Tuta
tuta.comFree and open source email service based in Germany. It has a basic intuitive UI, secure native mobile apps and desktop email clients, anonymous signup, and an encrypted calendar. Tuta has a full-featured free plan and premium subscription plans allowing for custom domains (starting at $3/month). Tuta does not use OpenPGP like other encrypted mail providers, instead they use a standardized, hybrid method consisting of symmetrical and asymmetrical algorithms (with AES256, and RSA 2048 or ECC (x25519) and Kyber-1024). This causes compatibility issues when communicating with contacts using PGP. But it does allow them to encrypt much more of the header data (body, attachments, subject lines, and sender names etc) which PGP mail providers cannot do. The recent upgrades to Tuta's encryption algorithm makes data stored and sent with their service safe against attacks posed by quantum computers.
- Homepage: tuta.com
- GitHub: github.com/tutao/tutanota
- Privacy: tosdr.org/en/service/157
- iOS App: apps.apple.com/us/app/encrypted-email-tuta/id922429609
- Android App: https://play.google.com/store/apps/details?id=de.tutao.tutanota
- Subreddit: r/tutanota
- Web info: web-check.xyz/results/tuta.com
Tuta Privacy Policy
Privacy Policy Summary
- Personal data that is stored is encrypted and data is deleted by the end of the calendar year for terminated accounts.
- Tutanota
- This service does not track you
- Service does not allow alternative accounts
- You agree to defend, indemnify, and hold the service harmless in case of a claim related to your use of the service
- You can request access and deletion of personal data
- This service does not sell your personal data
- The service does not share user information with third parties
- The service is transparent regarding goverment request or inqueries
- There is a date of the last update of the agreements
- Provides information on security practices
- Cookies are used but do not collect personal information or track usage.
- All Tutanota Data is Encrypted End-to-End
- User-generated content is encrypted, and this service cannot decrypt it
- Accessibility to this service is guaranteed at 99% or more
- Archives of their agreements are provided so that changes can be viewed over time
- You will be notified about website maintenance
- You are prohibited from sending chain letters, junk mail, spam or any unsolicited messages
- The service claims to be GDPR compliant for European users
- The service is open-source
- You authorise the service to charge a credit card supplied on re-occurring basis
- The data retention period is kept to the minimum necessary for fulfilling its purposes
- Features of the website are made available under a free software license
- You can retrieve an archive of your data
- The court of law governing the terms is in Hanover, Germany
- The court of law governing the terms is in a jurisdiction that is friendlier to user privacy protection.
- IP addresses of website visitors are not tracked
Documents
- Terms and PrivacyCreated 29 Aug 18, Last modified 3 years ago
- CGVCreated 08 Jan 19, Last modified 3 years ago
- Privacy Statement of Tutao GmbHCreated 08 Jan 19, Last modified 3 years ago
- Privacy Statement of Tutao GmbHCreated 08 Jan 19, Last modified 3 years ago
- FAQsCreated 31 Jan 19, Last modified 3 years ago
- PrivacyCreated 12 May 19, Last modified 3 years ago
About the Data
This data is kindly provided by tosdr.org. Read full report at: #157
Tuta Source Code
Author
Description
Tuta is an email service with a strong focus on security and privacy that lets you encrypt emails, contacts and calendar entries on all your devices.
