Proton Mail

VERIFIED

Private email · Switzerland

Founded 2014 · proton.me/mail ↗

Swiss end-to-end encrypted email by Proton AG (Geneva); 100M+ users, Foundation-controlled since June 2024.

Why this score?

Proton Mail is operated by Proton AG (Geneva CH) — controlled by the non-profit Proton Foundation since June 2024 — with end-to-end + zero-access encryption, Swiss jurisdiction (outside EU but under FADP + strong privacy law), own Swiss data centres, ISO 27001, 100M+ users, fully open-source clients, independently audited; 5/5 with no CLOUD Act exposure.

SCORE: 5.0/5
CLOUD ACT
OWNERSHIP
SUB-PROCS: — not disclosed

Visit site ↗

€ AFFIL. · Some links on this site are affiliate links. We may earn a commission at no extra cost to you. Compliance scores and editorial rankings are never influenced by affiliate relationships.

Verified

Last audit: 2026-05-12
Next audit: 2026-08-12
Methodology: v2026.05 ↗

JUMP TO

OVERVIEW

About Proton Mail

**Proton Mail** is the original product within the **Proton AG** ecosystem (Geneva, Switzerland) and the flagship of the privacy-first email category — **end-to-end + zero-access encryption** (Proton itself cannot read user emails or attachments), 100M+ users, 100,000+ organisations. Since June 2024 Proton AG is controlled by the **Proton Foundation**, a Swiss non-profit, which structurally rules out future VC / PE acquisition pressure. Pricing: Free (1GB), Mail Plus (~€4.99/mo, 15GB + custom domain), Proton Unlimited (~€9.99/mo bundle with Mail + Drive + Pass + Calendar + Docs + Sheets + VPN). For the full Proton ecosystem profile see `proton-drive` and `protonvpn`. Swiss jurisdiction places `ownership_signal: other` (Switzerland is non-EU but strong-privacy-law); CLOUD Act exposure none.

SUB-PROCESSORS

Sub-processor map · not disclosed

Vendor does not publish a sub-processors list. Schrems II compliance and CLOUD Act exposure cannot be independently verified without it.

CERTIFICATIONS

Frameworks & certifications

ISO/IEC 27001

ACTIVE

FEATURES

Capability matrix

INTEGRATION & ACCESS

REST API

SSO (SAML / OIDC)

COMPLIANCE & GOVERNANCE

Audit log

Self-host / on-prem option

PRICING

Pricing & tiers

FREEMIUM

from €4/mo

View pricing page ↗

PUBLIC DOCUMENTS

Public documents

Vendor does not publish a sub-processors list. Schrems II compliance and CLOUD Act exposure cannot be independently verified without it.

Data Processing Addendum (DPA)

proton.me/legal…

Open ↗
Sub-processors list

— missing

missing
Terms of Service

proton.me/legal…

Open ↗

ALTERNATIVES

Alternatives in this category

Infomaniak Mail (kSuite)

Switzerland

Swiss email + groupware (Infomaniak Group SA, Geneva, since 1994), own Swiss DCs, ISO 27001 + B Corp 2025, free tier with @ik.me address.

Mailbox.org

Germany

Berlin-based private email + drive + meet + office bundle (Heinlein Support GmbH); ISO 27001 + BSI C5, €1/mo entry.

Posteo

Germany

Berlin one-person-shop privacy email at €1/mo (Posteo e.K., since 2009); anonymous signup, BSI TR-03108 certified.

See all private email alternatives →