PrivacyKeys NFT

Your secrets deserve zero-knowledge.

Secure your API keys and .env values with PrivacyKeys NFT — fully encrypted, wallet-authorized, ZK-protected.

Protect a SecretView Documentation
New Private NFT
Zero-Knowledge Protected

How It Works

PrivacyKeys NFT uses zero-knowledge proofs to ensure your secrets remain private while being securely shared.

Write a secret
Enter your API key, token, or any sensitive information you need to share securely.
Generate a ZK-proof and encrypt with Noir
Your secret is encrypted using Noir zero-knowledge circuits, ensuring complete privacy.
Mint as a PrivacyKeys NFT
Your encrypted secret becomes a private NFT on the Aztec network, with you as the owner.
Grant access to wallet addresses
Authorize specific wallet addresses that can view and use your secret.

Why It Matters

The consequences of insecure secret sharing are severe and all too common in software development.

Accidental .env Leaks
Thousands of API keys are accidentally pushed to GitHub every day, leading to security breaches and service abuse.
Insecure Communication
Sharing secrets over Slack, email, or messaging apps leaves them vulnerable to interception and exposure.
Credential Rotation Nightmares
When secrets are compromised, rotating credentials across teams and services becomes a logistical challenge.
Access Control Problems
Traditional secret sharing lacks granular control over who can access what and for how long.

Real-World Example

$ git commit -m "Initial project setup"

$ git push origin main

# 2 hours later...

ALERT: AWS detected unusual activity on your account

ALERT: $7,500 in unauthorized EC2 instances launched

# The culprit: an AWS key accidentally committed in .env file

This scenario happens thousands of times daily. PrivacyKeys NFT prevents these costly mistakes by ensuring secrets never appear in your codebase.

Use Cases

PrivacyKeys NFT solves critical secret-sharing challenges across various development workflows.

Public Repository Development
Securely manage API keys and environment variables when working on open-source projects without exposing sensitive data.
CI/CD Pipelines
Provide secure runtime variables to your CI/CD workflows without storing secrets in environment variables or configuration files.
Team Onboarding
Safely grant new team members access to necessary credentials without sharing passwords or keys through insecure channels.
B2B Integrations
Share API keys and access tokens with partner organizations in a controlled, auditable manner with granular permissions.

Developer Testimonial

"Finally, a way to share secrets without losing sleep. Our team used to waste hours managing API keys across environments. With PrivacyKeys NFT, we've eliminated accidental leaks and streamlined our entire credential management process."

— Sarah Chen, Lead Developer at TechStack

Simple, Transparent Pricing

Choose the plan that fits your needs. All plans include our core zero-knowledge protection.

Free

$0

Perfect for occasional secret sharing

  • Expiring secrets (24 hours)
  • Single authorized address
  • Up to 10 secrets per month
  • Basic encryption
  • Community support
Get Started
Most Popular

Pro

$19/month

For developers who need more control

  • Non-expiring NFTs
  • Up to 5 authorized addresses
  • Unlimited secrets
  • ZK-proof verification
  • GitHub integration
  • Email support
Upgrade to Pro

Team

$49/month

For teams collaborating on projects

  • Everything in Pro
  • Unlimited authorized addresses
  • Team management dashboard
  • CI/CD integrations
  • Audit logs
  • Priority support
Contact Sales

All plans include a 14-day free trial. No credit card required.
Need a custom solution? Contact our sales team.

Documentation

Learn how to integrate and use PrivacyKeys NFT in your development workflow.

Interactive Playground
Try the PrivacyKeys NFT workflow in this simulated environment.
1
2
3
4

Write Your Secret

Enter the API key or sensitive information you want to protect.

Your secret is never sent to our servers in plaintext. All encryption happens in your browser.

Security FAQ
Common questions about PrivacyKeys NFT security and zero-knowledge implementation.

Code Examples
Explore how to integrate PrivacyKeys NFT in different environments.

Securely use PrivacyKeys NFT in your CI/CD pipeline.

name: Deploy with Secrets

on:
  push:
    branches: [ main ]

jobs:
  deploy:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v3
      
      - name: Setup PrivacyKeys
        uses: privacykeys/github-action@v1
        with:
          wallet-key: ${{ secrets.WALLET_PRIVATE_KEY }}
      
      - name: Access API Key Secret
        id: secrets
        run: |
          # This will securely fetch the secret from the NFT
          # Only works if the wallet is authorized
          API_KEY=$(privacykeys get nft_12345abcde)
          echo "::add-mask::${API_KEY}"
          echo "API_KEY=${API_KEY}" >> $GITHUB_ENV
      
      - name: Deploy to Production
        run: |
          # Use the securely retrieved API key
          ./deploy.sh --api-key ${{ env.API_KEY }}

Click the eye icon to reveal code

This example demonstrates zero-knowledge access control for sensitive data.
ZK Architecture
How PrivacyKeys NFT uses Noir and Aztec for zero-knowledge security.
Secret Owner
Creates and authorizes access
Authorized User
Accesses the secret
Noir Zero-Knowledge Layer
Encryption
Secret → Ciphertext
ZK Proof
Verifiable without revealing
Access Control
Wallet authorization
Aztec Network
NFT Contract
Ownership & Metadata
ZK Verifier
Validates proofs
Encrypted Storage
Secure data persistence

Security Guarantees

PrivacyKeys NFT is built with security as the foundation, providing cryptographic guarantees for your sensitive data.

No Central Server

Your secrets are never stored on our servers in plaintext. All encryption happens client-side.

Fully Zero-Knowledge

Noir ZK circuits ensure that only authorized wallets can access your secrets.

Address-Gated Access

Only the wallet addresses you explicitly authorize can decrypt and view your secrets.

Brute-Force Resistant

AES-256 encryption combined with ZK proofs makes brute-forcing practically impossible.

Independently Audited

Our zero-knowledge circuits and smart contracts have been audited by leading security firms to ensure the highest level of protection for your secrets.