Free Encrypted Email Options for Personal and Business Use

free encrypted email guide featured image

๐Ÿ”‘ Key Takeaways

  • Proton, Tuta, and Mailfence give real E2EE for free, capped at 500 MB to 1 GB of storage.
  • E2EE only works between users on the same platform; outside senders get password portal links.
  • Free tiers never include a BAA, so healthcare organizations cannot use them to move PHI.
  • Storage limits fill within a year; free plans work as a testbed, not a long-term mailbox.
  • Custom domain support sits behind a paywall, hurting credibility on professional outbound sends.

Free encrypted email accounts fill a real gap for personal privacy. Proton Mail, Tuta, and Mailfence all offer no cost tiers with strong end to end encryption between users on the same platform.

The catch shows up when the mailbox needs to serve professional or regulated workflows. Storage caps, missing custom domain support, provider domain addresses, and no business associate agreement rule out most business use. For teams that need HIPAA coverage, a dedicated secure email service with a BAA in the base plan is the practical path.

This guide walks the credible free encrypted email options, the exact limits on each free tier, and where paid coverage becomes necessary.

The Landscape of Free Encrypted Email Accounts

The credible free encrypted email accounts in 2026 are Proton Mail Free, Tuta Free, and Mailfence Free. StartMail and Fastmail are paid only. Skiff shut down after the Notion acquisition.

All three free tiers offer end to end encryption between users on the same platform, storage between 500 megabytes and 1 gigabyte, and provider domain addresses. Custom domains and BAA support sit on paid plans.

The providers differ on jurisdiction, storage split, and side features. Proton is based in Switzerland. Tuta is based in Germany. Mailfence is based in Belgium. Each jurisdiction has different rules for law enforcement access.

Related sibling reading on the paid landscape sits at encrypted email service switzerland for jurisdictional detail. The best free encrypted email guide covers the ranking side of the same question in more depth.

Proton Mail Free Tier Explained

Proton Mail Free ships with 1 gigabyte of combined mail and drive storage, one email address, and 150 messages per day outbound.

Messages between Proton Mail users are encrypted end to end automatically. Messages to non Proton recipients travel over TLS in plain form or through a password protected portal link at the sender option.

The free tier does not include custom domain support, catch all addresses, additional aliases beyond the primary, or Proton Bridge for desktop client integration. Users access mail through the web app or the mobile apps only.

Sibling coverage on the Proton side sits at the piece on which free encrypted email has the most storage, which compares storage tiers across providers.

free encrypted email in article illustration one

Tuta Free Tier Explained

Tuta, formerly Tutanota, offers a free tier with 1 gigabyte of storage, one email address, one calendar, and encryption on subject lines in addition to the message body.

Tuta encrypts the entire message payload, including headers that most competitors leave in plain form. The encryption uses AES-128 for the message and RSA-2048 for key exchange. Newer versions add post quantum key exchange.

Free Tuta accounts do not support IMAP, POP3, or SMTP access. All mail flows through the Tuta web and mobile apps. That closes off desktop client use, which is a hard block for professionals who work in Outlook or Apple Mail.

Custom domain support and additional aliases sit on the paid Tuta Revolutionary or Tuta Legend plans. Free accounts use tuta.io, tutanota.com, or the older tutanota.de domains.

Mailfence Free Tier Explained

Mailfence Free offers 500 megabytes of mail storage and 500 megabytes of document storage, one address, and a calendar with 500 megabytes of storage.

The service supports OpenPGP end to end encryption between users. Mailfence users can import PGP keys and exchange encrypted mail with any recipient that also uses PGP, including Gmail and Outlook users on Mailvelope or Thunderbird.

The free tier includes IMAP, POP3, and SMTP support, which is unusual among free encrypted email providers. That opens desktop client use on Thunderbird, Outlook, or Apple Mail for the free account.

Mailfence does not offer a BAA on any tier. That rules out HIPAA use even on the paid plans, so healthcare organizations should look elsewhere. The sibling piece on free hipaa compliant email service covers that side of the question.

Example

A freelance journalist covering financial fraud sets up Proton Mail Free with 1 GB of storage to receive encrypted tips from sources. Two other journalists on the story also use Proton Mail, so their internal exchanges encrypt end to end automatically without any password sharing. When a source on Gmail sends documents, the journalist replies through Proton password-protected outbound flow and shares the passphrase over a Signal message. Six months in, storage crosses 800 MB and the daily 150-message cap starts blocking outbound during heavy reporting days, pushing the team to upgrade to Proton Unlimited.

