ProtonBlog(new window)

What is email privacy?

Share this page

Email privacy means keeping your messages safe from prying eyes at all times, but most email providers aren’t private. Learn how private email can help protect you against hackers, government spies, and Big Tech’s pervasive invasion of your privacy.

Your emails record who you are. From chat to shopping receipts, work tasks, love letters, and doctor’s notes, your email messages span the length and breadth of your life from adolescence.

Before email, we would send private information in a sealed letter. Yet email is more like a postcard than a letter, leaving the intimate details of your life open to be read and exploited.

We explain email privacy, why most email services aren’t private at all, and how private email can help protect you and your sensitive personal data from exploitation.

What is email privacy?
Standard email is like a postcard
Private email is a sealed letter
Who can read your emails?
What email privacy means for you
You own your personal information
Protect your digital identity
Beat data breaches
Block government surveillance
Defend your freedom
Safeguard democracy
Email privacy for you and all

What is email privacy?

Email privacy means ensuring unauthorized individuals, email service providers, or other organizations can’t read, share, sell, or otherwise exploit the personal and sensitive data in your email account.

Online privacy is different from anonymity(new window). Privacy means keeping your personal information out of the wrong hands. When you share medical records with your doctor or a credit card with your partner, they know who you are.

Anonymity means hiding your identity. People may see what you do but don’t know who you are.

You may not need anonymity online unless you’re a journalist or political activist. But we all have a right to privacy.

However, by ticking the box to accept the complex terms and privacy policies(new window) of major free email providers like Gmail and Outlook, you effectively consent to give up much of your privacy online.

For example, the Google privacy policy(new window) describes the reams of personal data it collects from you, tracking your every move as you use Gmail, Google Search, YouTube, and other apps. 

Get Proton Mail button

Standard email is like a postcard

Unfortunately, it’s easy for Google and other Big Tech email providers to invade your privacy in this way because email wasn’t originally designed to be secure. The IMAP, SMTP, and POP(new window) email protocols weren’t encrypted, so emails were open to be read. 

Today, most big email providers, like Gmail and Outlook, use TLS to encrypt messages(new window) in transit. That means your messages are secure while being sent from A to B, but only if the recipient’s email service supports TLS.

Similarly, Gmail encrypts your messages on its servers. But Google retains the encryption keys and can decrypt your emails. So they can access your data and share it with third parties, like advertisers and governments.

Email text written on a postcard illustrating that email privacy with most big email providers is similar to that of a postcard

In short, with most email providers, your email is still more like a postcard than a letter — open to be read.

Private email is a sealed letter

By contrast, private email like Proton Mail is genuinely private because it uses end-to-end encryption(new window). With end-to-end encryption, your message is encrypted on your device and can only be decrypted by the person you write to.

That means you control who sees your messages. No one but you and those you authorize can read them. And because Proton Mail collects no personal data linked to your identity, no one you never authorized can see, share, or sell your data.

A letter sealed with wax and string illustrating that end-to-end encrypted email gives you genuine email privacy

So end-to-end encrypted email is like a sealed letter — confidential between you and the person you send it to.

Who can read your emails?

Most large email providers, like Gmail and Outlook, retain the encryption keys to your emails to keep a backdoor into your mailbox. That means they can read your messages whenever they like.

Here’s who can read your email and how private email providers prevent them.

Email providers

Google has said that Gmail no longer reads your emails to target you with ads(new window). But later, Google let third-party app developers sift through users’ Gmail(new window).

Since then, Google said(new window), “No one at Google reads your Gmail, except in very specific cases where you ask us to and give consent”. But you never know who might access your messages and what you consent to when you sign up. And Google still scans your email to track what you buy(new window) and to enable smart features(new window), though you can switch this off.

By contrast, private email like Proton Mail uses end-to-end or zero-access encryption(new window), meaning no one but you can read your messages stored on our servers, not even Proton.

Law enforcement

In most countries, state agencies can access and read emails, depending on the law and the information they’re seeking, although this usually requires a formal request. For example, law enforcement officials may obtain a warrant to read your emails(new window) during a criminal investigation.

If you send an end-to-end encrypted email with Proton Mail, including a Password-protected Email, neither Proton nor any other third parties can read your messages (apart from metadata).

Government agencies

A decade after Edward Snowden revealed a US global mass surveillance(new window) giving the NSA access to ordinary users’ online data, government agencies can still access emails without a warrant(new window). Moreover, intelligence-sharing agreements like the Five Eyes, Nine Eyes, and Fourteen Eyes(new window) mean governments can easily share personal data across borders.

The best private email services are in privacy-friendly countries and don’t build backdoors for government agencies. Proton Mail is based in Switzerland, which is outside these intelligence alliances and offers strict privacy protection.

Criminal hackers

Email providers can be hacked, as multiple data breaches at Yahoo(new window) and Microsoft(new window) have shown. If hackers gain access to the provider’s encryption keys, they can decrypt your emails and other sensitive data.

With private email providers like Proton Mail, your encryption keys are safely on your device. So hackers can’t read your personal data even if your provider is breached.

What email privacy means for you

Email privacy means much more than keeping your messages’ intimate contents to yourself.

