By default, your settings are stored in non-personal browser cookies (in your browser).
You can use Anonymous Cloud Save to store your settings in a more permanent way (on a remote server in the cloud).
No personally identifiable information will be stored in the cloud, and your pass phrase will never leave your browser.
Cloud Save lets you save your settings more permanently by entering a passphrase. It is entirely optional.
This has a few benefits:
You can share your settings among computers and browsers.
You can restore your settings after deleting cookies
You can store several sets of settings for different purposes.
What information gets saved?
Only the settings that you have changed. They are detailed on the URL Parameters page.
How does it work?
Your passphrase is used to generate a key using the Secure Hash Algorithm known as SHA-2, using a 512 bit key.
Your passphrase never leaves the browser, only the key and the settings file associated with it.
We save the settings file on Amazon S3 using the generated key as the name.
In the interest of transparency, this data is not encrypted: you can see exactly what information we store.
Passphrases cannot feasibly be reverse engineered from a key
Even if you could do that, there is no point since all the information is there in the open, unencrypted, provided you know the key.
DuckDuckGo does not ever know your passphase.
What is the cloud save bookmarklet and how does it differ from the URL parameter bookmarklet?
The cloud save bookmarklet is a URL that automatically enables cloud save.
The benefit of this over using the URL parameters bookmarklet is that when you change settings, they will automatically be saved in the cloud.
How is it anonymous?
We do not have usernames and we don't store any personally identifiable information.
How does passphrase generation work?
Each time you ask for a passphrase suggestion, we get a reasonably large list of random words from the DuckDuckGo servers.
In the browser, we then select four or five random words from that list, ensuring that it is at least 18-20 characters long.
It is easier to remember four or five words than 10 random letters and numbers, and far more secure.
How do I change my passphrase?
You can do this by saving your settings under a different passphrase, optionally deleting the first set.
Enable cloud save by entering your existing passphrase.
Push "Delete my data". This removes the data from the cloud, but it remains in your browser until you click on "Reset all settings to defaults".
Enter a new passphrase and click "Save Settings". This will save your data under your new passphrase.
I forgot my passphrase. Can you recover it?
No. Unless you deleted your settings, the settings file will still be there but we have no way of associating it with you.
We cannot reverse the passphrase key generation.
We don't associate your IP address or browser fingerprint or any other information with the file.