A preview of device-held custody: the server only ever sees your public key.
What this previews
Your key is made here, in your browser. The private half is saved on this device (IndexedDB) and never sent.
A team sends you a reply sealed to your public key — the only thing the server ever holds.
Only this device can open it. Lose the device, no one reads your replies — not even us.
Today's live apps keep keys server-side (clearly labeled prototype). Production device custody is delivered in the independently audited build — this page shows where it's headed, with real Web Crypto.