ProtonMail is Open Source!

Earlier today, we released ProtonMail 2.0 to the world. We are happy to announce that we are also releasing ProtonMail 2.0 as open source software! From the beginning, we have been strong proponents of open source software and the core cryptography libraries that we develop and use have been open source from day one.

Today, we are happy to take the next step and completely open source our webmail interface. This means all the ProtonMail code that runs on your computer is now available for inspection. We hope that by opening up our platform, we will encourage additional contributors to help us make ProtonMail the world’s most secure email service.

Our move to open source has actually been coming for a long time. While it would have also been possible to open source ProtonMail 1.x, we felt that such a move was not appropriate given that the code was intended to be deprecated. By open sourcing ProtonMail 2.0, we are open sourcing the future of ProtonMail. As we continue to expand our private email service with mobile apps, you can look forward to more open source announcements as our code base matures.

ProtonMail 2.0 can be viewed online on Github at the link below. As a nod to our CERN and MIT roots, we are releasing under the permissive MIT license. Let us know if you do something cool with our code.

We welcome all feedback at and look forward to continuing to improve ProtonMail with your help!

Best Regards,
The ProtonMail Team

About the Author

Proton Team

Proton was founded by scientists who met at CERN and had the idea that an internet where privacy is the default is essential to preserving freedom. Our team of developers, engineers, and designers from all over the world is working to provide you with secure ways to be in control of your online data.

Comments are closed.

280 comments on “ProtonMail is Open Source!

  • Do you have any guide or plan to release guides/documentation for ‘how to’ run ProtonMail on-prem?

  • This is great news, thanks for all the hard work. Are the mobile apps and the server code also planned to be open sourced?

  • It’s an excellent and important improvement that the list of email messages now clearly state “To:” and “From:”!

    • Je ne sais pas bien utiliser les fonctionnalités de proton mail. je souhaiterais avoir un guide en français. j’ai cliqué par inadvertance sur un lien pour ne pas recevoir les notifications mais en fait je souhaiterais les recevoir. Vous avez une fois posé la question : “pourquoi vous avez choisi protonmail?” la réponse est simple : j’ai confiance. Je n’arrive pas à répondre parfois, parce que je ne comprends pas tout ou très peu. Des mails n’ont pas été délivrés. quel est le problème.
      merci de ce que vous faites pour la communauté

      • Excellente initiative qui montre que l’esprit du partage et de la liberté résiste dans ce monde de pillards

        Moi aussi, j’apprécierais tout ce qui pourrait être traduit en français, mais bon, je ne vais pas me plaindre de mon handicap alors qu’on m’offre un si bel outil!

        Merci aux «protons»

        Eric Valissant

  • I’m so enjoying this simple system that my hope is to close my sole other email account.

    But: does anyone know why my gmail account alerted me with a mailer daemon when my protonmail account didn’t accept a mssg with a (clean) attachment? This happened minutes ago, and I don’t like it. The accounts certainly are not synced.

    The accounts share only an address username, and possibly my laptop has allowed an unwanted I.D. “Save,” somewhere – I dunno.

    Any light appreciated!

  • If I understood correctly, the open-source part in about the front-end part of ProtonMail as you wrote in the “ProtonMail Open Source Cryptography” post. Thank you very much for this release and for sure it will help to make ProtonMail more secure. However, what about the code of the back-end part. It could be really good to have it also under free license in order to host ProtonMail at home on our own computer. I guess the arguments you defend on the previous post for the front-end part are also valid for the back-end part.

    • The security risks of open sourcing the back-end code is too high. It would let an attacker know how our infrastructure is set up or let spammers get insight into how to circumvent our anti-spam measures.

      • This approach to security ignores the fact that it’s easier to find security issues than it is to close them. An attacker being ‘blind’ by not having the source code can still find flaws and when they do it’s down to your team to fix them. If other developers can see the code they might not spot them before attackers do but they can certainly aid in providing fixes.

      • This “security through obscurity” mentality is widely understood to be wrong. It’s the reason we all prefer to use (and you brag about) using open source crypto libraries. They are widely reviewed. The smartest people in the room have picked them apart and their vulnerabilities have been fixed to the best possible degree, exactly because they are open source. So as you say, you’re software is built upon that solid base, but how can you expect any user who values security and/or privacy to trust that you are capable of implementing this tool in a manner which does not circumvent the security of that base?

        • Because of spam issues, it is not secure to open source the backend code. Open sourcing the backend also does not increase trust because the software runs on our servers.

          • SpamAssassin is open source and still it’s an extremely powerful tool, for example. Open sourcing the back-end would permit other people to use this (awesome) service on private servers, which reasonably goes versus your business plan. Please don’t use the spam excuse.

          • We don’t rely solely on SpamAssassin as that doesn’t work on internal emails which we can’t read.

          • Please consider moving all your spam filters into a proprietary module, and releasing the rest as open source.

            Allowing organizations and individuals to run Protonmail on their own infrastructure would have tremendous value to the community. I know of several non profits, and a government which would switch their infrastructure from roundcube/dovecot/postfix to Protonmail if they could self host. (though I would guess postfix would still be used ;)

            Mahalo for your considerations.

