Reflection works better when the space feels trustworthy.

The latest update strengthens privacy for saved journal content by adding end-to-end encryption to the account-based journaling flow. Entries are encrypted before storage, which means the saved data is protected in a way that better matches the personal nature of tarot reflection.

It also makes an important boundary explicit: AI does not operate on private journal entries.

A smoother secure login and unlock flow

After login, the app now prepares the keys needed to unlock encrypted journal data for that session. Once that is done, the experience stays familiar: pull cards, write reflections, revisit older entries.

If the page is refreshed, the app can prompt for your password to unlock your encrypted journal locally. That extra step is there to protect saved writing while still keeping the return-to-session flow practical.

This is a privacy update, not an expansion of journal AI. The point is to make saved reflection more private, not more machine-readable.

Password changes no longer require data re-encryption

One of the most important parts of this update is what happens when a user changes a password. Instead of re-encrypting all existing journal content, the app can re-wrap the master key and keep current entries readable under the new password.

That approach is cleaner technically, but more importantly it reduces friction around a basic security task. Users should be able to strengthen their password without worrying about breaking past reflections.

Recovery is optional, but it matters

Password resets create a real encryption problem: if the old password is gone, encrypted content cannot simply be opened again by the server. This update adds a recovery path for people who saved a recovery code in advance. After resetting a password, they can use that recovery code to regain access and secure everything under the new password.

If no recovery code exists, older encrypted entries remain unreadable after a reset. New entries will still work normally. That is an intentional boundary, not a bug. Privacy is more credible when the product does not pretend it can always recover what it was designed not to read.

Why this matters for a tarot app

People use tarot journals to capture patterns, fears, hopes, relationship questions, and personal turning points. That material is often more honest than what they would post anywhere else. Stronger encryption, plus a clear rule that AI does not read journals, makes the product better aligned with the real use case: private self-examination over time.

The goal is still reflection, clarity, and continuity. This update simply gives those things a stronger security foundation.