scrt.link vs Privnote
Privnote encrypts in the browser too — but it is closed source, ad-funded, and you cannot check any of it.
Privnote is one of the oldest self-destructing note services, and — credit where it is due — it does encrypt your note in the browser rather than on the server.
The problem is that you have to take that on faith. Privnote is closed source, so nobody outside the company can verify what the JavaScript served to your browser actually does on any given day. Its free service is funded by advertising: the page loads Google AdSense and an ad-consent dialog that cites hundreds of advertising partners.
scrt.link does the same client-side encryption, but the code is MIT-licensed on GitHub, there are no ads and no advertising partners, and you can send files as well as text.
Feature comparison
| Feature | scrt.link | Privnote |
|---|---|---|
Encrypted in the browser | ||
Open source (you can verify the crypto) | Yes (MIT) | |
Self-hostable | ||
Ad-free | Ad-funded (AdSense) | |
File sharing | Up to 100 GB | Not supported |
Expiration | 10 minutes – 30 days | After reading, 1h, 24h, 7 days, 30 days |
Configurable view limit | Up to 1,000 views | One-time, or unlimited until expiry |
Password protection | Yes (paid plans) | |
Read receipts | Yes (paid plans) | Yes (email) |
One-time redirects & file requests | ||
REST API | None official | |
Official CLI | Yes (@scrt-link/cli) | None official |
Browser extension | Chrome & Firefox | None official |
Custom domain / white-label | Yes (Business) | |
Works without an account |
Facts about Privnote last verified on July 14, 2026. Products change — if something here is out of date, let us know and we'll fix it.
Key differences
Client-side encryption you can actually check
Privnote encrypts notes in the browser — that much is visible in the JavaScript it serves. But because the product is closed source, there is no way to audit it, no published build, and no guarantee the code served tomorrow is the code served today. End-to-end encryption is a claim you should be able to verify; with scrt.link you can read every line that touches your secret.
You are the product, or you are the customer
Privnote is free because it sells advertising: the page loads Google AdSense and a consent dialog listing hundreds of ad partners. That is a legitimate business model, but it puts an advertising stack on the same page as your password. scrt.link carries no ads, no trackers and no ad partners — paid plans fund it.
Beware the copycats
Because Privnote is popular and its links look generic, it has attracted a long-running ecosystem of phishing clones on look-alike domains — KrebsOnSecurity documented one that silently rewrote bitcoin addresses inside notes. To be clear, these impersonate Privnote rather than compromise it. Still, it is a reason to prefer a service where the sending domain is one you control (scrt.link supports your own custom domain on Business plans).
Text notes only
Privnote shares text and nothing else. scrt.link handles text secrets, files up to 100 GB, one-time redirects and secret requests, all with the same in-browser encryption.
Which one should you use?
Choose scrt.link if…
-
You want to verify the encryption rather than trust a closed-source script.
-
You do not want an advertising stack loaded on the page holding your secret.
-
You need to send files, or share via API, CLI or a browser extension.
-
You want links on your own domain and branding.
Choose Privnote if…
-
You want the absolute simplest thing that exists — one box, one link, no options.
-
You want an email notification when a note is read, without paying for a plan.
-
You need a note that stays readable for a fixed window rather than burning on first read.
-
It is not sensitive enough for the open-source question to matter to you.
Frequently asked questions
Got a Question?
Whether you need help choosing a plan, have a technical question, or want to discuss a custom setup — we’re here to help. No bots, no ticket queues. You’ll hear back from a real person.