      • If it’s not open source, you should assume that governments and commercial interests have access to your information and act accordingly. Words are wind. The only way to know for sure is if we can verify the source.

      • I have had a serious issue with a cyberstalking hacker since about the time this reply of yours was created possibly earlier so I’ve had multiple users controlling all of my devices ( over 300 devices in just 10 months ) spent life savings over $100k trying to resolve the issues just to find out my phones were and call diverted using a customizable call center to apprehend my private confidential info also I froze my accounts with equifax just to find out a few weeks later they were hacked with same exact software it lists in my Sony blu Ray players which have been remotely controlled for over a year and unusable by me Apache 2.0 python st too much to list I don’t even know anything about them but I wouldn’t be surprised if proton mail is breached after my visit today to you I apologize in advance as I have no say in the matter thanks for your understanding… the less fortunate jacked and hacked to poverty level Matt Varn

      • I think it is equally important for ProtonMail to understand the right of one to protect their own privacy even from the prying eyes of Google and its many intrusive services. For that reason alone, I’ve long ago deleted my gmail account and no longer wish to be tied down by such privacy-violating corporate thugs.

        In line with that thought, I do hope that any Android application development also includes a non-Google Play app option. I have more than ample reason for not using any of Google Services and are rightfully concerned about how my privacy is violated, even when using the Google Play Store. This is why I choose not to use Google Play at all. Never mind the
        fact that in order to access apps through Google Play, Google itself forces users to have a Gmail account——-This is outright blackmail and I find it deplorable that very few companies desire to take a firm stand against this borderline monopolizing by Google.

        Lets face facts shall we…

        Google has already been implicated in dozens of Privacy violations in just the past ten years alone. Fast forward to the present date and now Google is facing anti-trust charges for their questionable business ethics——-and yet, hardly anyone else in silicon valley appears to have the guts to stand up to Google to force a change for the better!

        Please don’t tell me the makers of ProtonMail agree with Googles draconian mindset?!

        Please——-tell me that ProtonMail is serious enough about protecting user privacy——-even to the point of providing them with a non-Google option…(i.e., such as [ ]…)

        If ProtonMail were deliver on a non-Google-Play application, I will then consider an account because that is how important I realize the issue of user privacy and dignity really is——-I only hope that ProtonMail has reached that same conclusion——-for if we continue to let Google and other corporate thugs have their way with us, the future of this world will be a lot more dismal than Orson Welles could’ve ever imagined…

        • Amen,

          …as similar arguments hold for Apple and Microsoft, I would argue the Ubuntu Phone is the perfect way out, for any one trying to escape from getting encapsulated in the Apple/Google/Microsoft/Facebook empires.

          While large companies are trying to force intrusive cloud services down our throats (Windows 10 anyone? Adobe Creative Cloud? Or the whole Apple/Google infrastructure for all that matter?), trying to make us depend on their services and raping us privacy-wise, Protonmail could make a stand by teaming up with Canonical and provide decent/paid/secure/private cloud services for the Ubuntu platform, both desktop and mobile.

          One service that seems to go in this direction is Telegram, a very nice alternative to WhatsApp, now that Facebook acquired that one (Gosh, I wonder how they are going to make that US$19 billion back? What could be so precious, given that the service is for “free”??).

          Ahem, let me finish by stating that it’s wonderful to have a service like Protonmail, be it by means of an App or a web interface. It really made my day when I discovered there’s a perfectly decent alternative to Gmail. :) <3

  • Wow, Android beta available already tomorrow! Perfect! You guys are amazing. Your service is one of the most amazing ones after Snowden revelations.
    P.S. Nevertheless I’m still missing the possibility of aliases or controlling/merging more account under the same login. This is the last essential privacy feature I’m still missing.

  • It’s good to see that ProtonMail is headed in the right direction. It’s impossible to have privacy or security without free (as in freedom) software.

    I hope the organization will continue down this path and make the rest of their software free software.

    Have you considered the Apache 2.0 License? It helps prevent patent treachery.

  • Is it not dangerous for safety and privacy of Proton Mail to share any parts of code with people? I thought the code is top secret matter…

  • I have been using the Thunderbird e-mail client with Gmail. I like do not care for Gmail’s online method for accessing my e-mail, but am happy with the Thunderbird software (on my computer).

    Do you have now, or will you be offering in the near future, an e-mail client that would handle my e-mail activity right on my computer, and then just connect to your servers to upload or download the e-mails, as Thunderbird does?

    Thank you.

    • We are considering providing hosting for other at risk projects since we know many of them cannot afford the costly solutions we put in to get comprehensive protection.

  • excellent, congratulations to the team of ProtonMail and thank you for this great contribution to the free software community

  • Just out of curiosity for those of us whom are considering a donation to ProtonMail, in order to obtain immediate access to a new email account——-Does ProtonMail accept donations on the premise that a users payment information is retained and subsequently charged at a later date for any reason?——-If so, does that mean that ProtonMail intends to create paid-for email account access as opposed to free email account access?