Homepage
https://tuta.comLicense
GPL-3.0
Created
28 Jul 14
Last Updated
04 Oct 24
Latest version
Primary Language
TypeScript
Size
194,737 KB
Stars
6,016
Forks
518
Watchers
6,016
Language Usage
Star History
Top Contributors
- @charlag (2753)
- @ganthern (1368)
- @armhub (1038)
- @johnbotris (650)
- @mpfau (481)
- @rezbyte (238)
- @wrdhub (199)
- @vitoreiji (189)
- @paw-hub (178)
- @bedhub (163)
- @vaf-hub (151)
- @nokhub (120)
- @nowhub (119)
- @murilopereirame (118)
- @jowlo (70)
- @sarashub (65)
- @jomapp (36)
- @andrehgdias (32)
- @Pa7Hub (28)
- @wec43 (19)
- @tutao-jenkins (16)
- @rih-tutao (15)
- @SnowyMouse (15)
- @hahub (12)
- @kitsugo (11)
- @rdvincent (8)
- @tuta-sudipg (6)
- @joshuaobrien (5)
- @tk421 (4)
- @divarre (4)
Recent Commits
- jenkins build server (04 Oct 24)
v246.241004.0
- jenkins build server (04 Oct 24)
update translations
- wrd (04 Oct 24)
Add needed functions to calendar IosMobileContactsFacade Fix #7663
- ivk (02 Oct 24)
v246.241002.0
- ivk (02 Oct 24)
[build] Update express, body-parser
- ivk (02 Oct 24)
[build] Update rollup to 4.24.0
- nig (30 Sept 24)
[desktop] allow http2 in undici config we still get too many requests from the desktop client when it is rebuilding the search index. Undicis http2 support should have matured enough for us to enable it to see if it is stable enough.
- ivk (02 Oct 24)
Update translations
- tutao-mac (26 Aug 24)
[ios] Prevent duplicate contacts on iOS Prevent the user from creating duplicate contacts on iOS by mistake: - Prevents accidentally turning on sync when an external contact sync provider is active, such as iCloud. - Offer the user the option to delete contacts from their device on iOS. Also separate handling of contacts on iOS between native-only methods and Tuta's abstraction of structured contacts to make the contact code much easier to maintain (thanks, jat!) Fixes #6875 Co-authored-by: ivk <[email protected]> Co-authored-by: jat <[email protected]> Co-authored-by: hrb <[email protected]> Co-authored-by: wrd <[email protected]>
- ivk (02 Oct 24)
Fix login after clicking on email notification After rebase of restructuring for app split we were left with two versions of `openMailbox()`. The one that supports opening mails was not used anymore. We swapped the implementation for a real one, moved it into the mail part of the source tree and refactored both `openMailbox()` and `openCalendar()` to be classes with injected dependencies. Fix #7650 Co-authored-by: hrb-hub <[email protected]>
- hrb-hub (01 Oct 24)
[desktop] Fix run on startup on windows Downgrades winreg to 1.2.4 from 1.2.5 as new version doesn't work with whitespaces in values Fixes #7609 Co-authored-by: ivk <[email protected]>
- hrb-hub (30 Sept 24)
Fixes dropdown appearing on far right of viewport The issue is a result of a miscalculation of the dropdown.style.right Introduced in PR-7624 Fixes: #7636
- hrb-hub (26 Sept 24)
Fixes text cutoff in external content dropdown In some languages like German or Russian the external content dropdown text doesn't fit and so it gets cutoff with ellipsis. This commit fixes that by shifting the dropdown as needed so the entire text is displayed. When fitting the entire text on screen isn't possible, the dropdown spans the whole width and text is cutoff. Fixes: #7458 Co-authored-by: paw <[email protected]>
- jenkins build server (01 Oct 24)
v246.241001.0
- jenkins build server (01 Oct 24)
update translations
- mup (01 Oct 24)
Removes take-over field from account deletion on iOS This field can lead users to think that they must provide another account to delete their account. This commit removes the field to prevent this.
- jenkins build server (30 Sept 24)
v246.240930.0
- jenkins build server (30 Sept 24)
update translations
- mup (30 Sept 24)
Adds instruction to generate calendar ios project if needed
- mup (27 Sept 24)
v246.240927.0
- mup (27 Sept 24)
Fixes android build to use bundle instead of apk This commit replaces the apk build process by a bundle build process since PlayStore doesn't accept APKs anymore for new apps.
- mup (30 Sept 24)
Adds instruction to generate calendar ios project
- mup (30 Sept 24)
Adds instruction to generate calendar ios project
- and (25 Sept 24)
v246.240925.0
- mup (25 Sept 24)
Fixes week days not part of the header This commit fixes the months view to make the week days part of the header again by creating a container to hold the days of the month
- mup (25 Sept 24)
Fixes alarm re-schedule This commit fixes calendar alarm scheduling when re-enabling the push identifier by calling reRegister right after re-enabling the identifier.