What Free Encrypted Email Cannot Do

Free tiers cover personal privacy well. They fall short on several common business needs.

  • No BAA support. Healthcare organizations need a signed business associate agreement. Free tiers do not include one.
  • No custom domain. Business credibility drops when outbound mail comes from a provider domain like protonmail.com or tuta.io.
  • Storage caps. 500 megabytes to 1 gigabyte fills fast with attachments. Long term retention is not viable.
  • Daily send limits. Proton caps free accounts at 150 outbound messages per day. Sales and clinical workflows hit that limit fast.
  • No IMAP or SMTP on Proton and Tuta free. Desktop client use requires paid plans on those services.
  • Recipient friction. Sending encrypted to non platform recipients requires portal password sharing on a separate channel.

For personal use, none of these blocks matter much. For business or healthcare use, most of them are hard stops.

free encrypted email in article illustration two

Free Tiers Versus a Paid Encrypted Email Service

The upgrade from a free tier usually costs between 4 and 10 dollars per user per month. That unlocks custom domain support, higher storage, no send limits, and a BAA on the providers that offer one.

Proton for Business starts at about 7 dollars per user per month for the Mail Essentials tier. Tuta Revolutionary starts at 3 euros per month for personal use and moves to per user pricing for Tuta for Business. Mailfence Entry starts at 2.50 euros per month.

For teams that need a HIPAA compliant email path, a dedicated service like Mailhippo works alongside the existing Gmail or Outlook mailbox rather than replacing it. The secure email service plan includes a BAA and does not require changing email providers.

Sibling reading on the encryption concept side sits at encrypted email and on the account setup at free encrypted email account. For healthcare specific coverage, the Redefine Web healthcare marketing hub covers the wider operational context.

Sending From a Free Encrypted Email Account to Gmail

The workflow to send from Proton Mail Free to a Gmail address is the model example. Tuta and Mailfence behave similarly.

Compose the message in Proton Mail. Click the padlock icon on the compose window. Enter a password and an optional hint. Set an expiration date on the message. Send it.

The Gmail recipient sees a wrapper email with a link. Clicking the link opens the Proton encrypted viewer. The recipient enters the password to read the message. Attachments download separately.

The friction is sharing the password. Sending the password by email defeats the purpose. Deliver it by phone, SMS, or a prior secure channel. That handoff blocks casual use and slows down high volume outbound.

๐Ÿ’กPro Tip: Treat the free tier as an evaluation window

Free encrypted email is genuinely useful for personal privacy or a short evaluation before committing to a paid plan. Set a calendar reminder at 60 days to review storage usage, outbound volume, and whether provider-domain addresses are hurting credibility with clients or patients. If any of those signals show pressure, upgrade before hitting a hard limit. Running production business mail on a free tier ends in a rushed migration during a work-critical week.

Free Encrypted Email Clients as an Alternative

Free encrypted email clients let a user layer encryption on top of an existing mailbox rather than switching providers. The two main options are Thunderbird with OpenPGP and Mailvelope for browsers.

Thunderbird ships with built in OpenPGP support since version 78. Users generate a key pair inside Thunderbird, export the public key, and share it with recipients. Encrypted messages send and receive through any IMAP or POP account, including Gmail and Outlook.

Mailvelope is a browser extension for Chrome, Firefox, and Edge that layers PGP on top of Gmail, Outlook on the web, and other webmail providers. Users generate a key pair in the extension and encrypt or decrypt messages directly inside the webmail interface.

Both approaches require public key exchange with each recipient. That works for a small stable set of counterparties. It does not fit ad hoc sends to unknown recipients or one time patient communications.

Privacy Versus Compliance in Free Encrypted Email

Privacy and compliance are related but distinct goals. Free encrypted email delivers strong privacy for personal use. It does not deliver compliance for regulated business use.

Privacy means the provider cannot read the message and the message is encrypted in transit and at rest. Free tiers from Proton, Tuta, and Mailfence meet that bar for user to user mail on the same platform.

Compliance under HIPAA, GDPR for healthcare, or other regulated frameworks requires documented safeguards, audit logs, retention controls, and a signed contract with the vendor. The free tiers do not offer these controls. Even the encryption strength does not fix that gap.

See the HHS HIPAA Security Rule reference for the full compliance backdrop. Healthcare users need a signed BAA before sending PHI over any email service, encrypted or not.

Deciding When to Upgrade From Free

A free encrypted email account is a good starting point. Certain triggers signal the moment to move to a paid plan or a dedicated service.

