Private by default. Encrypted when synced.
Your planner should serve you, not watch you. WeekFlux is local-first by default, avoids in-app analytics, and offers opt-in end-to-end encrypted sync for access across devices.
Your planner holds some of the most revealing data you own: how you spend your time, what you work on, your habits, and your priorities. Most apps treat that as something to store in their cloud and analyze. WeekFlux is built on the opposite principle.
WeekFlux is local-first by default and is designed so your private planning content never becomes a behavioral analytics dataset. If you want access across devices, encrypted sync is something you turn on intentionally — never the foundation you are forced to start from.
Local-first by default
The core planner is designed to work on your device without forcing cloud sync before you can use it. You can plan locally first; cloud sync is optional, not the foundation of the product.
Because your data lives on your device by default, the app stays fast and keeps working offline — on a plane, on a weak connection, or whenever you simply prefer to stay local.
No in-app analytics
WeekFlux does not embed analytics to track how you plan. There are no behavioral tracking pixels watching what you do inside the planner.
At a glance
- No Google Analytics or Google Tag Manager pixels in the app
- No PostHog
- No Segment
- No Mixpanel
- No Plausible inside the planner
No private planner content tracking
Your tasks, notes, habits, schedules, and planning behavior should not become a behavioral analytics feed. WeekFlux treats the contents of your planner as private by default.
That means the sensitive details of your week — who you meet, what you work on, your routines — are not mined to profile you or improve an ad model.
Opt-in encrypted sync
For users who want cross-device access, encrypted sync can be enabled intentionally. It is built on a zero-knowledge model: your data is encrypted on your device before it is sent, and the server only ever stores ciphertext it cannot read. WeekFlux even rejects any attempt to upload unencrypted planner data as a safeguard.
At a glance
- Opt-in cloud sync, off until you enable it
- Zero-knowledge: the server stores only ciphertext
- Device-to-device continuity
- Local backup remains available
- Disable sync without deleting your local data
- Local-first fallback if you go offline
How the encryption works
WeekFlux uses well-established, standard cryptography built directly on the browser's native Web Crypto API — no custom or homegrown algorithms. Here is exactly what happens under the hood.
A single random data key encrypts your planner. That data key is then separately wrapped by your password, by a recovery key, and optionally by a passkey — so you can change your password without ever re-encrypting your data, and no wrapping secret is ever sent to the server.
At a glance
- AES-256-GCM authenticated encryption for all planner data
- Keys derived with PBKDF2-HMAC-SHA-256 at 600,000 iterations (OWASP-recommended)
- A unique random salt and a fresh random IV for every encrypted item
- Envelope encryption: a random data key is wrapped by your password, recovery key, or passkey
- The live encryption key is held non-extractable in memory and cleared on lock
- Encrypted backups and exports use the same scheme, so your data stays portable
Recovery, passkeys, and unlocking
Because encryption is zero-knowledge, WeekFlux cannot reset your password for you. When you set up your vault you receive a one-time recovery key — keep it somewhere safe, because it is the only way back in if you forget your password. If you lose both, the data cannot be recovered by anyone, including us.
On supported devices you can unlock with a passkey or biometrics (fingerprint or face) instead of typing your password each time. These use the WebAuthn PRF extension to unlock locally on your device; the biometric or passkey secret never leaves it. A configurable auto-lock clears the key from memory after a period of inactivity.
A clear privacy promise
WeekFlux is built around a simple principle: your planning data should serve you, not become a tracking dataset. Privacy here is the default state, not a paid add-on or a setting buried in a menu.
You decide where your data lives. Stay fully local, or turn on encrypted sync when you are ready — and turn it back off without losing anything.
- Local-first by default
- No in-app analytics
- Opt-in encrypted sync
FAQ
Is WeekFlux really private by default?
Yes. WeekFlux is local-first, so your planning data starts on your device and stays there unless you choose to enable sync. No account is required to use the core planner.
Does WeekFlux track what I do inside the planner?
No. WeekFlux does not use in-app analytics such as Google Analytics, PostHog, Segment, Mixpanel, or Plausible to track your planning behavior, and it does not treat your tasks, notes, habits, or schedule as a tracking dataset.
How does encrypted sync work?
Encrypted sync is opt-in. When you enable it, your data is end-to-end encrypted on your device before it is sent, so the cloud vault only stores data it cannot read. Sync provides device-to-device continuity while local backups remain available.
What encryption does WeekFlux actually use?
WeekFlux uses AES-256-GCM authenticated encryption via the browser's native Web Crypto API, with keys derived using PBKDF2-HMAC-SHA-256 at 600,000 iterations and a unique salt and IV per item. A random data key encrypts your planner and is wrapped separately by your password, recovery key, or passkey (envelope encryption). No custom cryptography is used.
What happens if I forget my password and recovery key?
Because the encryption is zero-knowledge, no one — including WeekFlux — can decrypt your data without one of your secrets. When you set up your vault you get a one-time recovery key as a backup to your password. If you lose both, the encrypted data cannot be recovered. Your separate local-first data on the device remains accessible as usual.
Can WeekFlux read my synced data?
No. Sync is zero-knowledge: the server only ever stores ciphertext and a wrapped key it cannot open, and WeekFlux explicitly rejects any attempt to upload unencrypted planner data. Your data is encrypted on your device before it leaves it.
Can I turn sync off later?
Yes. You can disable sync without deleting your local data. WeekFlux always keeps a local-first fallback, so turning sync off leaves your planner intact on your device.
Do I need an account to use WeekFlux privately?
No. The core local-first planner works without an account. An account only becomes relevant if you choose to enable encrypted cloud sync across devices.
Related guides & features
- Deep Focus timer Turn scheduled work into focused execution.
- How to prioritize your tasks Sort tasks by urgency and importance with the Eisenhower Matrix.
- Achievements Quiet progress signals, not gamification.
- Habit tracker Daily, weekly, and monthly habits with honest streaks.
- How to plan your week with time slots A simple 6-step method for planning your week.
- How to build habits that stick Start small, anchor to routines, and track consistency honestly.
Plan privately. Sync only when you choose.
Start free and local-first on desktop and mobile. Enable encrypted sync when you want cross-device access — and keep full control either way.