What helps
The note is encrypted in the browser before the share package is built. When the encrypted material lives in the URL fragment, browsers normally do not send that fragment in the request line to the server. That reduces casual exposure compared with plain-text sharing.
Why passphrases matter
A passphrase makes the link less useful on its own. If someone sees only the link and not the passphrase, they still cannot read the note. That is why the best habit is to share them through separate channels.
What this does not guarantee
This site does not claim true one-time destruction, recipient identity verification, legal retention controls, or audited compliance features. If those requirements matter, use a purpose-built secure platform instead.
Good judgment still matters
Even a private note link can be mishandled if a recipient forwards it carelessly, stores it in a shared document, or sends the passphrase in the same visible thread. Better tools improve habits, but they do not replace judgment.