Frequently asked questions

What makes your email “secure” compared to Gmail or Outlook?

We use TLS for encryption in transit, encryption at rest for stored mailbox data, and optional end-to-end encryption for message content where supported. Access is protected with strong authentication controls, and security monitoring is designed to detect account takeover and abuse without excessive data collection.

Is my mailbox encrypted at rest, and what exactly is encrypted?

Yes. Mailbox data stored on our servers is protected with encryption at rest, meaning messages and related stored data are encrypted on disk. This reduces exposure if storage media is ever accessed without authorisation. Encryption at rest is one layer of protection and is used alongside TLS in transit and strict access controls.

Do you have access to my emails or the encryption keys?

For standard encrypted-at-rest mailboxes, the service must be able to decrypt data to deliver and display mail, but administrative access is tightly restricted, audited, and policy-controlled. If you enable end-to-end encryption, message content can be encrypted in a way that prevents us from decrypting it without customer-controlled keys.

Where is my data stored, and can I choose a region?

We store data in defined regions and offer regional options where available so you can match your compliance and latency needs. We also publish our hosting locations and sub-processors so you can assess the full data-handling chain.

Do you log IP addresses, message metadata, or user activity?

No. We do not log IP addresses, message metadata, or user activity. We have designed the platform to operate without behavioural tracking, and we do not sell, share, or monetise usage data.

Can I use my own domain, and will you help with SPF/DKIM/DMARC?

Yes. You can bring your domain and we provide guided DNS setup for SPF, DKIM, and DMARC to improve deliverability and reduce spoofing. We also provide tools to validate your DNS records and monitor configuration issues.