
Proton Mail review: encrypted email, in practice
- VersionDude
- Tooling
- 5 min read
What Proton Mail actually offers - end-to-end encryption, open-source apps and a Swiss privacy base - and where its trade-offs lie.
Proton Mail is an email service built around end-to-end and zero-access encryption. By design, messages are stored encrypted so that Proton itself cannot read them. This is the core difference from mainstream providers. They often encrypt only the connection while keeping readable copies of your mail on their servers. Proton stores your mailbox in a form it has no key to. So the provider's promise is enforced by maths, not by policy alone.
The service is based in Switzerland and run by Proton AG. That places it under Swiss privacy law, a setting often chosen for its strong data-protection record. Just as important, its client apps are open source. That lets outside reviewers check how the cryptography is actually built. A privacy-friendly legal base plus checkable code is a big part of what gives Proton Mail its credibility.
How it feels day to day

In daily use it behaves like a normal mailbox. There are web, desktop and mobile apps, folders and labels, search, and the everyday features you expect from email. The encryption mostly happens out of sight, in the background. So the learning curve for an average user is gentle. For most people, switching to Proton Mail feels less like adopting a security tool and more like changing email providers.
Encryption, plans and the wider suite
Mail between Proton users is automatically end-to-end encrypted. That means only the sender and recipient can read it. For people on other providers, Proton offers password-protected messages. The recipient gets a link and opens the message after entering a shared password. This extends end-to-end protection beyond Proton when you need it. It is an explicit, opt-in step, not something that just happens with any outside address.
The plans follow a familiar pattern. A free tier exists with limited storage and a single address. That is enough to try the service or run a low-volume mailbox. Paid plans add more storage, custom domains, more aliases, and access to the wider Proton suite. Prices and exact limits change over time. So the sensible move is to start on the free tier. Upgrade only once you know the service fits your habits.
Proton Mail also fits into a broader set of tools, which is part of its appeal. The same account can extend to Proton's calendar, drive, password manager and VPN. They all share the privacy-first approach and a single login. For someone moving away from an ad-funded set of apps, this gives a coherent toolkit rather than a single isolated app.
The honest trade-offs
The honest trade-offs deserve to be stated plainly. End-to-end encryption only fully applies between Proton users or with password-protected messages. An ordinary email to a standard Gmail account cannot be magically end-to-end encrypted. That is a limit of how email works across providers, not a flaw in Proton. Some convenience features also differ from mainstream services because of the encryption model. And a few integrations common elsewhere are handled differently here.
Encrypted search is a concrete example of the trade-off in action. The server cannot read your stored mail. So some tasks that other providers do on the server must be done in a different way. That can change how features behave compared with what heavy Gmail users are used to. These are not flaws. They are the natural result of a design where the provider cannot read your data.
It is also worth setting realistic expectations about metadata and recipients. Encrypting message bodies does not hide the fact that an email was sent. And a message to an outside provider is only as private as that provider and recipient make it. Proton Mail protects what it can within the limits of the email system. It cannot secure the other side of a conversation after the fact. Being clear about that boundary is part of using it well.
Who it is really for
For anyone who wants email that the provider cannot mine, those trade-offs are usually worth it. Proton Mail is one of the most credible, openly checkable options for people moving away from ad-funded email. And it manages strong privacy without asking for deep technical skill. If your goal is a mainstream-feeling mailbox whose contents stay truly private, it is one of the easiest credible places to start.



It is also worth setting realistic expectations about metadata and recipients. Encrypting message bodies does not hide the fact that an email was sent. And a message to an outside provider is only as private as that provider and recipient make it. Proton Mail protects what it can within the limits of the email system. It cannot secure the other side of a conversation after the fact. Being clear about that boundary is part of using it well.