💬 Private Messaging & Email

Let's be direct. Gmail reads your email. Google's automated systems scan every message you send and receive — to build advertising profiles, to train AI, and to comply with law enforcement requests without necessarily telling you. They have done this since the service launched.

WhatsApp is owned by Meta (Facebook). While messages are end-to-end encrypted, your metadata is collected and shared: who you message, when, how often, your phone number, your contacts, your location. Facebook's business model is built on this data.

Outlook/Hotmail is Microsoft. Subject to US law (including the CLOUD Act, which allows the US government to demand your data held by US companies — even if stored abroad). Your email can be accessed by Microsoft for advertising purposes on the free tier.

The good news: switching is easy, and the alternatives are free.

Proton Mail is the most widely-used privacy-first email service. It's based in Switzerland (strong privacy laws) and uses zero-access encryption — meaning even Proton cannot read your emails. Founded by scientists from CERN, it has a strong track record.

What you get on the free plan:

• 1 Proton Mail address (you@proton.me)
• 1GB storage
• 150 messages per day
• End-to-end encryption between Proton users (automatic) and to non-Proton users (optional, with password)
• No ads, no tracking

Paid plans (from ~€3.99/month):

• Custom domain support (you@yourdomain.com)
• 15GB+ storage
• Multiple addresses and aliases
• Access to Proton Calendar, Proton Drive, Proton VPN

Limitation to know: End-to-end encryption only applies automatically when emailing other Proton users. Email to Gmail, Outlook, etc. is encrypted in transit (TLS) but readable by the recipient's provider. This is unavoidable — it's a limitation of how email works, not of Proton specifically.

Tuta is a German email provider with a strong focus on open source and privacy. Unlike Proton, Tuta encrypts the subject line and metadata in addition to the message body — making it more privacy-preserving at rest. The entire client (web and mobile) is open source and can be audited by anyone.

What you get on the free plan:

• 1GB storage
• One custom domain (on free plan, unlike Proton)
• End-to-end encrypted email and calendar
• Open source apps for all platforms
• Subject lines and sender info also encrypted at rest (stronger than Proton on this)

Paid plans (from €3/month):

• Multiple custom domains and aliases
• 20GB+ storage
• Priority support

The main difference from Proton: Tuta encrypts more metadata at rest. Proton has a larger ecosystem (VPN, Drive, Calendar all integrated). Both are excellent choices. Pick the one whose interface you prefer.

No free tier, but one of the most comprehensive private email providers in Europe. Powered entirely by renewable energy, GDPR-compliant, and supports PGP encryption for full end-to-end privacy. Good for businesses or power users who want a full suite (email, calendar, cloud storage) without self-hosting.

Signal is the gold standard for private messaging. It was developed by cryptographers and is used by journalists, human rights activists, security researchers, and anyone who needs genuine privacy. The Signal Protocol it created is now used by WhatsApp, Messenger, and Google Messages — except those platforms still collect your metadata even when using Signal's encryption.

Why Signal is different:

• Messages, calls, and video are end-to-end encrypted — only the sender and recipient can read them
• Signal cannot read your messages — they are encrypted before they ever leave your device
• Minimal metadata collection — Signal knows very little about you
• Open source — the code is publicly auditable
• Non-profit organisation — no profit motive to monetise your data

Limitation: Requires a phone number to register. This is a known privacy trade-off the Signal Foundation acknowledges and is working to address. You can use a temporary/secondary number.

Matrix is a decentralised communication protocol — like email, but for real-time messaging. No single company owns or controls it. Anyone can run their own Matrix server (called a homeserver), and servers can talk to each other. Element is the most popular client for Matrix.

Why Matrix matters:

• Federated — your server can talk to any other Matrix server
• Self-hostable — run your own server with Synapse or the lightweight Dendrite
• No phone number required — register with just a username and password
• Works for group rooms, direct messages, and even bridges to other platforms (Telegram, IRC, etc.)

To get started without self-hosting: Create an account on element.io using the matrix.org homeserver. You can migrate to your own server later without losing your contacts.

SimpleX is the most radical privacy-preserving messaging app available. It operates with no user identifiers at all — no username, no phone number, no email address, no user ID. You are identified only by one-time use queue addresses that are rotated automatically. It's the only messaging platform where even the service itself cannot build a social graph of who talks to whom.

Share a one-time link to start a conversation. That's all. If you want the maximum privacy possible, SimpleX is the right choice. It's actively developed and usable today, though less polished than Signal.

Switching email providers feels daunting. Here's a practical, low-stress approach:

1. Create your Proton or Tuta account. You can use the importer tool in both to bring in your existing Gmail messages.
2. Set up your new address in a client like Thunderbird alongside Gmail. Run both in parallel for 1–2 months.
3. Update your accounts one by one. Start with important ones: bank, work, services you use often. Use a password manager to track which accounts need updating.
4. Set a Gmail auto-reply telling contacts your new address. This catches people who email the old one.
5. Export your Gmail contacts (Google Contacts → Export → Google CSV) and import them into Proton/Tuta.
6. After 3–6 months, most of your important contacts should have your new address. At that point you can delete Gmail, or just leave it dormant.

The most powerful thing you can do — even before self-hosting your own mail server — is to use your own domain with a hosted provider. Instead of you@proton.me, you get you@yourdomain.com.

Why this matters: If you ever want to switch providers — from Proton to Tuta, to a self-hosted server, to anything else — your email address never changes. Your domain is yours permanently. This is the single most important investment in email independence.

How to set it up (Proton Mail custom domain):

1. Buy a domain (see the website tutorial — Step 1)
2. Upgrade to Proton Mail Plus or above
3. Go to Settings → Domains → Add custom domain
4. Follow Proton's instructions to add the required DNS records to your registrar (MX, SPF, DKIM records — Proton gives you the exact values)
5. Done — emails sent to you@yourdomain.com now arrive in your Proton inbox

The process is almost identical for Tuta. Both provide step-by-step instructions in their settings panels.

Domain cost: ~€10–15/year. The freedom to move providers whenever you want: priceless.

Using Proton or Tuta with your own domain is a strong privacy setup. But if you want true sovereignty — where no company has access to your email at all — the next step is running your own Mailcow server.

This means:

• Your email never touches a third-party company's server
• You control retention, deletion, backups, and access
• You can add as many domains and mailboxes as you want
• One-time setup effort, then runs mostly on its own

It requires a VPS (~€5–10/month), some time to set up, and willingness to handle occasional maintenance. The Email Server Tutorial walks through every step.