- and (24 Sept 24)
v246.240924.2
- and (24 Sept 24)
v246.240924.1
- mup (24 Sept 24)
Fixes the settings page Removes the header from tablet view and fixes the titles on inner settings pages.
- mup (24 Sept 24)
Fixes search bar autofocus Check if is app before automatically focus on the SearchBar.ts
Tuta Website
Website
Tuta Mail: Create a secure, private & encrypted email account for free
Tuta is the secure email service, built in Germany. Use encrypted emails on all devices with our open source email client, mobile apps & desktop clients.
Redirects
Does not redirect
Security Checks
All 66 security checks passed
Server Details
- IP Address 185.205.69.12
- Location Hanover, Niedersachsen, Germany, EU
- ISP Tutao GmbH
- ASN AS210909
Associated Countries
- US
- DE
Saftey Score
Website marked as safe
100%
Blacklist Check
tuta.com was found on 0 blacklists
- ThreatLog
- OpenPhish
- PhishTank
- Phishing.Database
- PhishStats
- URLhaus
- RPiList Not Serious
- AntiSocial Blacklist
- PhishFeed
- NABP Not Recommended Sites
- Spam404
- CRDF
- Artists Against 419
- CERT Polska
- PetScams
- Suspicious Hosting IP
- Phishunt
- CoinBlockerLists
- MetaMask EthPhishing
- EtherScamDB
- EtherAddressLookup
- ViriBack C2 Tracker
- Bambenek Consulting
- Badbitcoin
- SecureReload Phishing List
- Fake Website Buster
- TweetFeed
- CryptoScamDB
- StopGunScams
- ThreatFox
- PhishFort
Website Preview
Tuta Android App
Update Info
- App Tuta
- Creation Date 22 Feb 24
- Last Updated 14 Jul 24
- Current Version 218.240219.0
Trackers
No trackers found
Permissions
- Access Network State
- Authenticate Accounts
- Foreground Service
- Get Accounts
- Internet
- Manage Accounts
- Post Notifications
- Read Contacts
- Receive Boot Completed
- Request Ignore Battery Optimizations
- Schedule Exact Alarm
- Use Biometric
- Use Credentials
- Use Exact Alarm
- Use Fingerprint
- Vibrate
- Write Contacts
- Write External Storage
Tuta iOS App
App Info
Encrypted Email Tuta
Tuta (formerly Tutanota), the fully secure encrypted email and calendar app, enables you to keep your private data private! We never compromise on security or privacy. Tuta comes with a light & beautiful GUI, a dark theme, offline availability, instant push notifications, auto-sync, full-text search, swipe gestures and more. The business email plans have flexible user management and admin levels so you can manage all your company’s email needs easily. What you'll love about the Tuta email client for iOS: - Create a free email address (ending in @tuta.com, @tutanota.com, @tutanota.de, @tutamail.com, @tuta.io or @keemail.me) with 1 GB of free storage. - Create custom domain email addresses for €3 per month with optional catch-all & unlimited email addresses. - Instant display of incoming emails, no need to swipe down to refresh. - Instant access to your encrypted email, calendars & contacts - also when offline. - Quick swipe gestures to manage your inbox easily. - Instant push notifications. - Auto-complete mail addresses as you type. - Auto-sync between app, web and desktop email clients. - Tuta is a free & open source (FOSS) email app so that security experts can check the code. - Find everything you're looking for with our secure & private full-text search of your encrypted email. - Anonymous registration without a phone number. - Send calendar invites directly from the secure calendar app. - Create an unlimited number of encrypted calendars with any paid plan. - Send and receive end-to-end encrypted emails to anybody for free. - Send and receive old-fashioned emails (not end-to-end encrypted). - Automatically encrypt subject, content & attachments for maximum security. - Business email with flexible user creation and admin levels. The secure email app Tuta Mail enables you to send end-to-end encrypted emails to anybody. Even emails that are being sent without end-to-end encryption and all your contacts are stored securely encrypted on the Tutanota servers based in Germany. Tutanota also has an encrypted calendar, easily accessible from within the mail client. Our passion for privacy. Tuta Mail is being built by a team passionate about everybody's right to privacy. We are supported by an amazing community, which enables us to grow our team continuously, making the open source email app Tuta a lasting success without depending on venture capital interests. Tuta respects you & your data: - Only you can