Why our servers only ever see ciphertext

Blink stores encrypted payloads in its ScyllaDB database and encrypts media on your device before uploading it to S3, so a breach reveals nothing readable.

At Blink, security isn't a setting you switch on — it's the architecture. Messages and media are encrypted on your device with AES-256-GCM, our servers store only ciphertext, and the keys never leave your control. We publish how it works because trust should be verifiable, not assumed.

We're also candid about what isn't shipped yet. Where a capability is on our roadmap — like fully end-to-end encrypted calls, camouflage apps, or Swiss data residency — we say so plainly. Private by design. Fast by default.