Data
Today, we're taking a major step forward: we're upgrading to zero-knowledge encryption, which means it will be impossible for anyone to read your data, including us.
What zero-knowledge encryption changes
Until now, KindMind has encrypted your journal entries using strong AES-256 encryption, with encryption keys managed on our servers. This is the standard, widely-accepted approach used by most encrypted services. But there is a better way: zero-knowledge encryption.
With zero-knowledge encryption, your encryption key is derived from your password on your device. Your password never leaves your browser. The server never sees your key. Your data is encrypted before it ever reaches our servers, and we have no way to decrypt it.
This isn't just a policy change. It's an architecture change. Even if someone broke into our servers, even if we received a legal request for your data, all anyone would find is encrypted blobs that are mathematically impossible to read without your password.
This is the gold standard in privacy. Very few companies invest in building zero-knowledge systems because of the engineering complexity involved. The companies that do (Proton Mail, Signal, 1Password) are the ones that take privacy most seriously. We're proud to join that group.
For a deep dive into the technical details, read our encryption overview.
Before vs. After
Here's the fundamental difference in how your data flows:
Before (server-side encryption)
After (zero-knowledge encryption)
What this means for existing users
Because zero-knowledge encryption is a fundamentally different architecture, we couldn't simply flip a switch on the existing platform. Instead, we've built the new system from the ground up.
- The legacy platform continues to operate at www.kindmind.com until all users have migrated
- The new zero-knowledge platform lives at new.kindmind.com
- Existing users need to export their data from the legacy platform and import it into the new one
- During import, your entries are encrypted on your device before they ever reach the new server, so your data is protected by zero-knowledge encryption from the moment it arrives
How to migrate your data
The migration process is straightforward. Follow these steps to bring your data to the new platform:
- Go to www.kindmind.com and sign in with your existing credentials.
- Export your data. Navigate to Settings → Export, click “Export All Data,” and download the file.
- Sign up at new.kindmind.com.Create your new account. During sign-up, you'll receive a recovery key. Save it somewhere safe! This is your only backup if you ever forget your password.
- Import your data. Go to Settings → Import, select your export file, and let the import run. Your entries are encrypted on your device before upload.
- Verify everything looks right. Browse through your journal entries, reflections, and journeys to make sure everything came through.
- You're done! Your data is now protected by zero-knowledge encryption. No one can read it but you.
Migration flow
legacy
new platform
encrypt on device
Frequently Asked Questions
Will my existing subscription transfer?
Yes. When you import your data (which includes your subscription information), your subscription is automatically re-initiated on the new platform. You won't be charged twice, and you won't lose any time on your current billing cycle.
How long will www.kindmind.com (legacy) stay online?
The legacy platform at www.kindmind.com will remain fully available until all users have been migrated to the new platform. Once migration is complete, www.kindmind.com will point to the new zero-knowledge platform. We strongly encourage migrating as soon as possible.
What if I forget my password on the new platform?
This is where your recovery keycomes in. Because of zero-knowledge encryption, we can't reset your password for you. We don't have your encryption key. Your recovery key is your backup. Save it somewhere safe. This is the trade-off of true zero-knowledge encryption, and it's a trade-off we believe is worth making.
Is my data safe during the export/import?
Yes. The export file contains your data in a portable format. The moment you import it on the new platform, it's encrypted on your device using your new zero-knowledge encryption key before it ever reaches our servers. At no point does unencrypted data travel over the network to the new platform.
Do I have to migrate?
Migration is strongly recommended. The new platform offers significantly stronger privacy protection through zero-knowledge encryption. The legacy platform at www.kindmind.com will remain available until all users have migrated, but we recommend migrating as soon as possible.