  • The mailbox stores protected health information or other regulated data.
  • Outbound volume exceeds the free tier daily cap.
  • Storage utilization crosses 80 percent of the free allowance.
  • Business credibility requires a custom domain address.
  • The team needs desktop client access through Outlook, Apple Mail, or Thunderbird via IMAP or SMTP.
  • Multiple team members need access to the same set of encrypted addresses.

Paid Proton, Tuta, or Mailfence plans lift most of the caps. A dedicated encrypted email service adds a BAA and one click delivery for regulated workflows without changing the existing mailbox provider.

Sibling coverage on the practice building side sits at healthcare website security features for the wider control set that pairs with encrypted email in a healthcare deployment.

Frequently Asked Questions

What does end to end encryption mean in a free encrypted email account? +

End to end encryption means the message is encrypted on the sender device and decrypted only on the recipient device. The mail provider stores the message as ciphertext and cannot read it. Proton Mail, Tuta, and Mailfence all offer end to end encryption between users on the same platform. When a free encrypted email user sends to a recipient on a different platform, the encryption model changes to either TLS in transit or a password protected portal link, depending on the sender selection.

Is Proton Mail free encrypted email HIPAA compliant? +

Proton Mail Free is not HIPAA compliant. Proton offers a business associate agreement only on paid Proton for Business plans. Healthcare organizations that need to send protected health information must upgrade to a paid Proton plan and sign the BAA, or use a dedicated HIPAA compliant email service. The technical encryption on the free tier is strong. The compliance problem is the missing BAA, which HIPAA requires from every vendor that handles PHI on behalf of a covered entity.

How much storage do free encrypted email accounts offer? +

Proton Mail Free offers 1 gigabyte of combined mail and drive storage. Tuta Free offers 1 gigabyte. Mailfence Free offers 500 megabytes of email plus 500 megabytes of document storage. StartMail does not offer a free tier. Skiff was acquired by Notion and shut down. For heavy attachment workflows or long retention, 1 gigabyte fills within months. Free tiers work well for a secondary privacy mailbox or as a trial before committing to a paid plan.

Can I use a custom domain with a free encrypted email account? +

Custom domain support requires a paid plan on Proton, Tuta, Mailfence, and StartMail. Free accounts send from the provider domain, such as name at protonmail.com or name at tuta.io. Business users almost always need custom domain support for credibility and brand consistency. Personal privacy users tend to accept the provider domain. Upgrading to a paid tier adds custom domain plus higher storage, more addresses, and calendar or drive features depending on the provider.

How do I send encrypted mail from a free account to a Gmail user? +

On Proton Mail, compose the message and click the padlock icon in the compose window. Set a password and an optional password hint. Send the message. The Gmail recipient receives a wrapper email with a link to the Proton encrypted viewer. The recipient enters the password to read the message. Tuta uses a similar model with a password prompt on outbound to non Tuta recipients. The workflow adds friction and requires sharing the password over a separate channel.

What are the risks of using a free encrypted email address for work? +

The main risks are storage limits, the missing BAA for HIPAA workflows, provider domain addresses that hurt credibility, and rate limits on outbound send that block bulk work. Some free tiers throttle outbound to 150 messages per day, which stops sales, invoicing, or clinical workflows in the middle of a day. Paid plans lift the caps and add legal coverage. For business use, treat free tiers as evaluation only and move to a paid plan or a dedicated service before committing production mail.

Are there free encrypted email clients that work with Gmail or Outlook? +

Free encrypted email clients exist, mostly on the S/MIME and PGP side. Thunderbird supports OpenPGP end to end encryption for free and works with Gmail and Outlook accounts. Mailvelope is a browser extension that layers PGP on top of Gmail. Both require certificate exchange with each recipient. The setup is technical and does not fit ad hoc sends to unknown parties. Portal based encrypted email services handle that use case better, though they usually charge for the recipient friendly delivery flow.

ProtonMail Encrypted Email Explained for Business and HIPAA Use

protonmail encrypted email guide featured image

๐Ÿ”‘ Key Takeaways

  • Proton runs end-to-end between Proton accounts and zero-access at rest. External sends need a code.
  • HIPAA on Proton needs a paid business plan plus a signed BAA. The free tier never qualifies for PHI.
  • Password portal replies stay trapped inside Proton, breaking Gmail and Outlook thread history.
  • Proton uses OpenPGP under the hood, hides key management, but locks external contacts to the vendor.
  • Adding a TLS gateway to Google Workspace or Microsoft 365 beats migrating four mailboxes to Proton.

