Security · ummah.email

Our amanah to you

In Islam, amanah means trust and responsibility. When you give us your email, you are trusting us with your private communication. We take that seriously.

This page tells you exactly what we protect, what we don't, and what you can do to protect yourself further. No marketing language. No vague promises. Just the truth.

Encryption in transit

IMAPPort 993TLS encrypted

SMTPPort 465TLS encrypted

SubmissionPort 587STARTTLS

WebmailHTTPSTLS 1.3

All connections between your device and our server are encrypted with TLS, secured by Let's Encrypt certificates. Nobody between you and our server can read your email in transit.

Encryption at rest

Today: emails stored on our server are encrypted-at-rest at the volume level via LUKS. This means a stolen disk cannot be read offline. The mail database itself is not yet per-message cryptographically protected, which is standard for most email servers (Postfix, Dovecot, hosted providers).

Roadmap: end-to-end encryption between ummah.email mailboxes is on Sprint 11 (Q3 2026). Until then, treat the server as a trusted-but-not-zero-knowledge custodian.

Who can access your email

You

Full access via IMAP, webmail, or any email client.

Server administrator

UMG security operators have root access to the mail server. We have the technical ability to access stored email, but will not do so except: (a) when required by law, or (b) to diagnose a technical issue you have reported. This is our amanah.

Hosting provider

Hetzner (Germany) has physical access to the hardware. They operate under EU law and GDPR, which provides stronger legal protections than US-based providers. They do not access customer data without a valid legal order.

Nobody else

No advertisers. No data brokers. No AI training. No third parties. Your email is not a product.

End-to-end encryption (optional, today)

If you need absolute privacy where even we cannot read your messages, enable OpenPGP encryption in your email client. When you encrypt a message with PGP before sending, it is stored as an opaque blob on our server. We cannot decrypt it. Only the intended recipient with the matching private key can.

PGP is supported in:

Webmail (webmail.ummah.email) with built-in PGP support
Thunderbird with native OpenPGP support
Apple Mail via GPG Suite
K-9 Mail / FairEmail on Android with OpenKeychain

When PGP is active, your email is end-to-end encrypted. The server stores ciphertext it cannot read. This is the strongest protection available today.

Email authentication

Every email sent from ummah.email is signed with DKIM (DomainKeys Identified Mail). This means recipients can verify that the email actually came from our server and was not tampered with in transit.

We also publish SPF and DMARC records to prevent others from sending email that appears to come from @ummah.email.

What we will never do

Scan your email to show you ads
Sell or share your data with third parties
Use your email content to train AI models
Insert tracking pixels into your messages
Read your email without your knowledge or a legal obligation
Hand over data to any government without a valid legal order under EU jurisdiction

Infrastructure

Mail serverOpen-source mail engineour hardware

LocationHelsinki, FinlandEU / GDPR

ProviderHetzner Online GmbHbare-metal

TLSLet's Encryptauto-renewed

OperatorUmmah Media Group LLCDelaware US

Our mail server handles IMAP, SMTP, JMAP, CalDAV, CardDAV, spam filtering, and DKIM signing. It is a single-component stack with no external databases, no analytics, and no third-party integrations touching your mail.

Reporting a security issue

If you discover a vulnerability in our systems, please contact salaam@ummah.email. We will acknowledge your report within 48 hours and work to resolve it promptly.

We do not currently offer a bug bounty program, but we deeply appreciate responsible disclosure.