    If the donation is made only as a one-time donation, and furthermore, email subscribers are not expected to pay for account access after that, then why is payment information kept? For what purpose does that serve other than to raise suspicion of intent on the part of ProtonMail?

    Any respondents to these questions should please take them as seriously as I do for these are not unreasonable questions to ask and potential account holders have the right to know this information….

  • How do you get on your request page? It says to put in your current email when a slot becomes available, and then says use the current form, which rejects your current email when you try to make a request??????

  • Is not using Open Source software in direct conflict with Secure protected email service? Your giving people like me (programmers) huge in-roads to hacking / leveraging known flaws?

    I was considering also starting an email service to provide a non-nsa letter signer type service – you have an awesome idea – open source is a major flaw!!!!


  • I really love the simple and clean interface of Protonmail. This is the way email should be. I also appreciate the added benefits of the security Protonmail provides. To know that our private communications are truly being protected and fully encrypted is the peace of mind I expect in an email provider.

    The fact that we are not served ad’s inside nor outside of our inboxes is also commendable and again just proves that Protonmail really does take user privacy seriously.

    While I cannot make a donation today, I firmly intend to the next chance I get. I hope the developers of Protonmail continue to maintain this fine service long into the future——-and please, please——-don’t ever become like the trashy and privacy obfuscating services being offered by Google, Facebook and the like. Their defiant and utterly repulsive but forceful attitude with regard to how they treat user privacy is absolutely deplorable and should be rightfully boycotted where ever possible!

    Thank you developers of Protonmail. You Rock!

  • gracias por la oportunidad de poder utilizar esta grandiosa aplicación
    una fuerte abrazo

  • Do you have any guide or plan to release guides/documentation for ‘how to’ run ProtonMail on-prem

  • Thank you for this great email service!! I am really appreciative and delighted to be able to use it. Outstanding work!

  • Is my email only to other protonmail accounts secure meaning everyone I email will have to use protonmail too or will it work when I email another email provider?

  • Hello! Good web-service!

    But help me to understand it, that it has email address, then I know, who send me e-mail, and all people will know where I will send my encrypted emails…


  • Having grandchildren being negatively affected by other email providers proton gave our family secured freedom to share our lives in a trusted digital world .Thank-Redge Hamer

  • hey guys look i am a newbie to all this tech stuff bare basic skills are all i know but i m one who thinks government and corporate america are becoming far to nosey so i want to learn as much as i can but unfortunately my financial situation is a little lacking in funds as im on disability retirement but any info you can give me to help increase my tech knowledge and capabilities would be greatly appreciated thanx joseph v

  • Talking about security while your server side software is closed source is a joke…
    Happy fooling people around with all those shiny ads about security…

    • Server side software runs in the backend and cannot be independently verified either way so there is no trust benefit to open sourcing it. But not open sourcing it does allow us to combat spammers better by not disclosing how we fight spam.

      • “cannot be independently verified either way so there is no trust benefit to open sourcing it”

        This is a false sentiment. Any software can be verified that it is handling data correctly, has no bugs that might inadvertently expose data.

        Open sourcing the front end is akin to allowing us to verify that the padlock is secure, while we have to trust that you have built the safe correctly.

        I’m not saying I don’t trust what you are doing, I think its great. But don’t feed us lines. If you want to keep part of your system closed IP so you can profit, just say that.

        • We also cannot really open source the backend because it would expose details that could have security consequences. For example, spammers could use the code to figure out how to bypass our anti-spam protection measures.

          • “We also cannot really open source the backend because it would expose details that could have security consequences”

            Another line.

            Any security that relies on secrecy of the algorithm is bound to fail, someone will reverse engineer it, find a weakness, create an exploit etc. I don’t think people will care if you keep your spam filters proprietary, what people are interested in vetting is the crypto. If you are using industry standard methods there is no reason ‘security’ would be compromised by exposing the code, only the keys must be kept private.

            Please recognise that folks asking for the code to be open sourced have a good understanding of what this means. Avoidance of the true issues actually brings doubt on the integrity of the system you are trying to protect. Your previous statement claiming there is no benefit in public auditing of the system is either a deliberate falsehood or demonstrates poor understanding of how security works.

          • If Anti-Spam is the only issue, maybe your anti-spam code could be externalize in a separate library, in which case you could open source the rest of the backend?

  • Since there is no assurance that our private phone numbers will not be leaked, and since you claim to require sms phone number as purely an anti-spam measure, why not institute an optional bitcoin escrow deposit (perhaps $5-10 deposit for 10 emails per hour) as a safeguard against spam? Then we can have real privacy possibilities for nerds who know the difference between real privacy and “trust us, it’s private”. Truly private messaging is on the verge of replacing email, so why not grab some market share before you are rendered obsolete by decentralized apps?

    • Phone verification is only requested for less than 10% of user signups. All verification methods can be bypassed by upgrading to a paid account, and this is possible with Bitcoin.