ProtonMail encrypted email is one of the most recognized names in consumer secure email. The service applies end-to-end encryption between Proton accounts and zero-access encryption on stored mail. That combination is why journalists, activists, and privacy-focused professionals adopted it early.

Businesses ask a different question. They want to know if encrypted email from Proton clears HIPAA, fits an existing Gmail or Outlook workflow, and holds up when the recipient is on a normal inbox. This post answers those three questions with plain detail.

The short answer is that ProtonMail encrypted email works well for Proton-to-Proton exchange and acceptably for external recipients through a portal. For a healthcare practice on Microsoft 365, the fit depends on how often staff send PHI to outside inboxes.

ProtonMail Uses Two Encryption Models in Parallel

Proton applies end-to-end encryption to messages between two Proton accounts. The sender client encrypts the message with the recipient public key before it leaves the device. Only the recipient private key can decrypt it.

For stored mail, Proton uses zero-access encryption. The account password derives the private key on the user device. Proton stores the encrypted mail on its servers and does not hold the plaintext or the key material to decrypt it.

These two models are often confused. End-to-end covers transit between two Proton users. Zero-access covers everything at rest, including mail that arrived from Gmail or Outlook in plain form and was encrypted on receipt by Proton.

Neither model encrypts every field. Sender, recipient, subject line for external mail, timestamp, and IP metadata remain visible to Proton for routing and abuse handling. Users evaluating protonmail encrypted email for regulated work should account for that metadata exposure.

Password-Protected Messages Reach External Recipients

Most business recipients are not on Proton. Sending them a secure message uses the password-protected message feature. The sender writes the message, clicks the lock icon, sets a password, and optionally adds a hint.

The recipient receives a notification email with a link. They open the link in a browser, enter the password, and read the message inside a Proton-hosted portal. Replies happen inside that portal, not in the recipient normal inbox.

Password sharing has to happen through a separate channel. Sending the password inside the same email chain defeats the purpose. Phone call, text, or an in-person handoff are the practical options for password delivery.

The portal step is the operational friction most teams report. Staff on the receiving end often ask for the message in plain email instead. Practices that plan to use protonmail encrypted email for outbound PHI need a policy that forbids that fallback.

protonmail encrypted email in article illustration one

HIPAA Compliance Requires a Signed BAA on a Business Plan

ProtonMail is not automatically HIPAA-compliant. A covered entity must sign a Business Associate Agreement with Proton. Proton offers the BAA on Proton for Business plans, not on free personal accounts.

Sending PHI from a free Proton account is a HIPAA violation regardless of encryption strength. The signed BAA is what makes Proton a business associate under 45 CFR 164.502(e). Without it, the covered entity carries the full liability for any exposure.

Signing the BAA covers the service. It does not cover configuration. The practice still owns access controls, session timeouts, audit log review, and workforce training. The HHS Security Rule lays out the technical safeguards a covered entity must apply.

Retention is another common gap. Proton offers configurable retention, but the default may not match a state medical board rule. Admins should review retention against the state records law before turning users loose on protonmail encrypted email for PHI.

ProtonMail Runs on OpenPGP Underneath

ProtonMail uses OpenPGP as the underlying protocol for message encryption between Proton accounts and for external users who supply a PGP public key. This is the same OpenPGP standard documented by the IETF in RFC 4880.

What Proton adds is automation. Key generation happens on account creation. Key storage lives inside the encrypted account. Key exchange with other Proton users happens transparently. Users never see a keyring or a fingerprint.

That transparency is the main difference from a manual PGP setup like Thunderbird with Enigmail. The cryptography is the same. The user experience is different by a wide margin.

The tradeoff is portability. Moving off Proton means exporting keys, importing them into another PGP client, and re-establishing trust with every external contact. A useful encrypted email definition includes the operational reality of key portability, not only the algorithm. See how to send encrypted email for the practical workflow comparison.

Example

A four-provider mental health practice on Google Workspace Business Standard weighs a full move to Proton for Business against keeping Gmail and adding a gateway. Migration would move mailboxes, calendars, contacts, and delegation rules for four clinicians and support staff. The office manager tallies 30 hours of migration work plus per-user retraining on the Proton portal. Adding a HIPAA gateway on top of the existing Gmail accounts takes an afternoon of setup, keeps threading intact for daily internal traffic, and gets the BAA signed the same week.

Free ProtonMail Accounts Have Real Limits for Business Use

The free tier gives one address, 1 GB of storage, and 150 messages per day. Custom domain support is not available. Support is community-based. No BAA is offered.

