Does the Send Password encrypt the contents?

I’ve been looking at the new Send feature and found out the password that encrypts everything is in the URL, it’s after the backslash.

But Send also gives you the option to add a password so my question is if that also encrypts the data or is that “soft” lock?

If it’s a soft lock and the encryption password is in the URL this means anyone who has the URL can see the contents. This doesn’t seem safe?

Still a needed feature no matter what.

Great question! The password is actually an authentication mechanism that prevents the web vault from retrieving the encrypted payload of the Send until after the correct password is entered.