Mailbox (company)

Last updated
mailbox
Mailbox 2025 logo.svg
Available in English, German
Headquarters Berlin,
Germany
OwnerHeinlein Hosting GmbH [1]
URL mailbox.org
CommercialYes
RegistrationRequired
LaunchedFebruary 20, 2014;11 years ago (2014-02-20)
Current statusOnline

mailbox (formerly mailbox.org) is a paid encrypted email service provider based in Germany. [2] The encryption system uses PGP like most other encrypted email providers. Since September 2025, mailbox positions itself as a "digitally sovereign workplace" and offers an integrated suite of email, calendar, video conferencing, and cloud storage. [3] It competes against Microsoft 365 and Google Workspace as a German-based provider. Its target customers include private, business, school and public authorities. [4]

Contents

History

Historically, mailbox.org traces back to JPBerlin, which has been offering independent and ad-free email accounts based in Germany since 1989. [5] JPBerlin was founded by the former Junge Presse Berlin (Young Press Berlin) with Peer Heinlein as administrator. Peer Heinlein continues to operate it as an independent service within his Heinlein company group to this day in the spirit of the original association. [6]

In the wake of the global surveillance and espionage affair, mailbox.org was created in 2014 according to founder Peer Heinlein from the desire to build an "internationally scaling mail provider that sets new standards in terms of security, transparency and freedom from advertising". [6] [7]

Since 2016, mailbox has offered a Tor exit node for anonymizing connection data. [8] If mailbox's services are accessed via the Tor anonymization network and the Tor exit server, mailbox no longer logs IP addresses that would be suitable for data retention. [9] [10]

After mailbox.org had been providing email addresses for teachers in Thuringia on behalf of the Thuringian Ministry of Education, Youth and Sport since 2020, the Berlin Senate Department for Education, Youth and Family also had all of its approximately 33,000 Berlin teachers at public schools provided with secure email accounts by mailbox.org starting in 2021. [11] [12] However, in December 2022, Berlin schools were again planned to convert from mailbox email to Microsoft Exchange emails as reported by Der Tagesspiegel. [13]

In September 2025, mailbox.org was renamed mailbox. [14]

Data centers and infrastructure

Behind mailbox is the Heinlein Group in the IT industry. mailbox operates its servers exclusively in German data centers in Berlin, which are supplied with green energy. No data is transmitted abroad, thereby excluding legal uncertainties. [15] [16]

Features

Services

mailbox divides its offerings into those for private customers and those for business customers. The offerings include email services with spam and virus protection, web groupware including online office suite, a proprietary video conferencing system, and file sharing – as an alternative to Microsoft 365, Google Workspace, or Google Drive hosted in Germany. [17]

Pricing

mailbox charges private customers according to the prepaid principle. If desired, payment can also be made by cash deposit into the bank account or anonymously by cash by post. [18]

Security

mailbox developed various new approaches to protect user data: for example, the provider was the first to introduce the option of subsequently encrypting all incoming emails with the user's public PGP key, thus providing special protection against access by third parties should the mailbox password be lost or compromised. [19]

When using the webmail offer, it is possible to encrypt and decrypt emails using PGP and since November 2023 also using S/MIME without special client software (email program with any plugins that may be required), without necessarily using a browser extension such as Mailvelope. [20] Keys and the encryption process take place outside the user's sphere of influence on mailbox's servers, which, however, contradicts the principle of end-to-end encryption. However, according to Peer Heinlein, CEO of mailbox, the private keys are stored on the servers at all times with a password known only to the user, so they cannot be viewed by administrators. [21] In addition, this avoids the need to store private PGP or S/MIME keys on end devices that are perceived as insecure.

mailbox used Extended Validation Certificates as one of the first providers alongside security mechanisms such as DANE and DNSSEC. Through the selection of high-quality cipher suites and additional HTTP security headers such as HSTS, a particularly high level of encryption and very good protection against manipulation by third parties is achieved. [22]

Video conferencing

The video conference service is based on the open-source OpenTalk software. [23] [24]

Additional features

Users of mailbox can also be reached via Jabber chat through a dedicated XMPP server. [25] The service also offers address books, calendars and an online office suite that includes a word processor and spreadsheet application.

