Compare Alternatives Best Tools Glossary Checklists Downloads Security Center Privacy Center

Email Privacy: PGP and Encrypted Email Services

Why ordinary email is a postcard, and how to send sealed envelopes when you need to.

Email Privacy: PGP and Encrypted Email Services
By Ana Kovács · Senior Privacy Analyst Published: Updated: Privacy · Email · Encryption
Quick answer

Standard email is transmitted and stored in plain text on multiple servers. PGP encrypts individual messages with a recipient’s public key. Encrypted email services (Proton Mail, Tutanota) automate this between users on the same service and offer password-protected messages to outsiders.

Key takeaways

  • Regular email is readable by every server it passes through.
  • PGP is powerful but has a steep usability curve.
  • Encrypted services hide the complexity for in-network messages.
  • Subject lines are not encrypted by PGP; treat them as public.

Why email is the way it is

Email was designed in the 1970s when the internet was small and friendly. Confidentiality wasn’t a goal. Today, encryption between mail servers (TLS) is standard, but the messages themselves are stored in plain text on each server they pass through.

PGP, briefly

Pretty Good Privacy is a system where each user has a public key (shareable) and a private key (secret). Senders encrypt messages to your public key; only your private key can decrypt them. It works, but managing keys manually is fiddly.

Encrypted email services

Proton Mail, Tutanota, and similar services handle keys automatically between users on the same service. To outsiders, they offer a password-protected message link. They’re much friendlier than raw PGP for everyday use.

What encryption does NOT hide

Most email encryption protects message body and attachments, not the subject line, sender, recipient, or timing. Treat metadata as public; put sensitive details in the body, never the subject.

Frequently asked questions

Is Gmail encrypted?

Gmail encrypts in transit and at rest, but Google can read your messages and uses signals from them for product features. ‘Encrypted in transit’ is not the same as end-to-end.

Can I use PGP with Gmail?

Yes, with extensions like Mailvelope, but managing keys is on you. Most users prefer dedicated services.

Are encrypted email services unsubpoena-able?

No service is immune to legal process. Many publish transparency reports describing what they can and cannot hand over.

Ana Kovács · Senior Privacy Analyst

Ana has spent 9 years writing about consumer privacy, encryption protocols, and secure remote-work setups.

Related guides

Privacy Tools · 2026-04-17

Encrypted Messaging Apps Compared (Without the Drama)

Signal, WhatsApp, iMessage, Telegram — what they actually encrypt, and from whom.

Read article → Privacy Tools · 2026-04-16

Browser Privacy Settings: A Quick Tune-Up Guide

Ten minutes in your browser settings cuts the majority of casual tracking.

Read article → Privacy Tools · 2026-04-29

Cookies, Trackers, and Fingerprinting Explained

Three different ways the web identifies you — and why blocking only one isn’t enough.

Read article →