Blog

News, guides, and analysis on digital privacy, encryption, and secure file management.

Encrypted Notion Alternatives in 2026: A Founder's Honest Guide to Private, Local-First, End-to-End Encrypted Workspaces
Comparison44 min

Encrypted Notion Alternatives in 2026: A Founder's Honest Guide to Private, Local-First, End-to-End Encrypted Workspaces

The best private, end-to-end encrypted Notion alternatives in 2026 compared honestly: Filarr, Standard Notes, Anytype, Notesnook, Joplin, Obsidian and Proton Docs.

Mathis Belouar-Pruvot
How to Encrypt Your Notes: A Practical Privacy Guide
Guide14 min

How to Encrypt Your Notes: A Practical Privacy Guide

A practical guide to encrypting your notes: threat models, full-disk vs client-side encryption, secure sync, recovery phrases, and honest tool trade-offs.

Mathis Belouar-Pruvot
How to Organize Your Whole Digital Life in One Private Workspace
Use Cases11 min

How to Organize Your Whole Digital Life in One Private Workspace

Keep your notes, files and projects in one workspace: link a PDF to a note, search inside documents, and find anything in seconds. Private by default, free for local use.

Mathis Belouar-Pruvot
Joplin vs Filarr: Two Encrypted Note Apps, Two Very Different Bets
Comparison41 min

Joplin vs Filarr: Two Encrypted Note Apps, Two Very Different Bets

Joplin vs Filarr compared: opt-in E2EE Markdown notes vs encryption-by-default local-first workspace. Crypto, sync, recovery, pricing and licensing, honestly.

Mathis Belouar-Pruvot
Anytype vs Filarr: Two Local-First Encrypted Knowledge Apps, Honestly Compared
Comparison43 min

Anytype vs Filarr: Two Local-First Encrypted Knowledge Apps, Honestly Compared

Anytype vs Filarr compared honestly: two local-first, end-to-end encrypted knowledge apps. Data model, encryption, sync, recovery, pricing and which to pick.

Mathis Belouar-Pruvot
Proton Drive vs Filarr: Encrypted Cloud Storage vs a Local-First Encrypted Workspace
Comparison37 min

Proton Drive vs Filarr: Encrypted Cloud Storage vs a Local-First Encrypted Workspace

Proton Drive vs Filarr compared in depth: encrypted cloud storage vs a local-first encrypted workspace. Encryption, sync, recovery, pricing, and who should pick which.

Mathis Belouar-Pruvot
Standard Notes vs Filarr: Two Honest Approaches to Encrypted Notes, Compared in Depth
Comparison37 min

Standard Notes vs Filarr: Two Honest Approaches to Encrypted Notes, Compared in Depth

Standard Notes vs Filarr compared in depth: encryption, threat models, sync, recovery, pricing and licensing of two honest encrypted notes approaches.

Mathis Belouar-Pruvot
Introducing Filarr Sharing: End-to-End Encrypted Files, With or Without an Account
Announcement10 min

Introducing Filarr Sharing: End-to-End Encrypted Files, With or Without an Account

Filarr now lets you share any file as an encrypted link. The decryption key lives in the URL fragment — the part after the # that browsers never send to servers. Here's what just shipped, how the trick works, and what we actually see on the server (almost nothing).

Mathis Belouar-Pruvot
Best Local-First Apps in 2026 (Ranked by Use Case)
Comparison9 min

Best Local-First Apps in 2026 (Ranked by Use Case)

A ranked list of the best local-first applications in 2026 — notes, files, knowledge management, project management, and team docs. Honest pros and cons, current pricing, and which app fits which workflow.

Mathis Belouar-Pruvot
Obsidian vs Filarr: Encrypted Notes Head-to-Head (2026)
Comparison9 min

Obsidian vs Filarr: Encrypted Notes Head-to-Head (2026)

Obsidian and Filarr are both local-first note-taking apps, but they make different trade-offs. Encryption, plugins, sync, mobile, license — here's an honest, side-by-side comparison so you can pick the right one.

Mathis Belouar-Pruvot
Notion alternatives that respect your privacy (2026)
Comparison12 min

Notion alternatives that respect your privacy (2026)

Notion stores your data on its servers and holds the encryption keys. Here are the credible privacy-first alternatives in 2026 — encrypted by default, local-first, or open source — with current pricing and a migration path for each.

Mathis Belouar-Pruvot
KEK and FEK explained: why per-file encryption matters
Security10 min

KEK and FEK explained: why per-file encryption matters

KEK (Key Encryption Key) and FEK (File Encryption Key) form the two-layer key hierarchy used by serious encrypted apps — Signal, BitLocker, Apple's File Protection, Filarr. Here's what each one does, why one global key is dangerous, and what a correctly designed encryption layout looks like.

Mathis Belouar-Pruvot
End-to-end vs zero-knowledge encryption: what's the difference?
Security8 min

End-to-end vs zero-knowledge encryption: what's the difference?

End-to-end encryption and zero-knowledge encryption are often used interchangeably, but they describe different things. Here's the precise difference, where they overlap, and which one to look for in your messaging app, password manager, and notes app.

Mathis Belouar-Pruvot
Zero-knowledge encryption explained
Security9 min

Zero-knowledge encryption explained

Zero-knowledge encryption is the architecture where the service hosting your data cannot read it — even if it wants to, even if it's hacked, even if it's subpoenaed. Here's how it works in plain language, with diagrams.

Mathis Belouar-Pruvot
What is AES-256-GCM and why it matters for note-taking apps
Security8 min

What is AES-256-GCM and why it matters for note-taking apps

AES-256-GCM is the authenticated encryption mode used by Signal, 1Password, WireGuard, and TLS. Here's what each part of the name means, why GCM beats CBC, and what to look for when a notes app claims AES-256 encryption.

Mathis Belouar-Pruvot
What Is Local-First Software? Definition, 7 Properties & Real Examples (2026)
Concepts10 min

What Is Local-First Software? Definition, 7 Properties & Real Examples (2026)

Local-first software keeps your data on your device — not on someone else's server. Definition, the 7 properties from Ink & Switch, real examples, and which popular apps (Notion, Figma) are NOT local-first.

Mathis Belouar-Pruvot
Filarr goes open source — why BSL 1.1
Announcement6 min

Filarr goes open source — why BSL 1.1

Filarr's desktop client is now published on GitHub under Business Source License 1.1. What this means, what stays closed, and why I chose this license.

Mathis Belouar-Pruvot
Filarr security, layer by layer — the exhaustive defensive architecture
Security69 min

Filarr security, layer by layer — the exhaustive defensive architecture

Threat model, cryptography, Electron hardening, comparisons with Signal / 1Password / Obsidian, real-world CVE walk-throughs. The complete guide to everything protecting your data — including from the servers hosting it.

Mathis Belouar-Pruvot
Why I built Filarr
Story5 min

Why I built Filarr

I wanted one app for my files, my notes, and my knowledge graph — encrypted by default, no cloud, no account. Nothing existed, so I built it.

Mathis Belouar-Pruvot
Introducing Filarr — an encrypted, local-first workspace
Announcement4 min

Introducing Filarr — an encrypted, local-first workspace

Notes, files, graph view, canvas — all encrypted with AES-256-GCM, all on your machine. No cloud required. No account needed. Free.

Mathis Belouar-Pruvot