Free Forever No credit card · No ads · No tracking

Email that's private by default.
Not as an afterthought.

Mailhost is the email provider that never reads your messages, never sells your data, and never shows you ads — not even on the free plan. Zero-knowledge encryption, custom domains, and a seriously fast web app.

Free forever — no card End-to-end encrypted Custom domain support IMAP · SMTP · CalDAV
12M+
Active users worldwide
99.98%
Uptime last 12 months
0
Data breaches ever
4.8
Average user rating
Pricing

Powerful email. Honest pricing.

Start free. Upgrade when you're ready. No hidden fees, ever.

Free
$0
forever · no card

Everything you need to get started. No expiry, no forced upgrades.

  • 1 mailhost.vip address
  • 5 GB encrypted storage
  • E2E encryption
  • Web + mobile apps
  • Custom domain
  • IMAP/SMTP
Create Free Account
Personal
$3.99
/month · billed annually

For privacy-conscious individuals who want a custom domain and more storage.

  • 1 custom domain
  • 50 GB encrypted storage
  • 10 aliases
  • IMAP/SMTP access
  • Calendar & Contacts
  • Team features
Start Personal
Most Popular
Business
$9.99
/user/month · billed annually

Teams and small businesses that need multi-user shared inboxes and admin controls.

  • Unlimited custom domains
  • 200 GB per user
  • Unlimited aliases
  • Shared inboxes
  • Admin console + audit logs
  • Priority support
Start Business Trial
Enterprise
Custom
contact sales

Large orgs with custom volume, compliance, SSO, and financial SLA requirements.

  • Everything in Business
  • SSO / SAML / SCIM
  • HIPAA BAA
  • On-prem / private cloud
  • 99.99% financial SLA
  • Dedicated account manager
Contact Sales
Features

Built for people who care about email

Not a stripped-down clone. A genuinely better email experience from the ground up.

🔒

Zero-Knowledge Encryption — by Design

Your messages are encrypted on your device before they ever leave it. Mailhost's servers store only ciphertext. We cannot read your email, and neither can anyone who subpoenas us. Powered by open-source cryptographic libraries, audited annually by independent security firms.

AES-256-GCM RSA-4096 Ed25519 Open Source

Blazing Fast Web App

Our progressive web app loads in under 1 second on 3G and feels native on desktop. Dark mode, keyboard shortcuts, and offline reading included.

🌍

Custom Domains

Bring your own domain with one-click DNS wizard. Auto-configures SPF, DKIM, and DMARC. Unlimited email addresses under your domain, even on Personal plan.

🔌

IMAP, SMTP & CalDAV

Use Mailhost with Thunderbird, Apple Mail, Outlook, or any standard client. Bridge app available for seamless encrypted IMAP access without any configuration complexity.

IMAP4 SMTP CalDAV CardDAV
📱

iOS & Android Apps

Native apps with biometric unlock, push notifications, and background sync. Available on App Store and Google Play — open source on F-Droid too.

🛡️

Advanced Spam Shield

ML-powered filtering trained on billions of messages. Custom rules, blocklists, and sender verification. Average false positive rate under 0.002%.

📅

Encrypted Calendar & Contacts

Fully encrypted CalDAV calendar and CardDAV contact book, synced across all devices. Import from Google, Apple, or Outlook with one click.

🏷️

Smart Labels, Filters & Folders

Powerful server-side rules, nested folders, color-coded labels, and AI-assisted categorization that runs fully on-device — so your classification patterns are never sent to any server. Plus one-click unsubscribe for marketing emails and automatic newsletter sorting.

Server-side rules Regex filters On-device AI 1-click unsubscribe
Get Started

Ready in under 2 minutes

No installation, no complex setup, no DNS knowledge required for the basic account.

1

Choose your address

Pick a username at mailhost.vip or connect your own domain. Availability check is instant and usernames are yours forever — we don't reclaim inactive accounts.

2

Generate your keys

Your encryption key pair is generated directly in your browser. The private key never leaves your device. Recovery phrase is shown once — save it securely.

3

Start sending securely

Emails to other Mailhost users are automatically E2E encrypted. PGP keys for external contacts can be fetched from public key servers or pasted manually.

4

Connect your devices

Download the mobile app or install the Desktop Bridge for IMAP access. One password protects all — or use hardware security keys for maximum security.

Mailhost Bridge CLI
# Install Mailhost Bridge (optional, for IMAP) $ npm install -g @mailhost/bridge # Authenticate with your account $ mailhost login ? Email address: you@mailhost.vip ? Password: •••••••••••• ✓ Authenticated. Keys loaded from device keychain. # Bridge now exposes IMAP on localhost:1143 $ mailhost bridge start ✓ IMAP bridge running on 127.0.0.1:1143 ✓ SMTP bridge running on 127.0.0.1:1025 ℹ Use these credentials in your mail client: Host: 127.0.0.1 IMAP Port: 1143 (STARTTLS) SMTP Port: 1025 (STARTTLS)
Security

Privacy isn't a feature.
It's a commitment.

We've designed Mailhost so that even we — the people who run the servers — cannot access your email. Here's how.

🔑

Client-Side Key Generation

Your public/private key pair is generated in-browser using the Web Crypto API. Your private key is encrypted with your password and stored locally. Our servers only store your encrypted public key and ciphertext.

