Safety & privacy
How to use passphrase sharing safely
When you create a Nobo Page you can choose "link + passphrase". It adds a second key — the passphrase — on top of the first key, the link. Even if the link is forwarded, anyone who doesn't know the passphrase can't open it. It's a little extra effort, but it's effective when you want only a limited group to see the page.
Try creating a page →Why a passphrase helps
A page with no passphrase opens for anyone who has the link. Set a passphrase and opening the page requires entering it. Share the passphrase by a different route from the link, and even if the link spreads unexpectedly, outsiders can't see the contents.
The passphrase itself isn't stored as-is on the server; it's kept in a non-reversible (hashed) form. Even so, think of it as a gate before the page opens, not as encryption of the contents.
Choosing a passphrase
- Easy for your audience to guess but hard for outsiders (e.g. a word obvious within the group)
- Never reuse a password you use on other services
- Avoid just a short number or just a birthday
Delivering the passphrase
- Send it by a different channel from the link (link by email, passphrase spoken or in another chat)
- Say it at reception, or write it elsewhere on the invitation — don't keep both in one place
- Don't print the link QR and the passphrase side by side on a poster (that defeats the point)
- Even with a passphrase, don't post sensitive data — passwords, payment details, ID documents. A passphrase narrows who can look; it doesn't make the page safe storage for secrets.
Create one now
Login-free and free. Pick a title and expiry, and your sharing page is ready in seconds.
Create a page →