[gruez]

>We have at-rest encryption on our roadmap

i'm not sure whether you understood the term "at-rest", all that would imply is that the data disk (or perhaps the database) is fully encrypted, but the server holds the decryption key at runtime. that would add no security because anyone who hacked into the application server will still be able to dump + decrypt all the notes, all they have to do is also dump the key from the running server. what you need is end-to-end encryption, so the server only receives the encrypted notes from the client.

[domino]

Fwiw, I don't think end-to-end encryption would be a great default for our product since it would handicap a bunch of features (like server-side search), but it could be an opt-in feature for specific notes. We do take security seriously and the plan is to do more in the future.