Security
Your privacy is not optional
Security isn't a feature we bolt on — it's the foundation everything else is built upon.
AES-256
Encryption standard
0
Data breaches to date
100%
Open source crypto
SOC 2
Certified infrastructure
How we protect your data
Every layer of our stack is designed with security and privacy as the default.
End-to-End Encryption
Messages are encrypted on your device before being sent. We never have access to your encryption keys or plaintext data.
Zero-Access Architecture
Even our own engineers cannot read your emails. Your data is encrypted in a way that only you can decrypt it.
Secure Infrastructure
All data is stored in SOC 2 Type II certified data centers with full disk encryption and network isolation.
Open Source Cryptography
Our encryption libraries are open source and regularly audited by independent security researchers.
Two-Factor Authentication
Protect your account with TOTP, hardware security keys (FIDO2), or biometric authentication.
GDPR & CCPA Compliant
We comply with international privacy regulations and give you full control over your personal data.
How encryption works
A simplified overview of how your messages stay private.
You compose a message
Your email client generates a unique encryption key for each message using AES-256.
Encrypted before sending
The message is encrypted locally on your device before it ever touches our servers.
Secure transmission
Encrypted data travels over TLS 1.3. Even if intercepted, it's unreadable without the key.
Only the recipient can read it
The recipient's private key decrypts the message on their device. No one else — including us — can read it.
Ready for email that respects your privacy?
Switch to SendToReceived and take back control.