By default, all users are non-private, which means their emails can be read by any organization administrator. This might be desirable for employee oversight and compliance reasons.
Only administrators can access the messages of your organization’s non-private users — ProtonMail cannot access the emails of ANY user of your organization, including non-private users.
As an administrator, you can designate a user as a private user when you add them or at a later time. A private user’s messages can only be accessed with that user’s login credentials. Administrators will not be able to access a private user’s messages.
Administrators cannot change a private user into a non-private user. To do this, you would need to delete the user account entirely and then recreate it.
If a private user loses or forgets their password, they must reset it using their recovery email address. The administrator cannot change their password for them.
How to designate a new user as a private user
When adding a new user, turn the Private switch on.
How to designate an existing user as a private user
1. Log in to mail.protonmail.com and go to Settings → Organization → Users & Addresses or log in to account.protonmail.com and go to Organization → Users & Addresses. Click Edit in the Action column next to the user.
2. Turn the Private User switch on and click Submit (you may be asked to sign in again using your ProtonMail password to continue).
Below is a checklist of steps (plus related articles) for setting up an organization in ProtonMail.
Step 1: Set up your custom domain(s)
Step 2: Create your organization