We're obsessed with your email security so you don't have to be.
Security is complicated. It's also filled with choices between what is convenient and what is secure. We worked very hard so you could have both.
Why is SecureMyEmail the best way to send an encrypted email?
The problem
Most email providers, that even care about security, force you to rely on what is called "opportunistic TLS." Although this method "usually" (not always) protects the email in transit, it offers zero protection for the email after it arrives or is stored (which almost all emails are). It should not be relied upon.
Many email providers also make inaccurate or misleading claims about how they secure or encrypt your email. No matter what they say, they, almost always, maintain backdoor access to your emails and attachments. This puts them at risk to hacking and data breaches even if the provider has the best of intentions.
Our philosophy is that you, not your email provider, should ultimately control the privacy and security of your email.
Making end-to-end email encryption simple for the sender AND the recipients.
If sending an encrypted email hasn't been hard enough, historically, have you ever received one? Not only do they usually look frightening, they can be a lot of work.
With SecureMyEmail, recipients do NOT have to use SecureMyEmail, download anything, register for anything, or even use a password.
They just receive a regular email with a secure link to access the encrypted email and attachments. Note: If the recipient IS a SecureMyEmail customer, they should use their software or mobile apps to view the message.
To maximize security and convenience for senders and recipients, we provide two options when you send an encrypted email. We call them "Encrypted" and "Encrypted+." Catchy, right?
Security + Convenience: Our "Encrypted" option (No password required)
Our wonderfully easy Encrypted option transmits your email via encrypted tunnel to our secure systems, where we generate unique and ephemeral encryption keys to secure the message and its contents. We then send an email to the recipient to let them know they have an encrypted message from you.
You may also choose how long the recipient has to access the message before it is purged from our systems. From one hour up to as long as you want. Note that you, as the sender, always retain a secure and encrypted copy of the message for archiving and in case you need to resend it.
Recipients then access your encrypted email on our secure servers via an encrypted tunnel generated via the link they received. They may then reply, add attachments of their own, and the email is then fully encrypted for its return trip back to you.
The main advantage of this option is the recipient doesn't need to deal with a password to access the email. This is a very unique advantage SecureMyEmail has versus other approaches.
The email is then encrypted at rest using your unique 4096-bit OpenPGP keys and zero-knowledge secret password.
This is a "best of both worlds" option because you can just "send away" to any email on Earth knowing everything is fully protected and compliant with security requirements, such as HIPAA and the GDPR.
The ultimate in email security, and still pretty convenient: Encrypted+
If you need email encryption even aliens can't hack, the Encrypted+ option adds an additional layer of security with symmetrical encryption utilizing the renowned ChaCha20-Poly1305 cipher suite.
Your email and contents are encrypted before they even leave your device with a "zero knowledge" password that you create.
This means that no one, and we mean no one, ever has the means to decrypt the email without the password.
In fact, even if your recipient, or their email provider, is hacked, even the hacker cannot access the email or its contents without the password. There is no more secure method to encrypt email.
The only inconvenience is you must create the password that your recipient must enter to decrypt the message. Usually this is sent via "another channel" such as text or voice, or you can use the included "hint" field to ask them something only they would know.
Native Encryption Software. Not Webmail.
Most secure email providers force you to use hosted webmail because it’s easier for them to deploy, not because it’s the most secure method. Webmail requires the provider to store your private decryption key on their servers. It also opens the possibility that every time you reload your browser, you may be being served a different version of the software. SecureMyEmail uses native software, not webmail, to ensure the highest level of security for your email and attachments.
Your private decryption key doesn't need to leave your device.
With encrypted email, your private key is everything. It, plus your secret passphrase, is what guarantees that only you can decrypt your email and nobody else. Unlike others, with SecureMyEmail, your private key is generated on your device and can stay there — not on our servers. And, if you do decide to move it, to set up another device or some other reason, we offer you multiple secure options to do so.
Cryptographic Verification of the Sender
Every email sent with SecureMyEmail can be “signed” with a unique private key. This assures the email has not been tampered with en route by a Man-in-the-middle attack.
Enhanced Identity Verification and Protection via Social Authentication
A big part of online communication is trust. You need to make certain that email belongs to the person or organization you believe it does. To ensure that you can, we modernized the legacy PGP “Web of Trust” by incorporating social network methodology, including social networks themselves. Users can authenticate to their Facebook, Twitter, or LinkedIn account for their contacts to verify against. Community-sourced trust levels and checks are built in. This keeps impersonators and spearphishers on the outside where they belong.
Standards-based and PGP-compatible
SecureMyEmail uses OpenPGP at its core. We religiously followed the IETF’s RFC 4880 to help ensure compatibility with legacy PGP keys and programs. We even added methods through which PGP users can exchange keys with SecureMyEmail users or import their current PGP keys into SecureMyEmail if they wish. Users may also export their keys into other PGP-compliant programs, or provide their public key to websites, such as Facebook, to encrypt communications.
Hosted in Switzerland
SecureMyEmail servers are built and hosted in Swiss data centers with carrier-grade physical security and uninterruptible power.
Super-Secured Communications
Connections between your devices and SecureMyEmail systems are reinforced with multiple layers of modern security best practices. To start, our API servers use Transport Layer Security (TLS). TLS replaces SSL and provides access to advanced cipher suites that support elliptical curve cryptography and AEAD block cipher modes, including the very nice GCM cipher suites. We additionally deployed Ephemeral Key Support to enable “perfect forward secrecy,” and HSTS on all our API servers. This zealousness ensures all your interactions with SecureMyEmail systems are safe, private, and secure.
Advanced Crypto Features
As simple as it is to use, SecureMyEmail has advanced features for original crypto gangstas. 4096-bit keys, active key management, on-demand key regeneration, importing and exporting of PGP keys, and much more, are all included for your enjoyment under the Advanced Menu.
Easy to Use
Is “easy” a security feature? Absolutely. When encryption is complicated, it's not used or used incorrectly. That's dangerous. SecureMyEmail is so easy to use it will popularize encrypted email and make us all safer as a result.
Ready To Check It Out?
no payment or other info is required