Software used

As the basis for the webmail interface, mailbox uses the free software Open-Xchange OX App Suite from the company Open-Xchange. [26] For video conferencing, OpenTalk is used.

Data protection and advertising

The service does not send advertising emails and according to its own statements does not analyze the contents of users' emails, [27] as is common practice with the world's most widely used email service Gmail – see also Gmail's business model. The service removes client IP addresses and revealing information about the email client and operating system used from emails sent by its users.

Transparency

mailbox publishes an annual transparency report detailing the number of information requests it received from various governments. [28]

Reception

In February 2015 and October 2016, mailbox.org became a test winner alongside Posteo by Stiftung Warentest. [29] [30]

In June 2021, mailbox.org became a test winner alongside the Swiss Linuxfabrik in the "Cloud Service" category by the Swiss consumer magazine K-Tipp . [31] [32]

A 2018 review by Ctrl Blog highlighted mailbox.org as a feature-rich and privacy-focused email provider. The reviewer praised its support for PGP encryption, productivity tools and commitment to user privacy. However, the review also criticized the complexity of the PGP setup for non-technical users and noted that some user interface elements could be confusing or unintuitive. [33]

After the Russian telecommunications supervisory authority Roskomnadzor requested a ban of mailbox.org in Russia in December 2019, mailbox.org declared in January 2020 that they would be legally represented in a legal dispute, as they regarded the authority's actions as an attempt at Internet censorship. [34] In February 2020, Roskomnadzor withdrew the blocking request filed against mailbox.org after mailbox.org agreed to have its own publicly viewable web imprint data entered into the Russian telecommunications directory. [35]