  • Look, I believe in privacy and it is in large part why I donated several hundred dollars in the beginning of protonmails campaign. In return I was given an email address. Now I find out I cannot get a free version of protonmail for my android? I really do not wish to pay again…and I really adhor the idea of having to have a google account. Google is hugely responsible for selling information…and they are by far the worse offender when it comes to you asking them to remove things. They care nothing of privacy because their revues revolves around selling the hell out of whatever they can convince people to buy. Hence cookies and tracking, refusal to remove things and so forth.

    When is protonmail going to have a FREE version for android which does NOT involve having a google+ account? Some of us value out privacy hence no face book, no twitter and no google accounts. What I do or do not do should never be anyone else’s business.

  • Hmmm very douious indeed, very dubious…. strange things sometimes occur, like the cursor spewing out private ininfo if I just past to a random place…shouldn’t that sorta thing be totally disabled when I leave proton Mail??

  • Protonmail android app store email on local device or not? My phone does not support encryption. If store then other application can access that data by any type of permission?

  • I have paid $75.00 donation and as of today have not received any website link to be connected to begin using protonmail. Please look into this.
    I have lost my record for ID used when opening protonmail account.

    Payment was charged from Bank of America debit card under name of myong sop shin and segesys institute.
    The payment is still in processing after three days.
    Myong Sop Shin

    • They will be once the code is more stable and we are ready to accept pull requests. Right now, the mobile code is still changing very quickly.

  • I would much prefer to run this on my own servers. I know you have done an excellent job with encryption but its still your server.. if its MY server, the US government HAS to give me a warrant to search it. I would pay for this. Of course. Please let me know if this is an option in the future.

  • Well done. I think it would be better if protonmail source code were licenced under one of Free Software Foundation licences, it would benefit both protonmail, service users and future developers. Perhaps it would also help to develop it for working better with free software browsers.

  • Well done! It would be even better if the source code were to be licences under one of Free Software Foundation categories nominally called GNU such as GNU LGPLv3

  • No where on your website do I see any talk about this TOR technology. I suppose it’s another web browser. Should one use it? How to get it?


  • I love ProtonMail because it gives me a safe place to receive password resets and submit requests to my service providers without worry of a compromise. Now I just gotta upgrade and hook up my personal domain :)

  • Good afternoon. Will the source code of the mobile apps (Android specificly) be released soon?
    I have been using Protonmail for a while and I love it, but I would like to do a few changes in the moblie app.
    How long do you think it will take until the release of the source code?

    • We’re migrating right now to a new version of our backend API, when that process is completed, we will open up the mobile code so that developers who work on it will be starting with the latest API spec.

      • So, when the source code for the mobile apps is going to be released? How can we trust an email service who claims to care about privacy if it forces you to use a proprietary app? Please, please, please, release the code and possibily distribute the app on F-Droid.

    • I also would like to Thank Proton Mail for respecting our privacy.
      I know open-source is important to a lot of people however allowing both
      back end and front end open source would increase our risk of remaining private.

      Cheers to Proton Mail

  • I love the app so far and it seems to be getting better and better, also for the VPN could you guys as a side project make I way for people to make there own VPN if it ant hard. Thank you for the service and hope to see the expansion of this app

  • Can you please advise me on how to acquire a “security code” to allow a contact to open an encrypted email from my
    proton mail account send to a non-proton user.

  • I have tried on 3 separate occasions to create a account. I received the ProtonMail verification number as expected. This is not difficult but with all verification codes sent to me the response said it failed. I can read and write, I know my numbers and I can count. I cannot understand what the problem is!!!

  • This is great to have ethical views before business.
    Will you go libre with licence GPL like (copyleft) to guarantee a bright and indépendant future ?
    Also as being opensourced, do you consider publishing your app on the infamous F-droid store as well ?

    • We plan to directly publish our Android app source code and host the APK ourselves. Thanks for your support!

  • bonjour
    jai une question qui me turlupine,
    vous expliquez que votre support est situé en Suisse et respecte l’anonymat
    ma question est simple,
    on aurait pu croire que vos serveurs etaient tous situes en Suisse cependant il apparait que votre ISP est situe en Israel
    pouvez vous developper? moi, comme beaucoup de gens serions interresses de savoir


  • loging in the password field would not hide my password. it completely showed the characters or the characters showed for 2 or 3 seconds.
    i did click on the eye icon several times.
    also i have found my protonmail link all over apps that save and open apps for history or backup cloud or device acct.


    MY ID IS:

    also my (3 wks old)
    was taken over. i think they maybe using it.

    i await your reply.
    cori lei smith

  • Could you please advise why my Plus (Upgrade) is not capturing and putting spam emails in ‘Spam”?

    When I was a basic member, proton was placing at least 93% of spam in the spam folder so I could quickly
    browse and immediately delete. Since I have upgraded to Plus…that 93% of Spam emails are in my Inbox.
    It’s a bit disarming, that I may accidentaly open one of these purposeful spam intrusions. Could you advise
    why this is happening and how to rectify?

    I know this following request is minor…could we please have the capability to change ink/print color?
    Black ink/print gets mundane after awhile. My preference would be ‘dark blue’ and a ‘bright fuschia’
    ink color.

  • My husband set up a protron mail and now he can’t get back into it or receive any emails. Can you please help us. Thanks

  • I do not have google play store installed, as I see it as an untrusted service.

