Your encrypted messages are protected by a Private Key, and the Private Key is protected by your Pass Phrase.
To be able to read encrypted messages on more than one device, you need a way to manage a backup of your Private Key. You can manage your backup:
- automatically (FlowCrypt will store your pass phrase protected key in inbox)
- manually (you save a file and take care of it yourself)
- enterprise customers: through your own key management system
Default backup methods
If you have imported your Private Key from other software, it is assumed you will do your own Private Key management, and FlowCrypt will not perform any backups unless you explicitly ask it to.
If you let FlowCrypt create a key for you, the default option is to back up a protected key in your inbox, so that you can use FlowCrypt on another device just with your secret Pass Phrase. You can click Show Advanced Settings
during setup for more options.
This is detailed in the Privacy Policy - Handling of Private Keys .
Enterprise customers can customize or entirely disable key backup for their users.
Where can I find my Private Key?
To view it: FlowCrypt Settings
-> Additional Settings
-> Public Key
-> show private
To export it: FlowCrypt Settings
-> Backup
-> As a file
Where is FlowCrypt private key stored?
FlowCrypt Browser Extension | Browser local extension storage (Chrome , Firefox ) |
FlowCrypt Android App | Encrypted app storage |
Depending on how you set up FlowCrypt, there may also be a backup, see default backup methods above.
Importing Private Key from GnuPG
If your private key is currently in gpg and you’d like to use it in FlowCrypt, you can export it with this command:
gpg --output private-key.asc --armor --export-secret-key your@email.com
You can then import this key into FlowCrypt, either during setup by choosing Import Private Key
, or after setup by going to FlowCrypt Settings
-> Additional Settings
-> My Keys
-> Add Key
.