Those limits work for a personal user. They fail for a clinic. A three-person practice will hit the daily message cap by mid-morning during a normal appointment cycle.

Paid business plans start with more storage, custom domain support, more addresses per user, and access to the BAA. Pricing tiers change over time, so verify current pricing on the Proton for Business page before quoting internally.

Common free-tier gaps that surface later:

  • No custom domain, so all mail sends from a proton.me address
  • No BAA, blocking any legitimate PHI use
  • 150-message daily cap on outbound
  • 1 GB total storage across mail, calendar, and drive
  • No priority support when delivery fails
protonmail encrypted email in article illustration two

Proton for Business Supports Custom Domains

A professional healthcare practice needs to send from clinic-name.com, not a shared proton.me address. Proton for Business plans support custom domains through standard DNS records.

Setup runs through the Proton admin console. The admin adds the domain, receives an ownership TXT record, and adds MX, SPF, DKIM, and DMARC records at the DNS provider. Propagation takes minutes to hours depending on the registrar.

Google sender guidelines for Gmail and Microsoft Exchange Online guidance both call for aligned SPF and DKIM. A Proton-hosted domain with correct SPF, DKIM, and DMARC lands in the inbox for most recipients on the first send.

Existing tenants on Google Workspace or Microsoft 365 face a migration decision when moving to Proton. Mailboxes, calendars, contacts, and delegation rules all have to move. That migration cost is a common reason practices keep Google or Microsoft and add a HIPAA gateway on top instead.

ProtonMail Versus Standard TLS-Only Email

Regular Gmail and Outlook use TLS between mail servers when both sides support it. TLS protects the message in transit. The provider holds the plaintext at rest and can decrypt any stored mail.

ProtonMail adds zero-access encryption at rest. That is the meaningful difference for a privacy-focused user. If Proton is subpoenaed, it can turn over ciphertext but not readable content of stored mail.

For a HIPAA workflow, both models can qualify with the right BAA and configuration. The security posture of the whole stack matters more than any single layer. Email is one component of the PHI chain, alongside EHR, storage, and endpoint controls.

What TLS-only fails to cover is external delivery to a non-secure recipient. That is where a portal-based or gateway-based encryption layer becomes necessary regardless of which mail provider the practice uses.

๐Ÿ’กPro Tip: Never send the portal password in the same email chain

ProtonMail password-protected messages only work if the password travels through a separate channel from the notification link. Sending both in the same email defeats the encryption because anyone who intercepts the link also gets the password. Deliver the password by phone call or SMS to a verified number. Practices sending PHI must verify recipient identity before releasing any password, which the HIPAA BAA holds the covered entity responsible for regardless of encryption strength.

Encrypted Email Meaning Depends on the Threat Model

Encrypted email is a broad label. The encrypted email meaning shifts based on what the sender is protecting against and who they consider a threat.

Against a passive network snoop, TLS in transit is often enough. Against a compromised provider or a lawful order, only end-to-end or zero-access encryption keeps content sealed. Against a phishing attack on the recipient, no encryption model helps because the recipient hands over the credentials voluntarily.

A useful encrypted email definition for healthcare covers three layers:

  • Encryption in transit between mail servers, usually TLS 1.2 or 1.3
  • Encryption at rest on the provider, either provider-held or zero-access
  • Encrypted delivery to external recipients through a portal or S/MIME

ProtonMail covers layers two and three natively. See how to send an encrypted email for the walk-through on the portal step from a sender view. A gateway product covers layer three on top of Gmail or Microsoft 365 without moving the mailbox.

Feature Comparison Across Common Encrypted Email Options

The table below summarizes how ProtonMail compares to a native Microsoft 365 or Google Workspace tenant with encryption features enabled.

Feature ProtonMail Business Microsoft 365 with Purview Google Workspace with S/MIME
End-to-end encryption inside org Yes, native OpenPGP Optional with S/MIME Optional with S/MIME
Zero-access at rest Yes No, provider holds keys No, provider holds keys
External recipient delivery Password portal Portal or one-time passcode S/MIME certificate exchange
Custom domain support Yes on paid plans Yes Yes
BAA offered Yes on Business plans Yes on Business Premium and above Yes on Business Standard and above
Third-party app ecosystem Limited Broad Broad

A practice already invested in Microsoft or Google will find the migration cost of a full switch to Proton hard to justify unless zero-access at rest is a stated requirement.

When ProtonMail Fits and When a Gateway Fits Better

ProtonMail fits a solo practitioner or a small clinic starting from scratch on email. The account, the BAA, and the encryption story all come from one vendor. Setup is fast.