    Any ETA on when the android and/or iOS apps will become open source?

    Are there any alternative ways of getting the apk (eg a f-droid repository or an ftp/download site hosted on a domain) that doesn’t involve going through a 3rd party site that probably loads malware with it / having a second device and manually pulling the apk from there?

    The web version keeps logging me out whenever I switch to a different user.

  • only vpn i look twice @.

    Keep blazing the trail…..we’re here, we’re following. Big responsibility. We trust you with our privacy, more than our governments. Something wrong when the system was built broken. And nobody has the bollocks to CHANGE THE SYSTEM

  • I’ve got a few questions if I decide to pay for email service if someone hacks in & changed my password (this has happened in the past and even the recovery email password) am I guaranteed 100% customer ? Which I mean getting back into my account & my 2nd account?

    You’d change me $8.00 a month….I could pay for the account with all the coverage but $8.00 monthly.
    If I were to do this I’d want to open a new account. Please get back to me asap, thanks Angie Standerfer

    Have a good day!

    • We have a number of checks that we do to see if you are indeed the account holder. If we are satisfied, then sometimes we can help you regain access to the account (but the previously received emails will be encrypted and it will not be possible to decrypt them).

  • Is there any other mail server/client that is compatible with your system? Something I can install on my own server and still exchange encrypted mail with ProtonMail users?

    To other users that might read this: What do you consider is the best open source webmail front end and mail server combination?

  • Has an independent security audit of ProtonMail’s open source code been performed? If so, can you a publish report on the main website? [ with reviewer details and qualifications etc. ]
    The website had links that purport to be direct downloads for the various android app builds (apks) Can you provide a full list of the corresponding sha1 hashes on the main website to act as the authoritive canonical source for the hash codes?

    Have you published white papers on the various encryption algorithms employed by you and/or architectural overviews of your network structure and design ?
    All this I respectfully suggest in the spirit of openness and transparency. May I also suggest the publishing of your current feature roadmap. Many thanks. M.

    • Yes, you can find the audit information for OpenPGPjs online.

      We don’t have official APK download yet.

      You can find the whitepaper for a large part of the crypto by going to our blog post about encrypted email authentication. You can also find the methodology within our open source libraries.

  • Do you have any guide or plan to release guides/documentation for ‘how to’ run ProtonMail on-prem?

  • Doesn’t making all the code visible make you more vulnerable since attackers can see the code and find ways in/around it?

    • No, you cannot. We are working on making this available with ProtonMail in the future. For the moment we recommend as a trustworthy authenticator for our 2FA security feature.

  • Can we use Protonmail as an autheticator like facebook and gmail?
    If we can, can you please guide me towards the api. Thanks

      • Hi Irina,

        I am getting e-mails from a PROTONMAIL user. The e-mails are harassment type e-mails, how can I find out what type of PROTONMAIL account service the holder is subscribing to, for example, free service or a payed account. Thanks.

  • The problem with this secure website is that while you are protecting me, you are also protecting terrorists and enamies of the U.S. and other countries as well.

  • A quand une aide rédigée en français ? C’est consternant ce manque de politesse vis à vis de vos clients …

  • You guys are incredible!!!!!! I am totally impressed!!!

    Will I ever be able to use ProtonMail on my iPhone ?

  • Thoroughly designed which jibe on our present day problem of rampant hacking. in. the internet.

  • I’m still not getting it. So I just paste there pgp key and paste it on pronton mail and press the lock button to send back incription message, but I can’t read it? Do I have to send it back to the person I got the pgp key with my details. Sorry not that good with these smart phone but ur help would be realy apreceate so I know what I’m doing. Thanks

    • ProtonMail encrypts automatically. So if you are communicating with somebody else on ProtonMail, end-to-end encryption is automatically enabled.

  • Thanks for your hard work !

    In the digital age today I am very scared that Im spied everywhere: phone, browser, operation system. Im worried that big companies have so much money, that no lawsuit can affect them too much.

    I also like the upgrade prices, 4 Eur/month seems very good for me, other services usually not open sourced, and using higher prices.

    ProtonMail and Firefox are my 2 favourite company :)

  • I am looking to send secure email attachments. But how does the reciver read the emails and/ or attachment? Sorry I am not very technical and it all sounds like magic to me. Doreen Baxter

  • WANT 2 DONATE 2 UPGRADE EMAIL ACCOUNT. HOW CAN donate with cash, besides bitcoin, from another continent. Your server will not accept credit card gift cards. TY.

  • I tried to ad another email address to my account and could not. then tried to change my original user name and password and failed in that also. could you please help me with that. Also do you offer some kind of cell phone security service? please advise.

  • This is fantastic!
    Can you please let me know how to block an email address from sending me emails? Thank you in advance!
    Trine Divine

    • Hi! Thank you for supporting us. This feature is not available at the moment. You can however spam the email from the sender and their email address will be blacklisted.

    • This is optional but a recovery email address will help you regain access to your ProtonMail account in case you forget your password. Having a recovery address will allow you to unblock your account. However, this will not also allow you to regain access to your old emails because they are encrypted with the password you forgot. Please be careful to not forget your password.

