To protect the privacy while using a shared Dnote server, we could consider using GPG to encrypt and decrypt the notes and books while syncing data with the server. The idea is to allow users to specify location of their GPG key pairs. Dnote CLI will encrypt notes and books before sending to the server, and decrypt notes and books that it receives from the server.

A downside is that the users will not be able to search the notes using the web API, because the data will be encrypted. Another thing to consider is that, when viewing notes or books via web API, users will need to decrypt the content on their end. I think this could be overcome easily by vending an official API client that can be easily configured to handle decryption automatically based on the GPG key location.

This feature could be useful but adds a lot of complexity. Please let me know in this issue whether it will be useful for you.