CodaMail

Beyond Standard Email Encryption

When most email services talk about your mail being automatically fully encrypted, they're referring to storage volume encryption - their servers are encrypted and thus your messages are encrypted while sitting on their servers. But here's the catch: with just storage encryption, the service itself can still access your emails. They hold the encryption keys, meaning your private communications aren't truly private.

True zero-access storage security means exactly what it says: zero access by anyone but you. This is where the automatic PGP encryption prior to storage comes in, putting you in complete control of your email privacy.

How Automatic PGP Encryption Works

PGP (Pretty Good Privacy) is a powerful encryption standard that uses a pair of keys: a public key for encrypting messages, and a private key for decrypting them. Here's how our automatic PGP encryption system works:

  • You create or import a public PGP key
    - you can create and store a keypair with us, but it's safer if you do it on your machine with your own PGP software and just import your public key
  • You choose how you want to encrypt
    - all mail, just certain aliases, or maybe just on keywords or just mail from certain people
  • Incoming emails are automatically encrypted using your choice of public key
  • Only you, with your private key, can decrypt and read the messages
  • Even if someone gains access to your email account, they can't read your encrypted messages without both your private key and it's specific passphrase

Unique Keys for Maximum Security

Take your security even further by assigning different PGP keys to different email aliases. For example:

  • Use one key for personal communications
  • Another for financial documents
  • A separate key for work-related emails

This compartmentalization means that even if one key is compromised, your other communications remain secure. Think of it like having different keys for different safety deposit boxes, rather than one master key that opens everything.

Smart Encryption with Custom Filters

Our system lets you create sophisticated encryption rules based on various criteria:

  • Automatically encrypt emails from specific senders
  • Encrypt messages containing certain keywords or phrases
  • Apply encryption based on email subject lines
  • Set up encryption rules for specific aliases or domains

For example, you could automatically encrypt all emails containing the word "Confidential" in the subject line, or encrypt everything from your banking institution's domain.

True Privacy in Action

Consider these real-world scenarios where zero-access storage encryption protects you:

  • Account Compromise: If someone gains access to your email account, they'll only see encrypted messages they can't read
  • Legal Requests: If we're required to provide your emails, we can only give encrypted data that's unreadable without your private key
  • Server Breaches: Even if our servers are compromised, your messages remain securely encrypted
  • Account Sharing: Give someone access to your account for managing certain emails while keeping sensitive messages private

The Nuclear Option: Permanent Destruction

In extreme situations, you might want to ensure certain emails can never be read again by anyone - including yourself. By destroying the private key used to decrypt those messages, you make them permanently unreadable. The encrypted data might still exist, but without the key, it's just meaningless scrambled text.

This nuclear option provides a level of security that's impossible with traditional email systems. Once a key is destroyed, there's no back door, no recovery option, and no way to decrypt those messages ever again.

Perfect Pairing with Masked Aliases

Combine automatic PGP encryption with our masked aliases for the ultimate in email security:

  • Create unique aliases for different purposes
  • Assign different encryption keys to different aliases
  • Set up custom encryption rules for each alias
  • Maintain separate security levels for different types of communication

This combination gives you unprecedented control over your email privacy, allowing you to compartmentalize both your identity and your encryption.

Taking Control of Your Email Privacy

Zero-access storage through automatic PGP is more than just a security feature - it's a fundamental shift in how email privacy works. Instead of trusting services to protect your data privacy and security, you maintain complete control over who can read your messages.

In an era of increasing data breaches and undiscovered vulnerabilities, this level of control isn't just nice to have - it's essential for anyone serious about protecting their private communications.

Important Distinction: Storage encryption is different than end-to-end encryption. That message likely did not arrive encrypted. It did arrive via an encrypted connection (we require SSL... it is claimed that some services can't send SSL, but in 2025, that rarely applies, and the only non-ssl traffic we have seen in years has been bot traffic), but the message itself, probably was not encrypted. True end to end Zero Access requires either both parties using our service or both parties using PGP, with mailvelop or a third party email client where the private key is not on our servers. We do offer E2EE capabilities, but they are fundementally different than Zero Access Storage Encryption.