🔐 OMIMA 当前处于内测阶段,欢迎加入早期体验 → omima.me
en
FAQ
FAQ

FAQ

Security & Privacy

Can OMIMA see my passwords?

No.

Your passwords and all sensitive fields are encrypted on your device before they're uploaded. OMIMA's servers only store ciphertext. Without your master password and encryption key, the ciphertext cannot be read.

OMIMA engineers, Cloudflare infrastructure staff, anyone who gains database access — none of them can see any of your field contents.

See: Security Overview

If OMIMA's servers are hacked, is my data safe?

Yes.

What an attacker would find is encrypted byte streams, plus non-sensitive metadata like record titles and tags. Without your master password and encryption key, the ciphertext is useless.

This is the core advantage of client-side encryption: a server breach does not equal a data breach.

I forgot my master password. What can I do?

OMIMA provides a recovery path: SMS verification plus the self-declaration fragment you set during registration.

To be clear: recovery restores account access — it does not decrypt your previously stored data. After a password reset, records encrypted with the old key cannot be recovered.

This isn't a product limitation — it's an inherent property of zero-knowledge encryption. Without your key, no one can decrypt your data, including OMIMA.

Can OMIMA be compelled to hand over my data?

Even under a legal data request, what OMIMA can provide is: your registration email, non-sensitive record metadata (titles, tags), and encrypted byte streams.

Plaintext data has never existed on OMIMA's servers. There is nothing to hand over.

Are screenshots stored after import?

Not by default.

Screenshots are uploaded for OCR processing, then the temporary file is cleared. What you save is the structured data extracted from the screenshot, not the original image.

If you explicitly choose "also save screenshot," the image is stored in R2 in encrypted form — accessible only to you.

Usage

How is OMIMA different from 1Password or Bitwarden?

Password managers solve one primary problem: auto-filling login credentials in browsers.

OMIMA solves a broader problem: all the low-frequency, high-stakes personal information that matters at critical moments — not just passwords, but identity documents, insurance policies, children's school accounts, technical credentials, anything you can't afford to lose track of.

OMIMA doesn't do autofill (in the current phase). It focuses on "save easily, find instantly."

What types of information does it support?

Five record types, covering the most common high-pain scenarios:

  • Credentials: Websites, apps, service PINs
  • Identity: Your own and family members' ID documents
  • Education: Children's school portals and learning platforms
  • Insurance: Policy numbers, renewal dates, claims contacts
  • Technical: SSH keys, API tokens, servers, admin panels

See: Records

Can I use it on multiple devices?

Yes. OMIMA is a web app — open omima.me in any browser, sign in with the same account. Your data syncs automatically.

Can I export my data?

Export is on the roadmap. It's not available in the current version.

If this is important to you, submit feedback at omima.me (opens in a new tab) — it influences prioritization.

Product

Is OMIMA free?

Full access is free during the beta period. Pricing for the public launch hasn't been finalized. Existing users will be notified in advance.

Is there a mobile app?

Currently OMIMA is a PWA (Progressive Web App). In your mobile browser, you can "Add to Home Screen" for a near-native experience.

A native iOS/Android app is planned for Phase 3, built on top of the existing web version.

When is the WeChat bot available?

It's in preparation. Beta users will get early access. Sign up at omima.me (opens in a new tab) and you'll be notified when it opens.

Will OMIMA be open-sourced?

Not during the validation phase. Select tooling and non-core components may be open-sourced in later stages.

WeChat Bot