Skip to content
Independently verified · Quarterly re-audit
EU VETTED

Mailfence

VERIFIED
Private email · Belgium
Founded 1999 · mailfence.com ↗

Belgian secure email + calendar + docs (ContactOffice, est. 1999); browser-side PGP, donates 15% to EFF + EDRi.

In short

Mailfence, in the Private email category, is an EU-owned service with Belgium as its hosting location and no identified CLOUD Act exposure.

Assessment notes

Mailfence is operated by ContactOffice Group (Belgium, founded 1999): 25+ years operational, European data centres, OpenPGP end-to-end encryption in-browser, no ads / no trackers / no backdoors, donates 15% of Ultra-tier revenue to EFF + EDRi; under Belgian / EU jurisdiction with strong privacy laws, EU-owned, no CLOUD Act exposure; no formal ISO 27001 attestation surfaced on the public site, and a public DPA URL is available.

CLOUD ACT
OWNERSHIP
SUB-PROCS
0 none disclosed
Verified signals
Jurisdiction
  • EU / adequacy hosting
  • EU / adequacy operator
  • No US CLOUD Act exposure
Privacy
  • End-to-end encryption
    Integrated OpenPGP end-to-end encryption available, but opt-in — mail is not zero-access by default.
Transparency
  • Public DPA
  • Sub-processors disclosed
  • Open-source clients
  • Third-party certification
JUMP TO
OVERVIEW

About Mailfence

Mailfence (operated by ContactOffice Group, Belgium, founded 1999) is one of the longest-running European secure-email services: OpenPGP end-to-end encryption done in-browser, integrated calendar, docs, contact groups, no ads, no trackers, no government backdoors, EU jurisdiction (Belgium). Pricing tiers from Free (500MB) to Ultra ($225/mo billed monthly for 60GB). Notable ethical commitment: 15% of Ultra-tier revenue donated to the Electronic Frontier Foundation and European Digital Rights. Available in 12 languages; iOS, Android, and PWA apps. No formal ISO 27001 attestation was surfaced on the public site.

SUB-PROCESSORS

Sub-processor map · none disclosed

Source ↗
Vendor discloses zero sub-processors. All data processing happens in-house.
CERTIFICATIONS

Frameworks & certifications · none listed

We checked the vendor's website and standard certification body registries. No active certifications found at the time of last audit (2026-05-12).
FEATURES

Capability matrix

Encryption TLS
Mailbox storage 11 GB
Email aliases 10 aliases
Custom domain Yes
IMAP / SMTP No
Calendar Yes
Contacts Yes
INTEGRATION & ACCESS
REST API No
SSO (SAML / OIDC) No
COMPLIANCE & GOVERNANCE
Audit log No
Self-host / on-prem option No
PRICING

Pricing & tiers

FREEMIUM
from €3/mo
View pricing page ↗
PUBLIC DOCUMENTS

Public documents

  • Data Processing Addendum (DPA)
    mailfence.com/c…
    Open ↗
  • Sub-processors list
    mailfence.com/en…
    Open ↗
ALTERNATIVES

Alternatives in this category

Proton Mail
Switzerland · Founded 2014
EU-SOVEREIGN

Swiss end-to-end encrypted email by Proton AG (Geneva); 100M+ users, Foundation-controlled since June 2024.

E2E Public DPA Sub-processors Open source
FROM
€4/mo
CLOUD ACT
NONE
Tuta
Germany · Founded 2011
EU-SOVEREIGN

Hannover-based end-to-end encrypted mail (formerly Tutanota); post-quantum crypto, own DE data centre, ISO 27001.

E2E Public DPA Sub-processors Open source
FROM
€3/mo
CLOUD ACT
NONE
Mailbox.org
Germany · Founded 2014
EU-SOVEREIGN

Berlin-based private email + drive + meet + office bundle (Heinlein Support GmbH); ISO 27001 + BSI C5, €1/mo entry.

E2E Public DPA Sub-processors Open source
FROM
€1/mo
CLOUD ACT
NONE