🧅

Zero-Knowledge Architecture

We apply SRP (Secure Remote Password) authentication so your password is never transmitted in plain text — not even hashed. We cannot reset your password; only you can decrypt your mailbox.

📜

Open Source & Audited

All cryptographic code, mobile apps, and the web client are published on GitHub. Annual security audits by Cure53 and SEC Consult. Full audit reports published publicly.

🌍

Jurisdiction Matters

Mailhost Ltd. is incorporated in Iceland — outside the EU but with GDPR equivalent laws and no mandatory data retention. We have never received a valid court order for user content.

🚫

No Ads. Ever.

Our business model is subscriptions — not surveillance. We have never served ads, never shared user data with advertisers, and never will. This is enshrined in our corporate charter.

🛡️

Physical Security

All servers are in ISO 27001 certified data centers with biometric access controls. Hardware security modules (HSMs) manage any infrastructure-level key operations. Full disk encryption on all storage media.

Compare

Mailhost vs. the alternatives

See how we compare to ProtonMail, Tuta, ZohoMail, and traditional providers.

Feature Mailhost ProtonMail Tuta ZohoMail Gmail
E2E Encryption ✓ All plans
Free Plan Available
Custom Domain (Free) ✗ Paid ✗ Paid ✗ Paid
IMAP/SMTP Access ✓ Personal+ Paid only Paid only
Open Source Client
Zero-Knowledge Auth (SRP)
No Ads ✓ Always ✗ Ad-supported
CalDAV / CardDAV Calendar only Proprietary
Encrypted Calendar
Free Storage 5 GB 1 GB 1 GB 5 GB 15 GB
Reviews

People who switched to Mailhost

★★★★★

"I switched from ProtonMail after years. Mailhost has the same privacy guarantees but with IMAP support that actually works, a nicer interface, and a free plan that isn't embarrassingly limited. The migration tool imported 40,000 emails flawlessly."

JH
Jonas Hartmann
Security Researcher · Berlin
★★★★★

"As a lawyer, client confidentiality is paramount. Mailhost is the only provider I found that gives me E2E encryption, a custom domain on my firm's name, AND works with Outlook via IMAP. The HIPAA/GDPR documentation was also exceptional."

CW
Claire Whitmore
Partner · Whitmore & Associates LLP
★★★★★

"Mailhost's Business plan replaced three separate tools for my 20-person team: Gmail, a newsletter service, and a calendar app. The shared inbox feature is brilliant — and everything is actually encrypted, unlike most 'private' email providers."

KL
Katja Lindqvist
CEO · Lumora AB
★★★★☆

"The web app is genuinely the fastest encrypted email client I've used — even faster than regular Gmail for me. Dark mode is well-implemented and keyboard shortcuts cover every action I need. Minus one star only because Android app is still in beta."

MR
Miguel Reyes
Software Engineer · Barcelona
★★★★★

"Migrated our entire journalism team of 35 people from Google Workspace. Mailhost's admin console is surprisingly polished for a smaller provider. Source protection matters enormously in our work, and zero-knowledge gives us real peace of mind."

SN
Sara Nakamura
Tech Editor · The Independent Wire
★★★★★

"The $3.99/mo Personal plan is genuinely unbeatable. Custom domain, 50GB, IMAP, and real encryption for less than a coffee. I recommended it to my entire family. Setup was painless even for non-technical members — the DNS wizard is clever."

PD
Pierre Dubois
IT Consultant · Lyon
FAQ

Frequently asked questions

Yes. Our free plan has no expiry date and we have never done a "free plan sunset." We fund the free tier from our paid subscribers — this is how we keep incentives aligned with users, not advertisers.
Correct. Our servers only ever see encrypted ciphertext. Your private key is derived from your password on your device and is never transmitted to us. The only way to read your email is with your password — which we never have.
You can recover your account using your recovery phrase (shown during sign-up) or a recovery email address. If you lose both, we cannot recover your data — this is a deliberate security design, not a limitation. We recommend storing your recovery phrase in a password manager.
Emails between Mailhost users are always E2E encrypted automatically. For external contacts, Mailhost can send PGP-encrypted email if you have the recipient's public key — fetched from WKD, key.openpgp.org, or entered manually. Emails to non-PGP recipients are sent via TLS.
Yes. We offer a one-click import tool for Gmail, Outlook, ProtonMail, and any IMAP source. Your existing emails are imported, locally re-encrypted, and stored in your Mailhost account. Migration of 50,000+ emails typically takes under 20 minutes.
Yes. We process minimal personal data (username, recovery email if set, payment info for paid plans). We are incorporated in Iceland, appoint an EU Data Protection Representative, and have signed DPAs available for Business and Enterprise customers. Full GDPR documentation is in our Trust Center.
Our web app works in all modern browsers. Native iOS and Android apps are available. For desktop IMAP clients (Thunderbird, Apple Mail, Outlook), install the Mailhost Bridge — a local proxy that handles decryption. CalDAV and CardDAV sync works with any compatible app.
Entirely through subscriptions. We have raised a single seed round from privacy-aligned investors and have been profitable since Year 2. We do not serve ads, do not sell data, and do not receive government funding. Our revenue model is simple: paid plans pay for the free ones.

Your inbox.
Your data.
Your rules.

Join 12 million people who decided their email provider shouldn't be reading their messages. Get your free encrypted email address in 60 seconds.

Create Free Account → View Pricing

No credit card · No ads · No data selling · Free forever