Security
2 min
we take privacy and security seriously at emailrule that's why your emails are encrypted at rest, at work and in transit we aren't end to end encrypted but we will discuss more on that below end to end encryption requires that both the sender & receiver are using the same email client which support the encryption & decryption process of the data payload services can only guarantee this when sending to clients in their own service, not outside since emailrule is a management/forwarding system we generally recieve mail for various different vendors this mail is sent unencrypted but uses tls to ensure in transit so your data is encrypted en route the moment we recieve your email it is immediately encrypted and store it securely in our data store what does this mean for you? in transit we enforce tls on all incoming and outgoing emails this means you get end to end protection for your mail in transit when we say for your eyes only we mean it at work emails are only decrypted when it is absolutely required we decrypt your emails for 3 reasons we need to send your email we recieve your email and need to pull initial metadata such as who sent it, who it was sent to and some other metadata you request to view the mail on the emailrule website at rest all emails are cse (client side encrypted) even if a malicious actor gains access to the file they won't be able to decipher the content inside this means security no matter the circumstance everywhere else we track access to your data any data access is logged and reviewed monthly we store emails for a maximum of 30 days before we destroy them this means you're being protected at all times we take security seriously if you think we are falling short somewhere we would love to hear from you
