The gap between "encrypted" and "gone"

The fine print most people skip

An app can be encrypted and still hold onto everything you've ever typed — copied to every device you own, backed up, sitting there for years.

Encryption means your message is scrambled while it travels, so no one can read it in transit. It says nothing about whether the message still exists once it arrives. Most secure apps encrypt the message in transit, then quietly save it anyway — in your chat history, in a backup, in whatever data they use to keep you engaged.

That's not a flaw in the encryption. It's a separate decision about what happens after delivery. For most apps, keeping everything is the default — not something you opted into.

What "end-to-end encrypted" actually covers

End-to-end encryption means the message is locked on your device and only unlocked on the recipient's — the company relaying it in between can't read the contents. That's a real, meaningful protection. But it only covers the trip. It says nothing about the copy sitting in your chat history, or the unencrypted version a cloud backup might store separately. Two apps can both be "end-to-end encrypted" and differ completely on what happens to the message five minutes after it's read.

Four things people mix up when they say "encrypted chat"

Search "encrypted chat" and the results span very different products. Here's the difference:

1
Locked while traveling, readable once it arrives The connection to the company's server is locked, but the company itself can still read the message. Most workplace chat tools work this way.
2
Locked end-to-end, kept forever anyway The company can't read the message, but a full, readable copy sits on the device and often in a cloud backup too. Signal, WhatsApp, and iMessage work this way out of the box. Backups have often been the weak spot, since a phone or cloud backup isn't automatically locked the same way the message itself was.
3
Locked end-to-end, deletes if you turn it on A timer clears messages after a set period — Signal and Telegram both offer this. It's off by default and requires remembering to enable it per conversation.
4
Nothing kept, unless you say so Nothing is saved anywhere unless deliberately turned on. No account tying it back to you, no backup to search later.
DayJabber default

Why "nothing kept" is rare

It's not a technical limitation. A message can wait just long enough to reach an offline recipient, then get discarded — holding something briefly isn't the same as keeping it permanently. The more common reason apps retain everything is business, not architecture: stored messages are worth something, for ads, engagement, or having something to hand over if requested. An app that stores nothing has nothing to sell and nothing to hand over.

Why skip the account entirely

Most chat apps tie every conversation to an identity — a phone number, an email, a login that persists across every room you've ever joined. That identity is itself a stored asset, separate from message content: it links your device to every conversation you've had, and it's what a subpoena or breach actually targets. A room with no account isn't just faster to join — there's no persistent identity for a leak or legal request to attach the conversation to in the first place.

When you want messages that disappear

When it's the wrong tool

How DayJabber does it

Every room creates a new key exchange in the browser, and the message is encrypted before it leaves the device. DayJabber's servers only ever receive the encrypted version. Nothing is saved unless saving is turned on, and Wipeout instantly clears the whole room for everyone in it, any time.

🔒

Locked from the moment you hit send

The message is encrypted before it leaves your device — nothing to turn on, it's the default.

🗑️

Nothing kept, unless you say so

Messages aren't saved anywhere unless that's turned on. Wipeout clears messages in a room for everyone in it, instantly.

👤

No sign-up required

No email, no phone number, no account. A room name, a password, and a display name — that's it.

⚙️

You decide what's saved

Anything that reduces privacy is opt-in and clearly labeled. Never on by default.