It fits any user whose threat model includes the provider itself. Zero-access at rest is what Proton offers that Microsoft and Google do not.

A gateway on top of Gmail or Outlook fits a practice already running on Google Workspace or Microsoft 365. The mailbox does not move. Users keep their existing inbox and their existing threading. The gateway handles encrypted delivery to external recipients. See how to troubleshoot encrypted email when deliverability fails.

Mailhippo operates as this kind of gateway. It sits alongside Gmail or Outlook, includes a BAA in the base plan, and handles the external recipient step with one click. For practices comparing options, the deciding factor is usually whether the existing mail platform is going to move. If it is not, a gateway is the lower-friction path. Practices that also need a compliant public-facing site can pair this with HIPAA-conscious healthcare website design so the whole intake chain stays consistent.

Frequently Asked Questions

What does ProtonMail encrypted email actually encrypt? +

ProtonMail encrypts the message body and attachments end-to-end when both sender and recipient hold Proton accounts. For external recipients, it encrypts the stored message with a user-set password and delivers a portal link. Subject lines are not end-to-end encrypted on messages sent to non-Proton addresses. Metadata such as sender, recipient, timestamp, and IP are visible to Proton for routing and abuse prevention. Proton itself cannot read the body of a stored message because the account password derives the private key.

Is ProtonMail HIPAA compliant by default? +

No. HIPAA compliance requires a signed Business Associate Agreement and specific configuration by the covered entity. Proton offers a BAA only on Proton for Business plans, not on free personal accounts. A signed BAA covers the transmission and storage of protected health information through the service. The covered entity still owns the responsibility for user access controls, audit logs, retention policies, and workforce training. Sending PHI from a free Proton account is a HIPAA violation regardless of encryption strength.

How does ProtonMail differ from Gmail confidential mode? +

Gmail confidential mode does not use end-to-end encryption. Google can read the message body and metadata because Google holds the keys. Confidential mode adds expiration, revocation, and a passcode step, but the content is stored on Google servers in a form Google can decrypt. ProtonMail uses zero-access encryption for stored mail, meaning the private key is not accessible to Proton without the user password. That difference matters for regulated data such as legal, financial, or medical records.

Can I send encrypted email from ProtonMail to a Gmail user? +

Yes. The sender composes the message in Proton, clicks the lock icon, sets a password, and optionally adds a hint. Gmail receives a plain notification with a link. The Gmail recipient clicks the link, opens the Proton-hosted portal in a browser, enters the password, and reads the message. Replies happen inside the portal. The password must be shared out of band, such as by phone or text, so Gmail interception of the notification link alone does not expose the content.

What are the main downsides of ProtonMail for a business? +

The portal-based flow for external recipients breaks normal inbox habits and threading. Third-party integrations for CRM, e-signature, and helpdesk tools are thinner than Gmail or Outlook because Proton runs on its own protocol layer. Onboarding an existing team means migrating mailboxes, calendars, and contacts. Search inside encrypted mail is client-side only, which slows large mailboxes. Users often revert to plain email when the portal step feels slower than a normal reply.

Does ProtonMail work with a custom domain? +

Yes, on paid Proton for Business plans. The admin adds the domain, configures MX, SPF, DKIM, and DMARC records at the DNS provider, and verifies ownership. After verification, users receive addresses on the custom domain. Custom domains are required for a professional healthcare practice to send from clinic-name.com rather than a proton.me address. The DNS setup is well documented in Proton support and typically takes under an hour for a domain with a single mail provider.

Is ProtonMail safer than PGP set up manually? +

For most users, yes, because manual PGP setups fail on key management. ProtonMail generates and stores keys inside the account, handles rotation, and exchanges public keys with other Proton users automatically. Manual PGP requires each user to install a plugin, generate a keypair, back up the private key, and exchange fingerprints with every contact. The cryptography is the same underneath. The operational risk is where the two diverge. A lost private key on manual PGP means lost mail forever.

Encrypted Email Providers Compared for Personal and Healthcare Use

encrypted email providers guide featured image

๐Ÿ”‘ Key Takeaways

  • Encrypted mail splits three ways: consumer inbox replacements, business tiers, HIPAA add-ons.
  • Free ProtonMail and Tuta cap at 150-200 sends daily and never include a BAA for regulated use.
  • HIPAA needs a signed BAA on the platform; personal Gmail and consumer ProtonMail do not qualify.
  • Recipient experience varies from one-click portals to password exchanges and drives response.
  • Choose on five factors: platform, volume, compliance, recipient literacy, and per-seat budget.

