Why cryptographic keys never leave the device

In MAPonME, all sensitive data is encrypted client-side:

• messages

• locations

• emergency data

• personal notes

Keys are:

• generated locally

• split using Shamir’s Secret Sharing

• mixed with decoy keys

• rotated frequently

The server never has access to plaintext keys and cannot decrypt user content.

This is zero-knowledge by design, not by policy.