Large email providers like Gmail and Outlook are called “free” but rely on invading your privacy to make money. You pay with the private moments of your life.

Google tracks every move you make using Gmail, YouTube, Google Search, etc. For example, here’s the vast trove of personal information Gmail collects from you on an iPhone:

The data Google collects from you when you use Gmail on an iPhone showing your complete lack of email privacy with providers like Gmail
The trove of private data Gmail collects from you on an iPhone (source: Gmail iOS privacy label).

Armed with this knowledge, Big Tech companies like Google build detailed profiles of you to share with advertisers(new window) and target you with ads. And in this surveillance-based economy(new window), knowledge is power: The more corporations and authorities know about you, the more they can predict and influence what you think, what you buy, or how you vote. 

But you’re not powerless before the tech giants. For you, privacy is power(new window), and using a private email service like Proton Mail is just one way you can fight back, as Dr. Carissa Véliz explains:

Carissa Véliz explains how using private email can help you block Big Tech surveillance.

Here’s what using private email means for you:

You own your personal information

Gmail, Outlook, and other big “free” email providers exploit your data for surveillance-based advertising(new window). With private email, you’re in control. You decide what happens to your data.

Protect your digital identity

Email is an essential part of your digital identity that is used to track you across the web and offline. Private email uses aliases(new window), enhanced tracking protection(new window), and advanced security to keep your identity and data confidential.

Beat data breaches

Email providers can be hacked. Private email uses end-to-end encryption(new window) and zero-access encryption(new window), so your data remains unreadable even in a data breach(new window).

Block government surveillance

Snowden revealed how the NSA and other state agencies carry out mass surveillance of citizens(new window) at home and abroad. Private email’s end-to-end encryption helps to thwart blanket surveillance programs.

Defend your freedom

Email should be a private space where you can say what you want and be who you want without fear of Big Tech’s surveillance-based profiling(new window). Private email frees you from the chilling effect of constantly being watched.

Safeguard democracy

The less data you give up, the less chance of being the victim of targeted disinformation(new window). Giving away your personal data to Google or other Big Tech companies can increase inequality in society and threaten democracy(new window)

Email privacy for you and all

Most email is like a postcard. We all have things we wouldn’t write on a postcard, so we all have something to hide. Only end-to-end encrypted, private email like Proton Mail is genuinely private, like a sealed letter. 

Email privacy means much more for you than just keeping your intimate moments private or blocking creepy ads that stalk you across the web. Email privacy gives you the freedom to be yourself and protects your personal data from hackers, government spies, and Big Tech’s pervasive data collection.

Yet ultimately, email privacy isn’t just about you or your personal preference.

Hey, I’m not shy, and who’s interested in the boring details of my life anyway? I’m no criminal, and I’ve got nothing to hide.

It doesn’t matter who you are or what you think about privacy. In the data economy, online privacy is a collective endeavor we all need to protect our individual freedom, equality, and democracy.

That’s what gets us up in the morning at Proton: We’re working to give everyone privacy and freedom online. And that’s why we offer Proton Mail for free with no strings attached. With Proton Mail, no one but you and those you authorize can read your emails, not even Proton.

Unlike Gmail and other big email providers, we don’t collect or exploit your personal data. Our business is to do everything we can to protect it. All our funding comes from paying members of the Proton community.

So join us and protect your privacy and freedom — for you and all.

Secure your emails, protect your privacy
Get Proton Mail free

Share this page

Harry Bone(new window)

A long-standing privacy advocate, Harry worked as a translator and writer in a range of industries, including a stint in Moscow monitoring the Russian media for the BBC. He joined Proton to promote privacy, security, and freedom for everyone online.

Related articles

Can you password-protect a folder in Google Drive?
Protecting a folder with a password is a simple yet effective way of securing files. You may wonder whether you can password-protect a folder in Google Drive. We explain what access controls Google Drive offers and what you can do to improve your sec
Proton Pass now supports passkeys on all devices and plans
We’re excited to announce that Proton Pass supports passkeys for everyone, allowing you to manage and use passkeys across all devices seamlessly. Passkeys are an easy and secure alternative to traditional passwords that can help prevent phishing atta
what is a passkey?
Passkeys are a new way to secure your online accounts using cryptographic keys instead of passwords. They offer a high level of convenience and security, and are a real game-changer in the way we access and secure sites. What is a passkey, though, an
Apple’s marketing team has built a powerful association between the iPhone and privacy. The company’s ad campaigns claim that “what happens on your iPhone, stays on your iPhone.” And, “Privacy. That’s iPhone.” But Apple’s lawyers are telling a diffe
A cyberattack on national public employment service France Travail has exposed the personal data of as many as 43 million people.  The latest breach is the second major cybersecurity attack to happen in France in the past month, raising concerns abo
If I share a folder in Google Drive, can anybody see my other folders
Google Drive makes it easy to share files and folders, but you may have wondered at some point whether the people you’ve shared a folder with can see your other folders. We answer this question below and also share some tips for truly secure link sha
In 2014, Proton Mail was introduced as a web app, revolutionizing how we think about email privacy. Today, we’re excited to broaden the horizons of secure communication by launching the Proton Mail desktop app. Anyone can now use the new Proton Mail