Current app version: 0.5 / launch
<aside> ⚠️
For our launch version, your Addresso Book exists on just one browser on the device you started it on. That’s it. You will lose your Addresso Book irrecoverably if you clear your browser data or specifically clear data for my.addresso.com. Getting your Addresso Book sync’d across all your devices is a top priority for the next release. Not long now.
</aside>
It’s quite common to think of security in the same breath as privacy, so you should also check out How private is this? This page addresses questions of information security.
Upon adding your first entry(ies), Addresso requires you to establish a master passphrase. This passphrase serves as the root encryption key for all data access.
Because data is encrypted at rest, the encrypted format will be consistent across linked devices as soon as we enable this feature, allowing decryption with the same master passphrase.
Addresso Book data is always encrypted at rest with your passphrase.
All data transfer between your devices occurs over HTTPS (HTTP over TLS), providing industry-standard transport layer security. This means that even though your data is already encrypted at rest, the communication channel itself is secured using TLS 1.3 providing additional confidentiality and integrity protection during data transfer.
Addresso never needs you to connect it to a remote server. It’s local-first. Nevertheless, if we operate such a server in the future and you choose to make use of it, we’ll communicate exactly how we consider it secure right here.
<aside> ❗
Did we miss anything? Come and ask us directly on Farcaster or Telegram.
</aside>