Proton Mail review — encrypted email from Switzerland
Proton Mail offers end-to-end encrypted email with a free tier, Swiss jurisdiction and zero-access encryption. What it protects and what it doesn't, explained.
Proton Mail review
Proton Mail is the most widely used privacy-friendly email provider. Based in Switzerland, end-to-end encrypted between Proton users, free tier available. What it protects — and what it doesn’t.
What Proton Mail protects
Zero-access encryption: Proton cannot read the contents of your emails. Messages are encrypted with your public key before being stored on the servers. Only you can decrypt them.
End-to-end encryption (Proton-to-Proton): Emails between two Proton Mail addresses are automatically end-to-end encrypted. No intermediary can read along.
No IP logging (by default): Proton does not log IP addresses at login by default. You can verify this in settings.
Swiss jurisdiction: Swiss privacy law is stricter than EU or US. Proton can theoretically be compelled to provide data via a Swiss court, but the encrypted content cannot be decrypted.
What Proton Mail does NOT protect
Metadata: Proton sees who you email, when, and to whom. The subject line was until recently visible — now also encrypted in newer versions.
Email to non-Proton addresses: If you use Proton but the recipient has Gmail, Yahoo or another standard address, the email travels outside the encrypted Proton infrastructure. The content is then not end-to-end encrypted unless you use PGP or send a password-protected email.
Incoming email: Email arriving from outside Proton is not end-to-end encrypted. Proton receives it unencrypted and then encrypts it with your key for storage.
Specifications
| Property | Value |
|---|---|
| Jurisdiction | Switzerland |
| Encryption | PGP + zero-access (storage) |
| E2E encryption | Automatic between Proton users |
| Open-source | Yes (clients) |
| Free tier | Yes — 1 address, 1 GB storage, 150 emails/day |
| Proton Mail Plus | €4/month — 15 GB, custom domain, more addresses |
| Proton Unlimited | €10/month — all Proton services (VPN, Drive, Calendar, Pass) |
| Desktop bridge | Yes — IMAP/SMTP for Thunderbird, Apple Mail, Outlook |
| Mobile | Android, iOS |
Proton Bridge — use with existing email client
Proton Mail has a web interface and mobile apps by default. If you want to use a desktop email client like Thunderbird, you need Proton Bridge. Bridge runs locally on your computer and translates the Proton API to standard IMAP/SMTP.
Advantage: you work in a familiar email client. Disadvantage: Bridge must be running for synchronisation — one extra background process.
Comparison with alternatives
| Proton Mail | Tutanota | Gmail | Outlook | |
|---|---|---|---|---|
| E2E encryption | ✅ (Proton-to-Proton) | ✅ (Tuta-to-Tuta) | ❌ | ❌ |
| Zero-access storage | ✅ | ✅ | ❌ | ❌ |
| Open-source client | ✅ | ✅ | ❌ | ❌ |
| Free tier | ✅ | ✅ | ✅ | ✅ |
| Jurisdiction | Switzerland | Germany | US | US/Ireland |
| PGP support | ✅ | Limited | ❌ | ❌ |
Tutanota (now Tuta) is a good alternative to Proton Mail with comparable encryption but its own protocol instead of PGP.
Migration from Gmail
Proton has an import tool to import existing Gmail messages. The process takes hours to days depending on mailbox size. Your Gmail address keeps receiving afterwards — set up a forward or change your address gradually at services.
Caveats
Free tier is limited: 1 GB storage and 150 emails per day is sufficient for light use but tight for someone wanting to use Proton as their primary email.
Email is inherently old and insecure: The SMTP protocol was designed without privacy in mind. Proton does the maximum within those constraints. For truly confidential communication, Signal or PGP is structurally more secure.
Proton has provided data to police: In 2021 Proton provided IP addresses of a climate activist following a Swiss court order. Zero-knowledge encryption protected the content — but the metadata (IP, account creation timestamp) was available. Use Tor or VPN when logging in if you want to prevent IP logging.
Conclusion
Proton Mail is the best choice if you want to switch from Gmail or Outlook to a privacy-friendly email provider. The encryption is solid, the free tier is usable, and the ecosystem (VPN, Drive, Calendar, Pass) makes Proton a complete privacy stack.
Understand that email has structural limits — it is not a replacement for Signal for sensitive communication.
See also:
- PGP practical guide — encrypting email with external recipients
- Recommended privacy apps — full overview of recommended apps
- ProtonVPN review — combine Proton Mail with ProtonVPN