scrt.link vs Privnote

Privnote encrypts in the browser too — but it is closed source, ad-funded, and you cannot check any of it.

Privnote is one of the oldest self-destructing note services, and — credit where it is due — it does encrypt your note in the browser rather than on the server.

The problem is that you have to take that on faith. Privnote is closed source, so nobody outside the company can verify what the JavaScript served to your browser actually does on any given day. Its free service is funded by advertising: the page loads Google AdSense and an ad-consent dialog that cites hundreds of advertising partners.

scrt.link does the same client-side encryption, but the code is MIT-licensed on GitHub, there are no ads and no advertising partners, and you can send files as well as text.

Feature comparison

Feature scrt.link Privnote

Encrypted in the browser

Open source (you can verify the crypto)

Yes (MIT)

Self-hostable

Ad-free

Ad-funded (AdSense)

File sharing

Up to 100 GBNot supported

Expiration

10 minutes – 30 daysAfter reading, 1h, 24h, 7 days, 30 days

Configurable view limit

Up to 1,000 viewsOne-time, or unlimited until expiry

Password protection

Yes (paid plans)

Read receipts

Yes (paid plans)Yes (email)

One-time redirects & file requests

REST API

None official

Official CLI

Yes (@scrt-link/cli)None official

Browser extension

Chrome & FirefoxNone official

Custom domain / white-label

Yes (Business)

Works without an account

Facts about Privnote last verified on July 14, 2026. Products change — if something here is out of date, let us know and we'll fix it.

Key differences

Client-side encryption you can actually check

Privnote encrypts notes in the browser — that much is visible in the JavaScript it serves. But because the product is closed source, there is no way to audit it, no published build, and no guarantee the code served tomorrow is the code served today. End-to-end encryption is a claim you should be able to verify; with scrt.link you can read every line that touches your secret.

You are the product, or you are the customer

Privnote is free because it sells advertising: the page loads Google AdSense and a consent dialog listing hundreds of ad partners. That is a legitimate business model, but it puts an advertising stack on the same page as your password. scrt.link carries no ads, no trackers and no ad partners — paid plans fund it.

Beware the copycats

Because Privnote is popular and its links look generic, it has attracted a long-running ecosystem of phishing clones on look-alike domains — KrebsOnSecurity documented one that silently rewrote bitcoin addresses inside notes. To be clear, these impersonate Privnote rather than compromise it. Still, it is a reason to prefer a service where the sending domain is one you control (scrt.link supports your own custom domain on Business plans).

Text notes only

Privnote shares text and nothing else. scrt.link handles text secrets, files up to 100 GB, one-time redirects and secret requests, all with the same in-browser encryption.

Which one should you use?

Choose scrt.link if…

  • You want to verify the encryption rather than trust a closed-source script.

  • You do not want an advertising stack loaded on the page holding your secret.

  • You need to send files, or share via API, CLI or a browser extension.

  • You want links on your own domain and branding.

Choose Privnote if…

  • You want the absolute simplest thing that exists — one box, one link, no options.

  • You want an email notification when a note is read, without paying for a plan.

  • You need a note that stays readable for a fixed window rather than burning on first read.

  • It is not sensitive enough for the open-source question to matter to you.

Frequently asked questions

Got a Question?

Whether you need help choosing a plan, have a technical question, or want to discuss a custom setup — we’re here to help. No bots, no ticket queues. You’ll hear back from a real person.