Security you can trust
Your email is private. Our architecture is built to keep it that way.
End-to-end encryption
All data in transit is encrypted using TLS 1.3. Data at rest is encrypted with AES-256. Your credentials never touch our servers in plaintext.
- TLS 1.3 for all connections
- AES-256 encryption at rest
- OAuth 2.0 for provider authentication
- Zero-knowledge credential storage
Privacy-first data handling
Amphomite processes email data in-memory for AI features and does not permanently store your email content on our infrastructure. Your data stays with your provider.
- Email content processed in-memory only
- No permanent storage of email bodies
- Metadata cached locally on your device
- Full data portability — export anytime
Compliance
Amphomite is designed to meet enterprise security standards. We are pursuing formal certifications to validate our security practices.
- GDPR compliant — EU data processed in EU regions
- SOC 2 Type II — audit in progress
- CCPA compliant
- Regular third-party penetration testing
Infrastructure security
Our infrastructure runs on hardened, isolated environments with automated monitoring and incident response.
- Hosted on AWS with multi-region redundancy
- Isolated VPC with strict network ACLs
- Automated security patching
- 24/7 monitoring and alerting
- 99.99% uptime SLA for paid plans
Responsible AI
Our AI features are designed with transparency, user control, and data minimization as core principles.
- AI models never trained on your private email data
- All AI features can be disabled individually
- On-device processing where possible
- Transparent about what data AI accesses
- Human oversight for all automated actions
Have security questions?
Our team is happy to walk through our security practices in detail.