The New Oil

The New Oil logo
Privacy: Encrypted Email

Privacy: Encrypted Email

What is Encrypted Email?

End-to-end encryted (also known as zero-knowledge or zero-access) email is a form of communication where the messages are encrypted in such a way that only the people involved in the conversation can read them. Additionally, the emails in your inbox are stored in such a way that your provider cannot access and read them. See Understanding Encryption for more information on this.

Why do I Need Encrypted Email?

Regular email providers like Google, Yahoo, and others regularly read your emails for a variety of purposes such as advertising and training their AI. The fact that these communications are readable by employees (even if only certain ones) means that any sensitive information is not safe and can be potentially stolen. Consider that most people have sensitive information in their email inboxes, like bank statements, medical reminders, and more. By using a zero-knowledge provider you are giving your inbox another layer of protection against data breaches and rogue employees.

What Should I Look For in an Encrypted Email Provider?

Make sure to see how the provider makes money. Running an email server is expensive and requires great technical resources. “If a product is free, you are the product.” Make sure the company has a viable business plan or else assume they are likely accessing and selling your data. If you want to take full advantage of encrypted email services, **be sure to pick a provider that is also being used by the people you email regularly. Having an encrypted inbox can prevent warrantless searches and data breaches, but once the email leaves your inbox it will be decrypted. If you want the email to be encrypted from start to finish, you’ll need to both be using the same service or protocol.

Listed in alphabetical order, not order of recommendation

  • Audited

  • Available on Android and iOS.

  • Based on PGP

  • Offers a free tier

  • Includes a VPN account, Calendar, and Drive storage with all plans

  • Import/export emails available

  • No desktop app, web or third-party email client only.

  • Available on Android, iOS, and Mac

  • Offers a free tier

  • Includes a collaborative workspace and Drive storage with all plans

  • Import emails available

  • No desktop app for Windows or Linux, or third-party email client, web only

  • No PGP support

  • Export emails not available

  • Audited, but results have not been publicly released yet

  • Available on Debian, Mac, Windows, Android, and iOS.

  • Offers a free tier

  • Audited (see cons)

  • Includes a Calendar with all plans

  • Export emails available

  • No PGP support

  • Audit is for the web client only, not any mobile apps or servers.

  • Import emails not available

Click here to see my criteria for selecting these services

Click here for a visual version of this chart

Honorable Mention: PGP

Many of the services I listed work with PGP, meaning that even non-users can initiate secure conversations with you and vice-versa. PGP stands for Pretty Good Privacy and is an open-source encryption program. Generally speaking, it is most commonly used for encrypted email but it can be used to encrypt other files as well.

Explaining how PGP works is much more complicated than actually using it. When you use any type of encryption, including PGP, it creates two keys. One is called the “private key” and one is called the “public key.” The private key is private: it stays with you and should never be shared. The public key can be shared as much as you want. Think of the public key as your address and the private key as your door key. The more people you give your address to, the more people can write you. But only you can unlock the door and enter the house where you have some privacy. There are many programs and plugins that handle this process for you. While it is not advised, **you can use PGP with your existing email provider. The first method is a browser plugin called Mailvelope. For most people, this will be the best solution. The second method is with Enigmail, an email plugin for certain email clients that enables PGP.

Tips & Tricks

Never assume an email is secure. Email was never designed to be a secure communication method, and even with PGP or other encryption protocols you can never guarantee that an email won’t be screenshotted, printed, or otherwise shared with unauthorized people. Never put anything in writing you wouldn’t be willing to have publicly displayed.