Email Encryption

3 Min. Read

What Is Email Encryption?

At its core, email encryption means disguising your message (encrypting) so only the right person can read it. Think of it like putting a letter in a locked box. Only someone with the right key can open it. This helps protect personally identifiable information, like your name, address, Social Security number, or even your medical and financial info.

Encrypted emails keep your data safe from “man-in-the-middle attacks”, where hackers sneak in between your email and the receiver’s to steal information.

How Does Email Encryption Work?

Email encryption is handled by email service providers, which are responsible for storing, transmitting, and receiving email messages between users. Basic email encryption works through the exchange of encryption keys created using mathematical algorithms known as one-way functions. Each message is secured using a pair of keys: a public key, which is accessible to anyone online, and a private key, which is kept secret by the recipient.

The sender uses one key to lock (encrypt) the message, and the receiver uses another to unlock (decrypt) it. This method of encrypting emails is known as Public Key Infrastructure (PKI). Apps like encrypted messaging apps (think Signal or ProtonMail) use this type of system.

Why Email Encryption Matters

The internet is full of potential threats. Emails can be intercepted while traveling from your inbox to the recipient’s. Your account can be compromised and hacked for personal data. If your emails aren’t encrypted, anyone with the right tools can read them.

Here’s where common encryption tools come into play:

• Transport Layer Security (TLS): This protects emails as they move between servers.
• End-to-end encryption (E2EE): This locks your email from start to finish— only the sender and recipient can see it.
• Secure Sockets Layer (SSL): An older system still used to keep your messages private.
• Advanced Encryption Standard (AES): One of the strongest encryption methods used worldwide.

What Is Considered Sensitive Information?

Sensitive information includes anything that could lead to harm or identity theft if it got into the wrong hands. Examples of sensitive personal information are:

• Your full name and address
• Credit card or bank account numbers
• Passwords
• Medical or school records
• Social Security numbers

Data protection and privacy laws require businesses to guard this type of information. Email encryption helps them do that.

How to Send an Encrypted Email

Wondering how to encrypt email? Here are a few simple ways:

1. Use an encrypted email provider, like ProtonMail or Tutanota.
2. Turn on TLS in your regular email service (like Gmail or Outlook).
3. Install PGP (Pretty Good Privacy) encryption tools for advanced privacy.
4. Check your email privacy settings and security options for extra solutions.
5. Use Multipurpose Internet Mail Extension (MIME) standards if you’re using business or enterprise-level email services.

What’s the Best Encryption Method?

If you want top-level protection, end-to-end encryption is your best bet. It’s the same technology used by apps like WhatsApp and Signal. For most personal users, this is the gold standard and one of the easiest encryptions to set up.

Looking for the best encrypted email service? ProtonMail, Tutanota, and StartMail are great places to start. These services protect your encrypted messages even from themselves— they can’t see what you’re sending!

Which Emails Are Least Likely to Be Hacked?

Emails with any type of encryption and strong email protection settings are the safest. Also, using two-factor authentication (2FA) and strong passwords helps keep you even more secure. Make sure you are changing your passwords regularly and use a service that monitors your personal data and notifies you of compromised passwords.

Has Your Information Been Compromised?

Did you receive a fraud alert, get notified of a data breach, or see a suspicious transaction on your account? If you become a victim of identity theft, you have the right to:

• Create an FTC Identity Theft Report
• Place a one-year fraud alert on your credit report
• Place a seven-year extended fraud alert on your credit report
• Get fraudulent information removed (or “blocked”) from your credit report
• Dispute fraudulent or inaccurate information on your credit report
• Stop creditors and debt collectors from reporting fraudulent accounts
• Get copies of documents related to the identity theft
• Stop a debt collector from contacting you

Online Safety Starts with You

Email is still one of the most popular ways to share information online, but it’s also one of the most targeted by hackers. Learning about email best practices, using encryption, and being careful with what you send can go a long way toward protecting your online safety.

If you suspect unusual activity on your account:

• Contact the FTC: gov is the federal government’s one-stop resource for identity theft Victims.
• File a Police Report: You may want to file a police report if you know the person who committed the crime.
• Contact Marine CU: Report any suspicious activity, identity theft, or fraud issues to your local Marine Credit Union branch office.

Remember, keeping your data safe doesn’t have to be hard. With the right tools and knowledge, you can stay one step ahead.

Stay safe, stay smart, and encrypt your emails!