access your encrypted emails, calendars & contacts. - Tuta does not track or profile you. - Open source clients & apps. - Innovative full-text search feature lets you easily search your mailbox. - TLS with support of PFS, DMARC, DKIM, DNSSEC and DANE. - Secure password reset that gives us absolutely no access. - 100% developed and located in Germany under strict Data Protection Laws (GDPR). - Uses 100% renewable energy. Official website: https://tuta.com Source code: https://github.com/tutao/tutanota Crypto Notice This distribution includes cryptographic software. The country in which you currently reside may have restrictions on the import, possession, use, and/or re-export to another country, of encryption software. BEFORE using any encryption software, please check your country's laws, regulations and policies concerning the import, possession, or use, and re-export of encryption software, to see if this is permitted. Seehttp://www.wassenaar.org/ for more information. The U.S. Government Department of Commerce, Bureau of Industry and Security (BIS), has classified this software as Export Commodity Control Number (ECCN) 5D002.C.1, which includes information security software using or performing cryptographic functions with asymmetric algorithms. The form and manner of this distribution makes it eligible for export under the License Exception ENC Technology Software Unrestricted (TSU) exception (see the BIS Export Administration Regulations, Section 740.13) for both object code and source code.
Rating
Version Info
- Current Version 220.240326.0
- Last Updated 27 Mar 24
- First Released 30 Nov 14
- Minimum iOS Version 15.0
- Device Models Supported 93
App Details
- IPA Size 15.99 Mb
- Price Free (USD)
- Age Advisory 4+
- Supported Languages 55
- Developer Tutao GmbH
- Bundle ID de.tutao.tutanota
Screenshots
Tuta Socials
Tuta Reviews
More Encrypted Email
-
An end-to-end encrypted anonymous email service. ProtonMail has a modern easy-to-use and customizable UI, as well as fast, secure native mobile apps. ProtonMail has all the features that you'd expect from a modern email service and is based on simplicity without sacrificing security. It has a free plan or a premium option for using custom domains (starting at $5/month). ProtonMail requires no personally identifiable information for signup, they have a .onion server, for access via Tor, and they accept anonymous payment: BTC and cash (as well as the normal credit card and PayPal).
Not Open Source -
An open source, privacy-focused, encrypted email service supporting SMTP, IMAP, and API access
-
Mailfence supports OpenPGP so that you can manually exchange encryption keys independently from the Mailfence servers, putting you in full control. Mailfence has a simple UI, similar to that of Outlook, and it comes with bundled with calendar, address book, and files. All mail settings are highly customizable, yet still clear and easy to use. Sign up is not anonymous, since your name, and prior email address is required. There is a fully-featured free plan, or you can pay for premium, and use a custom domain ($2.50/ month, or $7.50/ month for 5 domains), where Bitcoin, LiteCoin or credit card is accepted.
Not Open Source -
A Berlin-based, eco-friendly secure mail provider. There is no free plan, the standard service costs €12/year. You can use your own domain, with the option of a catch-all alias. They provide good account security and email encryption, with OpenPGP, as well as encrypted storage. There is no dedicated app, but it works well with any standard mail client with SSL. There's also currently no anonymous payment option.
Not Open Source
About the Data: Tuta
API
You can access Tuta's data programmatically via our API.
Simply make a GET
request to:
https://api.awesome-privacy.xyz/communication/encrypted-email/tuta
The REST API is free, no-auth and CORS-enabled. To learn more, view the Swagger Docs or read the API Usage Guide.
About the Data
Beyond the user-submitted YAML you see above, we also augment each listing with additional data dynamically fetched from several sources. To learn more about where the rest of data included in this page comes from, and how it is computed, see the About the Data section of our About page.
Share Tuta
Help your friends compare Encrypted Email, and pick privacy-respecting software and services.
Share Tuta and Awesome Privacy with your network!