Skip to main content
All posts
WellKey Team

What is zero-knowledge encryption — and why should your family care?

privacyencryptionexplainer

When a company tells you your data is "safe" with them, what does that actually mean?

Usually it means: we promise not to look. They have the key to your information. They've agreed, legally and ethically, not to use it. But if something goes wrong — a data breach, a rogue employee, a government subpoena, a business acquisition — that promise doesn't protect you. The key still exists. Someone can still use it.

There's a different way. It's called zero-knowledge encryption, and it changes the equation completely.

The safety deposit box analogy

Imagine a traditional safety deposit box at a bank. You go in, a bank employee helps you with their master key plus your key, and together you open the box. The bank has access. If they needed to — legally compelled, or in an emergency — they could open your box without you.

Now imagine a different kind of box: one where the bank never had a key in the first place. Not one they lost. Not one they locked away. One that was never made. When you set up your box, the only key that was ever created is the one you carry. The bank holds the box. They can see it sitting on a shelf. But they have no idea what's inside, and there's nothing they could do to find out even if they wanted to.

That's zero-knowledge encryption. The service provider holds your data — but has mathematically no way to read it.

What's actually happening

When you upload a document to WellKey, here's what happens before anything leaves your device:

  1. Your passphrase (which you chose, which we've never seen) is used to derive a cryptographic key
  2. That key encrypts your document in your browser using AES-256-GCM — the same standard used by governments and militaries
  3. Only the scrambled, unreadable result is sent to our servers

We receive a blob of encrypted data. There's no metadata we could mine, no filename we could read, no lab value we could see. When you want to read your document, your browser decrypts it locally — your key never leaves your device.

This is different from how almost every other health app works. Most apps encrypt data in transit (so it can't be intercepted on the way to their servers) but then store it unencrypted on their end. They can read your data. Their employees can, theoretically, access it. It shows up in their databases in a form a person could look at.

Why health records in particular

Your grocery list being exposed in a breach is annoying. Your health records being exposed is something else entirely.

Health records contain your diagnoses, your medications, your mental health history, your genetic test results, your pregnancy records. They can affect your insurance, your employment, your relationships. They can be used to discriminate against you in ways that are hard to trace and harder to fight.

Your health information deserves the highest standard of protection. Not "we keep it secure," but "we structurally cannot access it."

What zero-knowledge means in practice for you

  • WellKey cannot respond to data breach — because there's nothing to breach. Our servers hold encrypted blobs.
  • WellKey cannot comply with a request to hand over your health data — there's nothing to hand over that anyone could read.
  • WellKey cannot be compelled by a court order to reveal your health information — because we genuinely don't have it.
  • If WellKey shuts down tomorrow, your encrypted data is useless to anyone who finds it.

There is a trade-off: if you forget your passphrase, we cannot recover your data. There's no "forgot password" for your vault because there's no master key. That's the cost of genuine protection.

Your health records deserve better than a promise

Most privacy policies are a list of promises. Zero-knowledge encryption is an architecture. It's not a commitment to behave well — it's a design that makes certain kinds of bad behaviour technically impossible.

WellKey was built this way from the start. Not as a feature, but as the foundation. Your health records are yours. The technology exists to make that literally true, not just legally stated.

WellKey is a zero-knowledge health document vault for families in New Brunswick, Canada. You can create a free account and start securing your records today.