Your secrets. Your control.
The zero-trust secret manager where your data never leaves your device unencrypted. Not even we can see your secrets.
Features
Everything you need for secret management
Built for teams who refuse to compromise on security.
Environment Variables
Store and manage environment variables with end-to-end encryption. Your secrets are encrypted before they leave your device.
Encrypted File Sharing
Share sensitive files like .env, credentials, and certificates securely within your team.
Organizations & Teams
Structure your secrets with organizations, teams, and projects. Fine-grained access control at every level.
Team Collaboration
Work together with granular permissions. Each team member has their own encryption keys.
Key Rotation
Rotate encryption keys with double-admin approval for organizations. Security without single points of failure.
Google Secret Manager
Optional integration with Google Cloud. Pull secrets directly - your GCP credentials never touch our servers.
Your secrets never leave your device unencrypted.
Envie is built on zero-trust principles. All encryption and decryption happens locally on your device. The server stores only encrypted blobs that are meaningless without your keys.
Client-Side Encryption
All data is encrypted locally using XChaCha20-Poly1305. The server only stores ciphertext.
You Hold All the Keys
Decryption keys never leave your app. Not even Envie can access your secrets.
Secure Local Storage
Keys are stored in Stronghold, the same secure storage used by cryptocurrency wallets.
F3E8A7C1...2D4F6B8A