Your Secrets, Cryptographically Secured.
WeAgreed isn't just another app; it's a secure vault for your personal agreements. We employ a hybrid cryptographic scheme used by top-tier financial institutions.
Hybrid AES + RSA Encryption
Unlike standard apps that store data in plain text, WeAgreed uses a sophisticated Hybrid Encryption Scheme to ensure your data is unreadable to anyone but you.
AES-256 Envelope
Every agreement is encrypted with a unique, randomly generated 32-byte AES key. This is the "Envelope".
RSA Key Exchange
The AES key itself is encrypted using your personal RSA-2048 Public Key. Only your Private Key can unlock it.
"We don't hold the keys to your castle. The server only sees encrypted blobs of data (ciphertext). The actual decryption happens locally on your device."
Minimal Data Retention
We believe in Data Minimization. We only store the absolute minimum required to function:
- User ID (UID): To identify your account.
- Encrypted Payload: Your agreements and receipts, stored as meaningless random characters on our servers.
- Public Key: To allow other users to send you encrypted agreements securely.
We do NOT sell user data. We do NOT scan your receipts for ads.
Zero-Knowledge Architecture
Because of our client-side encryption, even if our servers were compromised, the attacker would only find encrypted gibberish. Without your device's private key, the data is mathematically impossible to read. This provides a level of security typically reserved for end-to-end encrypted messaging apps.
Last Updated: February 1, 2026.
For privacy inquiries, please reach out to security@weagreed.app