Encrypted email providers fall into three groups. Consumer end-to-end providers run a full replacement inbox. Business-tier platforms layer encryption on standard business mail. HIPAA-focused services add encryption and compliance controls on top of existing Gmail or Outlook accounts.

This guide covers the main providers in each group, the trade-offs on price and recipient experience, and where a dedicated encrypted email service fits the healthcare use case.

The right choice depends on the existing mail platform, the compliance requirements, and the tech literacy of the recipient population. There is no single best provider across all buyers.

Three Categories of Encrypted Email Providers

Consumer end-to-end providers include ProtonMail and Tuta. Both offer full replacement inboxes with encryption built in between users of the same platform. Both are based in Europe with strong privacy positioning.

Business-tier platforms include Microsoft 365 with Purview Message Encryption and Google Workspace with client-side encryption. Both layer encryption on the existing business mail platform and include a BAA available for HIPAA scenarios.

HIPAA-focused services include Mailhippo and similar tools that work alongside an existing Gmail or Outlook account. They add encryption, the BAA, and compliance controls without replacing the underlying mail platform.

The categories address different buyers. Consumer providers fit personal privacy needs. Business platforms fit organizations with an existing Microsoft or Google investment. HIPAA services fit practices needing compliance without an enterprise upgrade.

Free Encrypted Email Options Are Limited

Free encrypted email is available from ProtonMail Free and Tuta Free. Both offer limited storage and outbound volume that fit personal use but not business use.

ProtonMail Free offers 500 megabytes of storage and 150 outbound messages per day. Tuta Free offers 1 gigabyte of storage and 200 outbound messages per day. Both hit the limits quickly under any professional use.

Free tiers do not include a business associate agreement. Practices needing HIPAA compliance cannot use a free consumer account regardless of the encryption strength. The BAA is a separate contractual matter.

Personal Gmail, personal Outlook, and free Yahoo accounts do not offer true message-level encryption. Gmail’s confidential mode and Outlook’s basic TLS provide partial protection but do not meet HIPAA transmission requirements on their own.

encrypted email providers in article illustration one

Consumer Providers Focus on End-to-End Encryption

ProtonMail runs a full end-to-end encryption model between users of the ProtonMail platform. Messages between two ProtonMail accounts encrypt automatically. Users hold the keys client-side.

Tuta uses a similar end-to-end model between Tuta accounts. The company runs its own encryption stack and cannot decrypt user messages. Both providers publish their code as open source.

External recipients on non-ProtonMail or non-Tuta accounts receive a password-protected link. The sender shares the password through a separate channel. This creates friction for reaching regular Gmail or Outlook users.

Consumer providers fit users who value privacy and who correspond primarily with other users of the same platform. Business users sending to patients on standard email addresses often find the friction too high for daily use.

Microsoft 365 and Google Workspace Cover Business Encryption

Microsoft 365 Business Premium and higher plans include Purview Message Encryption. The sender clicks Options, then Encrypt, in the Outlook compose ribbon. Purview handles the delivery and the recipient portal.

Google Workspace Enterprise Plus and Education Plus include client-side encryption. The sender clicks a lock icon in the Gmail compose window. Content encrypts in the browser before it reaches Google servers. Keys stay outside Google through a customer-controlled key service.

Both platforms sign a BAA for business tenants. The BAA covers the platform’s handling of PHI processed on behalf of the covered entity. Consumer tiers of both platforms do not include the BAA.

Detailed setup for Microsoft Purview is in the Microsoft support guide for encrypted messages. Google client-side encryption setup is in the Google Admin console.

Example A solo therapist runs a Squarespace site and a personal Gmail address at no cost. She sees 22 patients per week and sends session summaries by email. Personal Gmail has no BAA, and Google Workspace Enterprise Plus at $30 per month is overkill for one seat. She picks a dedicated HIPAA service at $12 per month that layers encryption on her existing Gmail, includes the BAA in the base plan, and delivers messages through a one-click portal her patients open without creating any account.

Provider Comparison at a Glance

The table below summarizes the main providers across price, encryption method, HIPAA support, and recipient experience.

