Security & Privacy
Built from the ground up with security and privacy as the foundation
Encryption Architecture
Your Device
Client-side encryption with your private keys
Our Servers
Zero-access encrypted storage in secure data centers
Important: All encryption happens on your device before data leaves. We never have access to your unencrypted messages or private keys.
Security Features
True End-to-End Encryption (SIPHER-E2EE-V1)
RSA-OAEP 4096-bit + AES-256-GCM, all client-side via Web Crypto API. Multi-recipient support. PBKDF2 (310,000 iterations) for passphrase-protecting private keys. Same crypto stack on web and mobile apps.
Zero-Access Architecture
Encryption happens on your device before data reaches our servers. We cannot decrypt your E2EE-encrypted messages, even if compelled by law. Your private keys never leave your device unencrypted.
Self-Hosted AI Infrastructure
All AI features run on our own dedicated servers in Falkenstein, Germany (Hetzner). We use self-hosted open-source models. Your data never goes to OpenAI, Anthropic, Google, or any third-party AI provider. No data is used for model training.
Privacy-First EU Hosting
Servers in Falkenstein, Germany. GDPR compliant. Outside Five Eyes / CLOUD Act jurisdiction. Bare-metal dedicated hardware, not shared cloud tenancy.
Encrypted Mailbox Storage
IMAP passwords encrypted at rest with AES-256-GCM. Mailbox content encrypted at rest. TLS 1.2+ enforced for all data in transit.
Two-Factor Authentication
TOTP (Google Authenticator compatible) with backup codes. Device approval flow for new logins. Active session management with remote revoke.
Threat Protection
AI-powered phishing and spoofing detection. Malicious URL scanning. Tracking pixel blocking by default. Remote image blocking with trusted-sender allowlist.
Open Standards
IMAP / SMTP / JMAP compatible. PGP-compatible E2EE format. Export your data in standard formats anytime. No lock-in.
Privacy Commitments
Real, verifiable commitments — not marketing badges. We're a small team building honest software. Here is what we actually do and don't do with your data.
GDPR Compliant
Full data subject rights: access, deletion, portability, and restriction. Data Processing Agreement available for business customers.
No Ads, No Trackers
We don't show ads, sell your data, or use third-party advertising networks. Your inbox is not a product.
No Data Sharing
Your content is never shared with AI providers, ad networks, or data brokers. Self-hosted AI keeps everything on our servers.
Full Data Portability
Export emails (.eml/.pdf/.txt), contacts (vCard), and settings (JSON) at any time. Your data is yours.
Right to Delete
Account deletion permanently removes all data within 30 days. No hidden backups, no residual data.