See also

References

  1. "Legal notice | mailbox.org". mailbox.org. Retrieved 2025-09-12.
  2. Brinkmann, Martin (Feb 24, 2014). "Mailbox.org: German email provider offering full inbox encryption". Archived from the original on 2023-07-27. Retrieved 2023-07-27.
  3. "mailbox Relaunch: Europas neuer digital souveräner Arbeitsplatz | mailbox". mailbox.org (in German). 2025-09-09. Retrieved 2025-09-09.
  4. Huber, Mathias (2014-02-21). "Mailbox.org: Heinlein startet modernisiertes Mail-Angebot". Linux-Magazin (in German). Archived from the original on 2023-07-27. Retrieved 2023-07-27.
  5. "Das sichere E-Mail-Postfach für 1 €/Monat". JPBerlin - Politischer Provider (in German). Archived from the original on 2023-07-27. Retrieved 2023-07-27.
  6. 1 2 Sobiraj, Lars (2021-03-19). "mailbox.org entstand wegen Edward Snowden: Peer Heinlein im Gespräch". Tarnkappe.info (in German). Archived from the original on 2023-07-27. Retrieved 2023-07-27.
  7. "About mailbox.org - Our team, our history, our mission | mailbox.org". mailbox.org. Archived from the original on 2023-06-28. Retrieved 2023-07-27.
  8. "Tor Good Exit Nodes". www.privacy-handbuch.de. Archived from the original on 2023-07-27. Retrieved 2023-07-27.
  9. professional, com!. "Mailbox.org betreibt eigenen Tor Exit Node". com! - Das Computer-Magazin (in German). Archived from the original on 2023-07-27. Retrieved 2023-07-27.
  10. online, heise (2016-02-04). "Mailbox.org betreibt Tor-Exit-Node". Security (in German). Archived from the original on 2023-07-27. Retrieved 2023-07-27.
  11. "Sichere E-Mail für Lehrer: mailbox.org schließt 5-Jahres-Vertrag mit Bildungsministerium Thüringen". mailbox.org (in German). 2020-01-08. Retrieved 2023-11-25.
  12. "Datensichere Dienstmails für Lehrkräfte kommen: Die Testphase läuft bereits". www.berlin.de (in German). 2021-01-19. Archived from the original on 2023-07-27. Retrieved 2023-07-27.
  13. "Anbieterwechsel empört Abgeordnete: Berlins Lehrkräfte bekommen neue Mail-Adressen". Der Tagesspiegel Online (in German). ISSN   1865-2263. Archived from the original on 2023-07-27. Retrieved 2023-07-27.
  14. "mailbox Relaunch: Europas neuer digital souveräner Arbeitsplatz | mailbox". mailbox.org (in German). 2025-09-09. Retrieved 2025-09-09.
  15. "Über uns". mailbox.org (in German). 2025-09-09. Retrieved 2025-09-09.
  16. "Business". mailbox.org (in German). 2025-09-09. Retrieved 2025-09-09.
  17. Huber, Mathias (2014-12-17). "Mailbox.org mit mobilem Officepaket". Linux Magazin (in German). Retrieved 2016-12-20.
  18. "mailbox.org für Privatkunden/Häufige Fragen: Wie kann ich bezahlen?". mailbox.org (in German). Retrieved 2023-05-08.
  19. "Stiftfilm: Das verschlüsselte Postfach | mailbox.org – Ihr sicherer E-Mail-Anbieter". mailbox.org (in German). 2015-11-17. Archived from the original on 2015-11-17. Retrieved 2023-07-27.
  20. "Neues Feature: mailbox.org führt S/MIME im Webmailer ein". mailbox.org (in German). Retrieved 2023-11-25.
  21. Bleich, Holger (2015-07-10). "Webmail mit PGP bei Mailbox.org". c't (16/2015). Archived from the original on 2022-04-22. Retrieved 2023-07-27.
  22. "Security features & encryption | mailbox.org". mailbox.org. Archived from the original on 2023-07-10. Retrieved 2023-07-27.
  23. "Sag Hallo zu OpenTalk – die sichere Videokonferenz der Zukunft". mailbox.org (in German). 2022-10-20. Retrieved 2023-11-25.
  24. "OpenTalk · GitLab". GitLab. Archived from the original on 2023-08-19. Retrieved 2023-08-19.
  25. "Golem.de: IT-News für Profis". www.golem.de. Archived from the original on 2023-07-27. Retrieved 2023-07-27.
  26. Marwan, Peter (2016-01-25). "Mailbox.org hat sein Cloud-Office-Angebot aktualisiert". ITespresso.de (in German). Retrieved 2022-01-12.
  27. "Security features & encryption | mailbox.org". mailbox.org (in German). Retrieved 2019-04-25.
  28. "About mailbox.org - Our team, our history, our mission | mailbox.org". mailbox.org. Archived from the original on 2023-06-28. Retrieved 2023-07-27.
  29. "E-Mail-Provider: Mail-Dienste sehen alles". Stiftung Warentest (in German). Retrieved 2016-04-04.
  30. "Stiftung Warentest testet Mailprovider: Mailbox.org und Posteo gewinnen, Googles Gmail wird Letzter". netzpolitik.org (in German). Retrieved 2016-09-28.
  31. Birmele, Christian (2021-06-01). "Acht von zehn Clouds sind nicht vertrauenswürdig". ktipp.ch (in German). K-Tipp | Konsumenteninfo AG. Retrieved 2021-06-14.
  32. Feilner, Markus (2021-06-14). "mailbox.org – Testsieger auch in der Schweiz!". mailbox.org (in German). Heinlein Hosting GmbH. Retrieved 2021-06-14.
  33. Aleksandersen, Daniel (2021-12-12). "Review of mailbox.org e-mail service". Ctrl Blog. Retrieved 2025-03-27.
  34. "Russische Aufsichtsbehörde Roskomnadsor beantragt Sperre von mailbox.org vor Gericht". mailbox.org (in German). Retrieved 2020-04-05.
  35. Hoppenstedt, Max (2020-02-10). "Russland droht deutschem E-Mail-Anbieter mit Netzsperre". sueddeutsche.de (in German). Retrieved 2020-04-05.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.