Privacy: Encrypted Email
What is Encrypted Email?
End-to-end encryted (also known as zero-knowledge or zero-access) email is a form of communication where the messages are encrypted in such a way that only the people involved in the conversation can read them. Additionally, the emails in your inbox are stored in such a way that your provider cannot access and read them. See Understanding Encryption for more information on this.
Why do I Need Encrypted Email?
Regular email providers like Google, Yahoo, and others regularly read your emails for a variety of purposes such as advertising and training their AI. The fact that these communications are readable by employees (even if only certain ones) means that any sensitive information is not safe and can be potentially stolen. Consider that most people have sensitive information in their email inboxes, like bank statements, medical reminders, and more. By using a zero-knowledge provider you are giving your inbox another layer of protection against data breaches and rogue employees.
What Should I Look For in an Encrypted Email Provider?
Make sure to see how the provider makes money. Running an email server is expensive and requires great technical resources. “If a product is free, you are the product.” Make sure the company has a viable business plan or else assume they are likely accessing and selling your data. If you want to take full advantage of encrypted email services, **be sure to pick a provider that is also being used by the people you email regularly. Having an encrypted inbox can prevent warrantless searches and data breaches, but once the email leaves your inbox it will be decrypted. If you want the email to be encrypted from start to finish, you’ll need to both be using the same service or protocol.
Listed in alphabetical order, not order of recommendation
Pros
Based on PGP
Offers a free tier
Includes a VPN account, calendar, and cloud storage with all plans
Import/export emails available
Cons
No desktop app, web or third-party email client only.
Pros
Apps available for Android, iOS, and Mac
Offers a free tier
Includes a collaborative workspace, calendar, and cloud storage with all plans
Import emails available
Cons
No desktop app for Windows or Linux, or third-party email client, web only
No PGP support
Export emails not available
Audited, but results have not been publicly released yet
Pros
Offers a free tier
Includes a calendar with all plans
Export emails available (individual emails only)
Cons
No PGP support
Import emails not available
Click here to see my criteria for selecting these services
Click here for a visual version of this chart
Honorable Mention: PGP
Many of the services I listed work with PGP, meaning that even non-users can initiate secure conversations with you and vice-versa. PGP stands for Pretty Good Privacy and is an open-source encryption program. Generally speaking, it is most commonly used for encrypted email but it can be used to encrypt other files as well.
Explaining how PGP works is much more complicated than actually using it. When you use any type of encryption, including PGP, it creates two keys. One is called the “private key” and one is called the “public key.” The private key is private: it stays with you and should never be shared. The public key can be shared as much as you want. Think of the public key as your address and the private key as your door key. The more people you give your address to, the more people can write you. But only you can unlock the door and enter the house where you have some privacy. There are many programs and plugins that handle this process for you. While it is not advised, **you can use PGP with your existing email provider. The first method is a browser plugin called Mailvelope. For most people, this will be the best solution. The second method is with Enigmail, an email plugin for certain email clients that enables PGP.
Tips & Tricks
Never assume an email is secure. Email was never designed to be a secure communication method, and even with PGP or other encryption protocols you can never guarantee that an email won’t be screenshotted, printed, or otherwise shared with unauthorized people. Never put anything in writing you wouldn’t be willing to have publicly displayed.