Password Encrypted Messages (PEM) use symmetric encryption based on a shared password agreed upon by the sender and recipient. This allows encrypted messages to be sent even to those who do not use PGP keys. The recipient receives a link to decrypt the message on SilentSend servers. The password must be transmitted via an alternative secure communication channel.

A digital signature is an analogue of a handwritten signature or seal, but with increased protection against forgery. It guarantees the authenticity of the sender and the integrity of the content, eliminating the possibility of falsifying messages.

SilentSend Keystore is available directly in your account and supports the creation, import and management of OpenPGP keys without third-party plugins. You can generate multiple key pairs, import existing ones and perform advanced operations - a feature unique to webmail solutions.

2FA adds an extra layer of security by requiring not only a password (“something you know”) but also a physical token or code (“something you have”) to access. This minimizes the risk of a password leak.

All connections to SilentSend servers (web interface, IMAP/POP/SMTP) are protected by TLS/SSL. Perfect Forward Secrecy (PFS) prevents decryption of past sessions even if keys are compromised. HSTS automatically redirects browsers to secure connections, blocking access via HTTP.

Encrypts outgoing emails using TLS, preventing interception and spoofing. However, this only works for servers that support TLS. Encrypted connections are also used to deliver emails to our servers.

checks incoming emails according to the standards:

• - SPF — blocks the substitution of the sender's address by checking the IP addresses of the domain.
• - DKIM — checks the digital signature of the message to confirm authenticity.

Messages without verification are not always dangerous, but require increased attention.

SilentSend uses open-source operating systems and software where security is a priority. Despite rare vulnerabilities, updates are released within hours of their discovery. We test and implement fixes quickly, minimizing the risk of exploitation.

SilentSend servers are managed exclusively by our team without any subcontractors. The data center is protected by:

• Physical security: Biometric authentication, 24/7 security, video surveillance, security fences.
• Access control: Only verified engineers are granted access after a multi-stage verification.
• Data sovereignty: No third-party interference ensures compliance with GDPR and European privacy standards.