How can we help?
Common questions, migration guides, system status and our apps. Still stuck? Mail [email protected] — real humans, two-business-day reply.
Frequently asked
Is lowkeymail compatible with Gmail, Apple Mail, and Thunderbird?
Yes — on Plus and Pro plans, we expose IMAP, SMTP and POP. Your mail stays end-to-end encrypted, with desktop OpenPGP keys decrypting locally. Free plan is browser-only.
What happens if a service I gave an alias to leaks?
Only that alias is exposed. The rest of your inbox stays anonymous. Disable the alias from your dashboard and every future message bounces at SMTP. Your real address was never anywhere near that database.
Can you read my mail if a court orders you to?
No. Message bodies are encrypted with a key generated on your device that we don't possess. We can hand over ciphertext, account metadata, and routing logs — and we will if compelled — but the bodies are not readable to us or to anyone who obtains them from us. See the transparency report.
What if I lose my password?
Without your password, your private key cannot be decrypted, and we cannot decrypt it for you. We offer paper-recovery on signup — print it once, store it somewhere safe. Without recovery, your mail is unrecoverable. We're upfront about this; it's the trade for zero-knowledge.
Why aren't Calendar / Drive / Password manager available yet?
They're on the way, but we won't ship them until the encrypted-storage layer they share is audited. We'd rather take longer than ship a half-baked vault.
Why is the Free tier invite-only?
So we can grow into our domain pool without overcrowding popular usernames, and so we can keep spam patterns recognisable. Plus and Pro skip the queue. Join the waitlist.
Can I bring my own domain?
Yes, on Plus (up to 2) and Pro (up to 10). Point your DNS at us, verify ownership, and the mailbox is yours. Your domain becomes another routing target for aliases.
Do you support PGP for inbound mail too?
Yes. If a correspondent encrypts mail to you with your published public key, it arrives encrypted and is decrypted locally on your device. If they don't — most won't — the body is encrypted at rest using your own key once it lands on our server.
Migrating mail
The migration tool runs in your browser, fetches mail over IMAP, and writes it into your lowkeymail inbox encrypted with your key. We never see plaintext.
From Gmail
- Generate a Google app password (Google Account → Security → 2-Step Verification → App passwords).
- In lowkeymail: Settings → Migrate → Gmail. Paste app password.
- Choose labels to import. The tool runs in the background and shows progress.
From iCloud Mail
- Generate an app-specific password at appleid.apple.com → Security → App-Specific Passwords.
- In lowkeymail: Settings → Migrate → iCloud. Paste app-specific password.
- iCloud Hide-My-Email aliases can be redirected to a lowkeymail alias for an automatic cutover — instructions in the dashboard.
From any IMAP server
- Have ready: host, port, username, password.
- Settings → Migrate → Custom IMAP. Connection is encrypted in transit; we never store credentials after the migration completes.
Apps
The browser app is the canonical client. Native apps come with the same key-handling guarantees.
Account recovery
Three paths back into your inbox, in order of how much they can recover:
- Password remembered — sign in normally. Most common path.
- Recovery code on file — the printed code you got at signup. Unlocks your private key offline.
- Trusted-device key — if you authorised another device, it can re-derive the key on a new device.
We don't offer email-link or SMS reset for the master password. By design, these would let someone with access to your phone or email reset your account — defeating the encryption. If all three paths are gone, the mail is gone. We are sorry; we are not going to lie to you about it.
System status
Live status of the platform. Detailed history at status.lowkeymail.com.