Haven free beta Data sovereignty

A secure workspace for your team. A private database for your apps.

Haven is a calm, collaborative workspace where your team works with notes, files, apps, and data — encrypted by default and installable on any device. It runs on MindooDB, an open-source, offline-first sync database you can run on your own servers, in your own jurisdiction; the server only ever sees ciphertext. Real data sovereignty, without giving up real-time collaboration.

Try Haven free Listen to the Haven intro podcast Complete Haven handbook Build with MindooDB
Haven workspace screenshot showing tiles with webmail, notes, and apps - the user-facing layer of the MindooDB stack
Haven workspace - the user-facing layer of the MindooDB stack, showing tiles for webmail, notes, files, and apps.
Why Haven

Five things that set Haven apart

Secure by default
End-to-end encrypted

Client-side keys, no plaintext on the server. Apps only see what you explicitly share.

Collaborative
Multi-user by design

Automerge-based merges, shared tenants, and a guided onboarding flow for bringing teams in.

Cross-platform
Installable everywhere

Runs as a PWA on iOS, Android, and desktop. Add multiple instances for work, personal, and demos.

Offline-first
Works without network

Full local use with built-in backup and flexible push-only, pull-only, or bidirectional sync.

Extensible
Real app platform

Build apps with the MindooDB App SDK or have an AI generate them from the published context files.

In practice

From three orgs into one private workspace

When buyer, seller, and counsel work on the same confidential deal, each side keeps its own tenant. Haven brings the shared documents, Q&A, and closing tasks into one workspace - while the server only ever sees ciphertext, and every change becomes a signed node in a tamper-evident DAG.

Diagram showing three corporate parties - Buyer, Seller, and Law Firm - whose data flows through a single arrow into a central Haven workspace tile with a gold lock icon, illustrating cross-tenant collaboration where the server only sees ciphertext
Cross-tenant deal room: Buyer, Seller, and Law Firm each keep their own tenant. The shared documents, Q&A, and tasks live in one private Haven workspace, while the server only ever sees ciphertext.
Three independent tenants - one shared, end-to-end encrypted workspace. Cross-tenant Virtual Views combine each party's data into a single deal dashboard.
MindooDB Haven DAG explorer showing a document's full change graph with branches and a merge, plus a side panel with the materialized state, change author, timestamp, and the JSON of the affected fields
DAG explorer: every change is a signed node. Branches show concurrent edits, merge nodes show how Automerge resolved them - the audit trail every regulator asks for, built in.
Tamper-evident audit trail comes for free: every signed change is a node in the DAG, with author, timestamp, and per-field diff.
New podcast episode
Zero-Trust Collaboration with MindooDB Haven

Two AI hosts · ~23 min · generated by NotebookLM

A relaxed deep-dive into how Haven turns MindooDB into a browser-based workspace: end-to-end encrypted data with keys that never leave your device, local replicas for fast offline work, CRDT-based merging with a tamper-evident change history, strictly separated multi-tenant workspaces, custom apps, and virtual views that combine data across contexts. An entertaining and accessible introduction to the platform.

Download episode
One surface for daily work

Your workspace, your way

Pages, Chicklets, and groups let you arrange databases, applications, notes, web content, and media exactly the way your team thinks. Haven becomes the calm home screen for your encrypted data.

Workspace & Apps →
  • Multiple workspace pages reorderable like tabs, plus an All page for a full overview.
  • Draggable, resizable tiles for databases, apps, notes, web, media, and Mermaid diagrams.
  • Search by database, tenant, tag, or server so nothing gets lost.
  • Database browser with CRUD, revision compare, and drag-and-drop file attachments.
  • Rich file preview for Office, images, audio, and video - MP4 even transmuxed on the fly.
MindooDB Haven welcome screen in light mode
Drag to compare Haven light and dark mode.
See it in action

A real workspace, ready for everyday work

Haven is not a concept mockup. It is a working product that already brings together navigation, workspace organization, search, database access, and local-first workflows in the browser.

Click the workspace screenshot to inspect a much taller Haven page with notes, media, running apps, mind maps, Kanban boards, and Mermaid tiles in one real workspace.