  • Could you tell me and to all the people if is it possible than a friend of me who lost is password and of course all keys inside can “contact you” and than you contact them by you own and made investigation, the name is black…..w is affraid about that because this person is in my list of contact and i have ultra confidential stuff inside my box and the box of bh too.
    could you tell me if you havez security problem for the moment and if a connection can be relayed to a false or something else account or sublayering thief action or i dont know im’n not a specialict at all I just want believe in a place we can have the best security.
    thanks for you work

  • Hi,
    I have updated my protonmail version. And now all my emails are encrypted.. Can you PLEASE HELP ME? To make them readable.
    I have get help because I have important emails fron my lawyer.


    • Hi! The only way you would not be able to decrypt your emails is if you forgot your password and reset it. This will reset your encryption keys, hence would not allow you to decrypt old emails. Please open a support ticket here: and we will try to help you solve this asap.

  • Dear Protonmail-team and/or Developer,

    Very big ThX for Your Hard Work, to Make/Build this mail-server with these securelevel.
    I’ve been sure, my email-adress where deleted. But it wasn’t.
    Also a Big THANK-YOU/YOUR all from the Protonmail-Team for this Professional Artwork from Your side.

    And I think I’ve got to say sorry for my unworking (time without learning developer-skillz) Time, since I started visiting the overview side of the WorldWideWeb. I have too work now harder & faster, too leave the status “baby-Dog Security”.

    But it is never too late, starting learning, too be a Constructional part of the WWW.

    Let the Life of the Protonmail-Developer Never Starts the RoadEnd. But I believe, this is still working, since Protonmail was writen from the Protonmailteam

    Best Wishes from my Side too the Protonmailerteam and I hope, I never have too leave Your incredible server.

    With Deep Attentional Respect for Your Work,
    Patrick Paul Kokott from Germany

  • I have gotten more and more suspicious about the safety of my email accounts. And annoyed by the growing amount of junk mail You were recommended by Jason Hanson, the author of Alone and Unafraid. So I am going to give your service a try and see how it works out for me.

  • question my husband has been identity theft against just messing with him (ex friends, and wife) they change passwords all the time! and empty email folders now mine as well. We went out bought new computer and our own network with wi/fi. So just say they can get in to our network does that mean they now can get in my proton mail?

  • Hi
    Just found,Are there rules I need to follow on user names as I have tried so many obscure names to be informed already being used.

    Appreciated E McQuillan

    • If the username is taken, you will receive a warning that you cannot create such username. Would you mind trying another browser in order to sign for a ProtonMail account?

  • Hello, I would like to know if ProtonMail for android is open source? if not, will it be in the future?

    • Hi, since ProtonMail app is still being constantly improved (we are still editing the code, adding new features to the app etc.), it is not open-source at the moment. However, we plan to make it open source in the near future.

  • “Data is encrypted on the client side using an encryption key that we do not have access to.”

    Is the encryption key symmetric ?

  • I heard a podcast about Proton Mail and I was quite impressed with the technology. It was mentioned in the podcast that there would be a way for Yahoo mail and folders to be moved off of the highly unsecured yahoo servers. Can you explain what that is? Is it available? Is it part of the upgraded package?

    John Sullivan

  • Great job, thank you for your concerne about online security and users rights to their own privacy. Keep up the good work, my applause to all of you.

    Gonna get my Proton E-mail account as of now.


  • Hi Admin
    I want to sign up, and I have a few questions before I do, in order to choose what´s best for me.
    1. is it posible to get two-step log-in in proton mail, just like in gmail, where I use my smart phone as the second step log-in?
    2. if I choose a paid option proton mail, what would happen if the payment got delayed (I always pay on time, but I´m interested in the theoretical event that my payment for some reason or another should fail), would you store my data in inaccessible form, until the bill be paid, or would you close down the account?
    Sincerely, Tjalve

  • I need simple encryption, to keep my mail safe , nothing to complicated, if I forget the key is possible to get back any Data, but using another key, I am new at this and have not used encription before, but I am fed up with Fraud’s.
    Please advise me on the on the best system you have for a beginner. I am not interested in any media site, it just for my own personnel use.

    M Mckeon.

  • Since I wanted an email security upgrade, my computer software source suggested ProtonMail. Not being a nerd I can’t understand the action. I can understand, “If the sender has the software he can send encrypted,but the reciever { without software} cannot decrycpt and recieve it.” For both to send and recieve encryption, both must have software? Thanks

  • If my emails are encrypted, and I send to people who aren’t using ProtonMail, will they be able to read my emails?

  • It this a form I can complete to enquire or report abuse from a Proton mail user?


  • Someone has changed my VPN so I will wait to hear back from you. They have hacked me for one year. It is a crime. They took my fingerprints because he worked for me for 12 weeks. I am going public with the digital information on Justyn Michael Richards. I want him away from me.
    He is abusive and a thief and a hack.
    I will wait until my own tech looks at this.

