← Back to Blog
Privacy March 13, 2026 AES-256 Encrypted

Your Recovery Key: What It Is and Why You — Not Us — Own It

We cannot help you recover your data if you lose your key. Here's why that's the most honest thing we can tell you.

When you set up The Architect, the app generates a recovery key and asks you to save it. Most people dismiss this step quickly — it feels like the kind of bureaucratic prompt that every app includes and almost no one needs.

This one is different. And understanding why it's different tells you something important about how your data works.

What the Recovery Key Actually Is

Your recovery key is the AES-256 encryption key for your journal entries, encoded in a human-readable format. Every entry you've written is encrypted using this key before it reaches our servers. Your entries cannot be decrypted without it.

The key is generated in your browser when you create your account. It's stored locally on your device. We never receive it. It's not in our database. If you contact us asking for your recovery key, we will tell you we don't have it — because we genuinely don't.

Where your key livesYour browser's localStorage or the iOS Keychain (on mobile) — never our servers. When you download the key file or copy it, you're copying the only record we know of. Our Supabase database contains your encrypted entries and your account metadata. It does not contain your key.

What Happens If You Lose It

If you lose your recovery key and lose access to the device where it's stored, your encrypted history may not be recoverable. Not because we're being difficult — because the mathematical properties of AES-256 make it computationally impossible to decrypt without the key, regardless of who's asking.

This is the honest tradeoff of genuine privacy. The property that prevents a government agency with a subpoena from accessing your journal is the same property that prevents us from recovering it for you if your key is lost. There's no backdoor that can be opened for some and closed for others.

How to Store Your Recovery Key Safely

A password manager (1Password, Bitwarden, Dashlane) is the best option — secure, accessible across devices, backed up. Alternatively: an encrypted note in Apple Notes, an email draft in an account with 2FA, or a printed copy stored physically. What you want to avoid is saving it only in the browser of one device and not thinking about it again.

The recovery key is the most important piece of infrastructure in your relationship with The Architect. It's also entirely in your control. That's not a bug. That's the whole point.

This is what The Architect does.

Write a diary entry. Get a real mentor response — specific to what you actually wrote. Private, encrypted, free to start.

Start journaling for free →