Comparison of email providers

From PrivacyWiki

Email is one of the most basic forms of communication on the Internet first entered use in the 1960s and mid-1970s. Email servers are run by different organizations and people. Newer security standards are organized through the IETF and finalized into RFCs.

Below we have listed some of the technologies used with email and a brief description.

Contents

Definitions[edit | edit source]

Authenticated Received Chain (ARC)[edit | edit source]

Authenticated Received Chain (ARC) is an email authentication system designed to allow an intermediate mail server like a mailing list or forwarding service to sign an email's original authentication results.

CalDAV[edit | edit source]
CardDAV[edit | edit source]
Catch-all[edit | edit source]
Certificate Authority (CA)[edit | edit source]
Content Security Policy (CSP)[edit | edit source]
DNS Certification Authority Authorization (CAA) Resource Record[edit | edit source]
DNS-based Authentication of Named Entities (DANE)[edit | edit source]
Do Not Track (DNT)[edit | edit source]
Domain Name System Security Extensions (DNSSEC)[edit | edit source]
Domain-based Message Authentication, Reporting and Conformance (DMARC)[edit | edit source]
DomainKeys Identified Mail (DKIM)[edit | edit source]
Encryption at rest[edit | edit source]
End to end Encryption (E2EE)[edit | edit source]
Expect-CT Extension for HTTP[edit | edit source]
HTTP Strict Transport Security (HSTS)[edit | edit source]
Internet Message Access Protocol (IMAP)[edit | edit source]
JSON Meta Application Protocol (JMAP)[edit | edit source]
Metadata[edit | edit source]
Opportunistic TLS (Transport Layer Security) (STARTTLS)[edit | edit source]
Pretty Good Privacy (PGP)[edit | edit source]
SMTP MTA Strict Transport Security (MTA-STS)[edit | edit source]
SMTP TLS Reporting (TLS-RPT)[edit | edit source]
Secure/Multipurpose Internet Mail Extensions (S/MIME)[edit | edit source]
Sender Policy Framework (SPF)[edit | edit source]
Simple Mail Transfer Protocol (SMTP)[edit | edit source]
Single Sign On (SSO)[edit | edit source]
Subaddressing[edit | edit source]
Subresource Integrity (SRI)[edit | edit source]
Time based One-time Password Algorithm (TOTP)[edit | edit source]
Two Factor Authentication (2FA)[edit | edit source]
Universal 2nd Factor (U2F)[edit | edit source]
Web Key Directory (WKD)[edit | edit source]
Zero access encryption[edit | edit source]

PrivacyTools recommended providers[edit | edit source]

Provider comparison[edit | edit source]

This table includes a bit of extra information about email providers listed on the email page on PrivacyTools.

Service Jurisdiction Technology Privacy Trust & Security
Based in Five Eyes Storage Custom domain IMAP, POP, SMTP WKD Integrated webmail encryption Temporary mailbox encryption Addressbook, calendar encryption .onion support Sub-addressing Catch-all Aliases Accepts Bitcoin Audited 2FA Encryption at rest Public Ownership
Disroot Netherlands No 1GB Yes[Disroot 1] Yes No Yes No No No No No Manual application[Disroot 2] Yes No Webmail only At rest Yes[Disroot 3]
Mailbox.org Germany No 2GB Yes[Mailbox 1] Yes Yes[Mailbox 2] Yes[Mailbox 3] Yes[Mailbox 4] No[Mailbox 5] Yes[Mailbox 6] Yes[Mailbox 7] Yes[Mailbox 8] Yes No No Webmail only[Mailbox 9] Zero access[Mailbox 10] Yes[Mailbox 11]
Posteo Germany No 2GB No[Posteo 1] Yes[Posteo 2] Yes Yes[Posteo 3] No No E2EE[Posteo 4] No Yes[Posteo 5] No No No No Webmail only[Posteo 6] Zero access[Posteo 7][Posteo 8] Yes[Posteo 9]
ProtonMail Switzerland No 500MB Yes[ProtonMail 1] With bridge only[ProtonMail 2] Yes[ProtonMail 3] Yes[ProtonMail 4] Yes[ProtonMail 5] Yes[ProtonMail 6] Yes[ProtonMail 7] Yes[ProtonMail 8] Yes[ProtonMail 9] Yes Yes[ProtonMail 10] Yes[ProtonMail 11] Webmail, Mobile Apps and Bridge Zero access[ProtonMail 12] Yes[ProtonMail 13]
Soverin Netherlands No 25GB Yes Yes No Yes No No No Yes[Soverin 1] Yes[Soverin 2] Yes Yes No Webmail only[Soverin 3] At rest[Soverin 4] Yes[Soverin 5] [Soverin 6], [Soverin 7][Soverin 8][Soverin 9] [Soverin 10] [Soverin 11]
Tutanota Germany No 1GB Yes [Tutanota 1] [Tutanota 2] No [Tutanota 3] No Tutanota specifc encryption, incompatible with external providers [Tutanota 4] [Tutanota 5] [Tutanota 6] Yes [Tutanota 7] Yes [Tutanota 8] [Tutanota 9] No [Tutanota 10] [Tutanota 11] [Tutanota 12] No [Tutanota 13] Yes [Tutanota 14] Yes [Tutanota 15] No [Tutanota 16] [Tutanota 17] No Yes (including U2F) [Tutanota 18] Yes Zero access [Tutanota 19] Yes [Tutanota 20] [Tutanota 21]

Other Providers[edit | edit source]

Service Jurisdiction Technology Privacy Trust & Security
Based in Five Eyes Storage Custom domain IMAP, POP, SMTP WKD Integrated webmail encryption Temporary mailbox encryption Addressbook, calendar encryption .onion support Sub-addressing Catch-all Aliases Accepts Bitcoin Audited 2FA Encryption at rest Public Ownership
Kolab Now Switzerland No 2GB Yes [Kolabnow 1] Yes [Kolabnow 2] No Yes [Kolabnow 3] No No No No Yes [Kolabnow 4] Yes [Kolabnow 5] Yes [Kolabnow 6] No Webmail only[Kolabnow 7] ??? Yes [Kolabnow 8]
Mailfence Belgium No 500MB Yes [Mailfence 1] Only paid accounts [Mailfence 2] No Yes [Mailfence 3] No No No Yes [Mailfence 4] Yes [Mailfence 5] Yes [Mailfence 6] Yes [Mailfence 7] No Webmail only[Mailfence 8] ??? Yes [Mailfence 9]
Runbox Norway No 1GB Yes [Runbox 1] Yes [Runbox 2] No No [Runbox 3] No no No Yes [Runbox 4] Yes [Runbox 5] Yes [Runbox 6] Yes [Runbox 7] No Webmail only[Runbox 8] ??? Yes [Runbox 9]
StartMail Netherlands No 10GB Yes (Business) [StartMail 1] [StartMail 2] Yes [StartMail 3] No Yes [StartMail 4] Yes [StartMail 5] No No No Yes [StartMail 6] Yes [StartMail 7] [StartMail 8] [StartMail 9] Personal only [StartMail 10] No Webmail only[StartMail 11] At rest [StartMail 12] Yes [StartMail 13]

References[edit | edit source]

Disroot[edit | edit source]
Mailbox.org[edit | edit source]
Posteo[edit | edit source]
ProtonMail[edit | edit source]
Soverin[edit | edit source]
Kolabnow[edit | edit source]
Mailfence[edit | edit source]
Runbox[edit | edit source]
StartMail[edit | edit source]
Tutanota[edit | edit source]