    Thank you.
    Margie Tortoriello

  • Hello,

    Forgive me if it is mentioned below as i only briefly reviewed the posts although, I am having a real challenge trying to locate a reliable and trustworthy APK for protonmail.

    Obviously, I could use the Google Play store to acquire it however, I have already had my annual colonoscopy and frankly, I question Googles medical credentials and their true intent for having an unhealthy desire to be so far up and in my ass when honestly, I only had that one visit a couple years back. I simply prefer not to engage or even make eye contact with them now, if that’s even possible these days.

    Is their an alternative location I might be able to acquire this APK and also be able to validate the integrity of it?? That sure would be swell, if a place like that existed and made it possible for privacy victims like me.

    If not, I will somehow manage although, I just cannot see myself ever visiting the “Play Store” again especially, after experiencing the repetitive unwelcoming advances into my personal space and the overly aggressive behavior just a quick visit to that store can bring a person.

    It’s totally traumatizing and borderline criminal.

    Nonetheless, any advice or even simple shove in a direction that can provide this request is most appreciated.

    Much Thanks and Oh, you guys rock!!


  • I’m not sure I correctly installed free encrypted email. Not sure if I did it correctly as I immediately saw $costs and choices after I started the installation. Can you tell me? I didn’t intend to purchase a subscription for Super Expensive Secure Email since I’m only a private, not a commercial account.

    • Hi Ed, if you log in to your account at and go to Settings -> Dashboard, you’ll be able to see whether you’re on the Free plan or not. If you still need help managing your account, please contact our support team: Thank you!

  • This is GREAT; I aim to get an account and will contribute as and when I can afford a little. I am a pensioner on a small income, so it won’t be a great deal.
    Thank you for existing
    Regards, Sue

  • Hei, Why I receive many spams.
    If protonmail has:
    # End-to-End Encryption
    # Zero Access to User Data
    # Open Source Cryptography
    how it comes your server isn’t save for spams which also puts at risk me as an end user.

    Thanks for service.
    Konstantin Norway

  • #1. Please forgive my ignorance, but can’t being Open Source make email accounts easier to hack?

    #2. Do you have a way that good causes can apply to get a discounted paid account?

    Thank you!

    • Hi Barbara! It may seem counterintuitive, but open source software is kind of like a peer-reviewed paper; it allows other developers to check our implementation for problems. Regarding discounts, we generally do not offer discounts, but we have supported some registered charities in the past. Please write to Thank you!

    • Se la email è stata inviata da un’altra utilizzatore di ProtonMail, è stata già criptata automaticamente.

  • I cannot access my account without constantly changing my password. I keep getting the message: “INCORRECT CREDENTIALS. PLEASE TRY AGAIN.” Time and time again I get this message. When I do check my messages I get the message that the message cannot be deencryption has failed. THIS IS A SCAM!

  • Hi, I am a Luddite so please bear with me. If I send an email to a person who has a Gmail account how does this work? Do you encrypt my email message AND my email address before it leaves my laptop/cellphone to your server and then decrypt it from your server to my friend with a Gmail account? And of course the reverse when my Gmail friend replies. I am watch what is happening in China with so-called “social scores” being used to rate/judge their citizens. Then of course China rewards or punishes their citizens accordingly, I am concerned that this will eventually be used by all despotic governments. Thank you for your reply in advance.

    • Good question. We have an article here about what is encrypted. The short answer to your question is that your data is always encrypted on the Proton servers. Messages to a Gmail user will be encrypted in transit, but Google will be able to read the message. Same with messages from Gmail to ProtonMail: Google can read it, but we cannot. Email addresses are not encrypted, for much the same reason as the postal service needs the address to be written on the exterior of the envelope.

  • Open sourcing feels a bit like a privacy issue….when ProtonMail was a secure way to send and receive messages. A little scared by the definition but could be misunderstanding what open sourcing means? Not to be a negative energy but a little nervous.

    • We understand your concern. Open source can sometimes be counter intuitive. However, making our code open source was important to us as an email service dedicated to privacy because it allows you to see exactly what our app does. Additionally, by making our code open source, we made it easier for the IT security community to audit our code and find any potential problems, which in turn leads to faster fixes. We hope this puts your mind at ease.

  • Dearly beloved friends of Protonmail,

    Why not mention a time indication with in and outgoing mails?, instead of only hours,days and years,
    just mention the exact time the mail was sent and received…, its so easy !’
    and above all, better service for the users..

    All the best to…., you have great capabilty to grow bigger…

  • I think Protonmail and Proton VPN are the best I’ve ever encountered I’m terms of security and protecting civil liberties.

  • I have purchased an account and need to set up additional emails. Can you help me with that?

  • I am looking for a secure email for the security company i work for do to our need for safe and secure communications. If a client emails us is it secure or do they have to use your system as well?

    • Hi Montgomery, good question. For messages to be end-to-end encrypted, the easiest way to do this is for both sides of the conversation to be using ProtonMail. If you have other questions, our business team would be happy to help.

  • please excuse my ignorance, but how can protonmail be both opensource and secure? Thank you for explaining in basic terms as I have no background in any of this but want to learn!