ProviderEncryption MethodHIPAA BAARecipient Experience
ProtonMailEnd-to-end (same-platform)Business tier onlyPassword portal for external
TutaEnd-to-end (same-platform)Not standardPassword portal for external
Microsoft 365 PurviewPortal-based (server encrypts)Yes on business tenantPortal sign-in or passcode
Google Workspace CSEClient-side (browser encrypts)Yes on business tenantPortal with key service
MailhippoGateway encryptionYes in base planOne-click portal, no account

The comparison highlights that recipient experience varies more than encryption strength. All five options provide strong encryption. The difference is what the recipient has to do to read the message.

encrypted email providers in article illustration two

HIPAA Email Providers Bundle Compliance Into the Plan

HIPAA email providers such as Mailhippo bundle encryption, the BAA, access logs, and recipient portal into a single plan. The buyer does not have to piece together the compliance stack from separate components.

The service works alongside an existing Gmail or Outlook account. The sender writes mail in the familiar interface. Outbound mail routes through the encryption gateway. The recipient gets a one-click portal to read the message.

The BAA is signed as part of onboarding. The access logs run automatically. Practices without dedicated IT get the full compliance stack without configuring individual pieces.

The trade-off is a routing dependency on the service. Outbound mail runs through the service infrastructure. Uptime and continuity of the service become part of the practice’s operational picture.

Recipient Experience Drives Adoption for Patient Communication

The recipient experience matters more for patient communication than for internal or business partner mail. Patients have varying tech literacy. A workflow that requires the patient to install a certificate or exchange a password fails at the population level.

The one-click portal experience matches how patients already use online banking, telehealth, and pharmacy portals. The recipient clicks a link, verifies identity with a one-time passcode or sign-in, and reads the message.

Providers that offer this experience include Microsoft 365 Purview and dedicated HIPAA services. ProtonMail and Tuta external delivery requires more steps. S/MIME requires a certificate on the recipient side, which rules it out for patient use in almost all cases.

Practices building patient communication workflows should test the recipient view before selecting a provider. The sender view is not the recipient view. A five-minute test with a patient using a personal Gmail account reveals what the actual experience will be.

๐Ÿ’กPro Tip: Test the recipient view with a real patient deviceProvider marketing pages never show the recipient view. Send a test message from your shortlist candidates to a personal Gmail on an old Android phone and a personal Yahoo on an iPhone. Time the sign-in path, note any account creation prompts, and confirm attachments open on mobile. The provider that clears both tests in under 20 seconds is the one that will keep patient response rates.

Cost Differences Between Provider Categories

Pricing varies by category and by tier within each category. The list below shows current price ranges for each option.

  • ProtonMail personal plans start around $4 per month with additional storage and features.
  • Tuta personal plans start around $3 per month with similar tiering.
  • Microsoft 365 Business Premium is $22 per user per month including Purview Message Encryption.
  • Google Workspace Enterprise Plus starts around $30 per user per month for client-side encryption.
  • Dedicated HIPAA email services range from $10 to $25 per user per month depending on volume and features.

Practices already on Microsoft 365 or Google Workspace often find the incremental cost of adding encryption is a plan upgrade rather than a new subscription. Practices without an existing platform find a dedicated HIPAA service more cost-effective per seat.

HIPAA Compliance Beyond the Encryption Provider

The encryption provider covers one part of the HIPAA compliance picture. The covered entity is still responsible for the surrounding controls: access logging, workforce training, incident response, and correct configuration.

The HHS Security Rule guidance lays out the framework. Encryption is one required technical safeguard. Administrative and physical safeguards remain separate obligations.

Practices building the full posture around encrypted mail also need to cover the site, patient portal, and intake forms. See the guide on healthcare website security features for the site-side controls.

The email provider handles the mail. The site handles the intake. The portal handles the ongoing care communication. Together they form the compliant digital footprint.

Choosing a Provider Comes Down to Five Factors

The choice among providers comes down to five factors. Existing mail platform in use. Volume of encrypted mail sent. HIPAA or other compliance requirements. Recipient population and tech literacy. Budget for licensing or subscription.

Practices already on Microsoft 365 or Google Workspace often add encryption at the platform level. The incremental cost is an upgrade. The workflow stays inside the existing tools.

Practices without a business mail investment often pick a HIPAA-focused service. The service bundles encryption, BAA, and portal into one plan. No enterprise upgrade required.

Consumer providers fit personal use and cross-provider testing. Business users typically outgrow the free tiers within weeks. Related reading covers specific provider comparisons: best encrypted email providers, secure encrypted email providers, encrypted email, best free encrypted email providers, hipaa encrypted email healthcare providers, and free hipaa compliant email providers.

Practices pairing the encryption provider decision with a wider healthcare digital strategy work with a healthcare marketing agency that coordinates mail, site, and portal into a single compliant footprint.