Real workspace

Full mixed-tile Haven workspace

Scroll inside the frame or jump directly to a region:

Long Haven workspace screenshot showing notes, media, embedded web content, running apps, a mind map, a Kanban board, and Mermaid diagrams in one large workspace page
Build on Haven

A real app platform, not just a launcher

Applications can run embedded in the Haven grid or in their own tab, access selected databases and views, and ship as either externally hosted web apps or Haven-hosted bundles served offline by the service worker.

Apps & SDK →
  • MindooDB App SDK with launch context, live events, documents, attachments, and Virtual Views.
  • Capability-based security - Haven decides what every app can see and do.
  • Online or offline - hosted bundles run even when the network is gone.
  • Five demo apps - three first-party productivity apps you install from Haven (Mindoo Vega, for mind mapping and Kanban task tracking with full-text search, Mindoo TeamEdit, a collaborative markdown editor that demonstrates the SDK's granular text patch API and Automerge-backed save-time merging, and Mindoo TodoManager, for team todos), a beautiful responsive weather tile (Mindoo Weather) that adapts to the tile size and showcases the SDK's UX surface, and the open-source MindooDB App SDK example to fork as the starting point for your own app.
  • Build with AI - feed /llms-full.txt and the example repo to a coding agent and let it generate apps.
Mindoo Vega Mind map and Kanban in one embedded app
Mindoo Vega embedded in Haven showing a mind map with nested projects, sprints, documents, and tasks
Mindoo Vega embedded in Haven showing the related Kanban board view for the selected project
TodoManager Light and dark mode team task boards
Mindoo TodoManager embedded in Haven showing a light theme task board grouped by importance and due date
Mindoo TodoManager embedded in Haven showing the same task board in dark mode
Mindoo TeamEdit Collaborative markdown editor with character-level merging
Mindoo TeamEdit embedded in Haven, showing a markdown document being edited on the left and the rendered live preview pane on the right
Mindoo TeamEdit showing a Mermaid timeline diagram authored as a fenced code block and rendered live in the preview pane

MindooDB Apps

Mindoo Vega desktop mind map showing nested projects, sprints, documents, and tasks
Mindoo VegaDesktop
Plan projects as a mind map

Mindoo Vega turns encrypted project data into a spatial mind map with nested projects, sprints, documents, and tasks.

112
Private by design

Encrypted from the first keystroke

Haven inherits MindooDB's trust model. Data is encrypted on the client before it ever leaves the device, apps run in sandboxed iframes with granular permissions, and the DAG explorer makes collaboration auditable.

Security & Privacy →
Haven Configure application dialog showing runtime mode, hosting mode, launch parameters, and per-database capabilities (read, create, update, delete, history, attachments, views) with a tooltip describing the attachments permission
Configure application: per-database capability grid (read, create, update, delete, history, attachments, views) plus launch parameters and database mappings.
Haven Sync page listing tenant databases with direction indicators and a Sync menu open on the Docs only, no attachments option
Sync page: per-database push-only, pull-only, or bidirectional sync, with the option to transfer documents only or documents plus attachments.
  • End-to-end encryption with client-held keys and no plaintext on infrastructure.
  • Sandboxed apps on separate origins; hosted bundles get an even stricter opaque-origin sandbox.
  • DAG explorer turns Automerge merges into a navigable, auditable history.
  • Flexible sync - push-only, pull-only, or bidirectional per setup, and per database you can choose whether to transfer documents plus attachments or documents only for leaner, faster syncs.
  • Built-in backup of in-browser data, plus Virtual Views as a secure analytical layer.
Where your data lives

Local, demo, or your own server

Haven Community works in three topologies. Choose the one that matches your workflow - you can move between them without changing clients.

Deployment options →
Local only
Fully in your browser

Create tenants and databases entirely offline. No server, no sync - ideal for personal use, drafts, and offline demos.

Mindoo demo server
Try team features

Push a local tenant to the hosted demo server and invite real collaborators. Demo data is wiped periodically - it is for evaluation, not production.

Self-hosted
Your own server

Point Haven at a MindooDB server you run. See README-server.md for setup.

Two ways to run Haven

Community or Enterprise

Haven Community
Free beta

The Haven PWA at haven.mindoodb.com. Free to use today, full local use, optional demo server, and self-hosting against your own MindooDB server.

Explore Community →
Haven Enterprise
Commercial

Custom branding, managed UI and workspaces, in-house app store, workspace roaming, automatic backup, inline attachment editing, and more - from Mindoo GmbH.

Explore Enterprise →
Try the free beta Pricing & support MindooDB Security Model