    • I think your question is “Because the code is publicly known, won’t it be easier to take advantage of?”
      That is a good question and it gets to a misconception about open source. Generally speaking, secrecy does not make code secure. If there is a vulnerability hidden in code, it will eventually be found. Good developers scrupulously following security guidelines and putting out regular updates is what keeps code secure. By making our code open source (and by running a bug bounty program) we have enabled and incentivized our community to help us discover any possible vulnerabilities. So, in actuality, being open source helps us stay secure.
      Hope this answers your question!

  • I use Proton Mail. When I click on the shortcut to go to mail I see my username and password on the log in all ready to go. I want to change it so that I have to type in my user name and password each time I access Proton Mail.
    On all of my computers this happens. I do not want this happening so please advise. Bill

    • Hi William,

      Please check your browser settings – it might have saved your login credentials.

  • Does Protonmail also enable email attachments to be encrypted or otherwise safeguarded, or just the text of the email message? If only the etxt, what tool do you suggest to encrypt actual attachments? Thanks.

  • This all looks great What a world the people from all walks of life could have if we all were protected as you guys and girls appeart to be doing.
    Will set upan accounts shortly Been with gmail for years and problems never seem to cease.
    Come on a world of steeling info from our mails our e mails services don m nz

  • I’m fairly new to Protonmail. But I find that Protonmail also has a TOR browser address. My question is: Can I send encrypted emails via that Onion address and, if so, do I have to get a Onion address for email and password?

    • ProtonMail can be used by anyone, individuals and corporations alike. (We do recommend that corporations and organizations look into ProtonMail for Business.)

  • Please add a link to your Github site in the footer of this website.
    The source code will be easier to be found for developers – and for all of us that try very hard to protect our personal data, it is the only way to get the app on our android device.

    And you should clarify that using a database from Google doesn’t have any impact on our security and privacy.
    K9-Mail also tells me when I receive mails on my “not so secure” mail account. It just checks after a given time. No need for any part of Google.

    Is that privacy concern the main reason why Proton Mail isn’t to be found on F-Droid? I mean, you pray privacy and then a normal user needs to have a googled (or “appled” but that part can’t be changed because Apple is completely against open source) phone to get the app?!

    But I don’t understand why ProtonVPN is found on F-Droid. Of course this also gives a warning about proprietary network services…

    So please make it easier to get the app for all those who can’t or won’t use Google services.

    For now, Tutanota does a better job of protecting the privacy of their users -.-

    • Hi dp The ProtonVPN appp is available on F-Droid. Releasing ProtonMail on F-Droid requires significantly more development resources because of F-Droid requirements. We would like to do this, but we don’t currently have a timeline.

  • Can sent a tip-off letter to my employment company CEO about corruption that is happening, from South Africa via your email service and still be guaranteed that I’ll remain anonymous for the rest of my life?

    • Hi Mbuyiseli. ProtonMail runs a highly secure zero-knowledge mail service, but there is no such thing as 100% security. Any company that claims otherwise is not being fully honest. That said, if you connect to ProtonMail via VPN or Tor, and send a message that way, your anonymity will be preserved. ProtonMail is often used by whistleblowers for this reason.

  • Is the “point-to-point” encryption only valid when sending email from one protonmail user, to another protonmail user?

    Or is encryption valid to any other email user?

    Please advise ASAP.

  • Bonjour, amoureux de la liberté. J’ai décidé d’utiliser un traducteur. Et même en français, vous êtes complexe. J’ai trouvé un site qui explique simplement et facilement le chiffrage avec une clé de 4096 bits. Ils ont un avantage sur vous : il est possible, après lecture, de recrypter le courriel. Comme je pratique. le prosélytisme vous concernant, les gens ne comprennent pas la méthode de chiffrage. Vous devez nous considérer comme des idiots et partir depuis LE TOUT DÉBUT et expliquer, étape après étape, comment chiffrer et déchiffrer un courriel. Vous revendiquez plusieurs millions d’utilisateurs mais combien paient et combien comprennent le chiffrage. J’ai payé pour la seconde année consécutive l’abonnement dans le seul but de vous soutenir car j’ai foi en vous. Ne me décevez pas. J’ignore si outlook est chiffré. Il a été compliqué de le paramétrer. Lorsque je dois envoyer un courriel chiffré, j’ai recours au logiciel simplissime de chiffrement.
    À vous de jouer.☺
    Respectueusement votre, ….
    Très cordialement.

  • If I acquire a Proton email account, can I only have encrypted mail with other Proton email users? How does it work with say with gmail accounts?

    Thanks for your help.

    Best Wishes,

  • Someone hacked my Microsoft email address ( and it causing me no end of troubles. My high-tech son put me onto Protonmail today and I am pleased that he did so.

  • I gotta say this is one nice app you all have developed and going open source with encryptiom to protect privacy and provide security waa an excellent idea. Not just encryption but good encryption and the VPN to go with it as well as additional packages that I think are so worth the costs
    Hands down one of the best apps I have ever had the pleasure of using. Thank you and keep up the good work!

  • Can I transfer all of my Gmail emails to proton mail and then delete my Gmail account? I have some emails I need to hang onto.