Meta tags:
description= What we protect, what we don t, and what you can do to protect yourself further. No marketing language, no vague promises.;
Headings (most frequently used words):
encryption, security, our, amanah, to, email, end, you, in, transit, at, rest, who, can, access, your, optional, today, authentication, what, we, will, never, do, infrastructure, reporting, issue,
Text of the page (most frequently used words):
email (26), your (22), the (14), you (14), ummah (13), and (12), our (11), server (11), with (11), mail (9), not (7), what (7), can (6), end (6), #access (6), security (5), trust (5), tls (5), read (5), this (5), encrypted (5), encryption (5), amanah (5), are (4), data (4), legal (4), from (4), when (4), pgp (4), cannot (4), webmail (4), protect (4), salaam (3), reserve (3), handle (3), they (3), but (3), will (3), imap (3), third (3), encrypt (3), without (3), that (3), means (3), transit (3), today (3), via (3), stored (3), have (3), between (3), port (3), contact (2), 2026 (2), media (2), group (2), llc (2), home (2), then (2), allah (2), issue (2), smtp (2), dkim (2), let (2), hetzner (2), provider (2), gdpr (2), hardware (2), any (2), valid (2), order (2), under (2), knowledge (2), messages (2), content (2), parties (2), sending (2), openpgp (2), support (2), client (2), message (2), private (2), nobody (2), law (2), which (2), providers (2), technical (2), rest (2), don (2), yourself (2), further (2), marketing (2), language (2), vague (2), promises (2), canary, terms, hijrah, transparency, sovereignty, one, door, digital, global, muslim, community, city, tirmidhi, 2517, part, tie, camel, questions, quran, indeed, commands, render, trusts, whom, due, currently, offer, bug, bounty, program, deeply, appreciate, responsible, disclosure, discover, vulnerability, systems, please, acknowledge, report, within, hours, work, resolve, promptly, reporting, handles, jmap, caldav, carddav, spam, filtering, signing, single, component, stack, external, databases, analytics, party, integrations, touching, delaware, operator, auto, renewed, bare, metal, online, gmbh, helsinki, finland, location, open, source, engine, infrastructure, hand, over, government, jurisdiction, obligation, insert, tracking, pixels, into, use, train, models, sell, share, scan, show, ads, never, also, publish, records, prevent, others, appears, come, dmarc, spf, every, sent, signed, domainkeys, identified, recipients, verify, actually, came, was, tampered, authentication, active, stores, ciphertext, strongest, protection, available, android, openkeychain, fairemail, gpg, suite, apple, native, thunderbird, built, supported, need, absolute, privacy, where, even, enable, before, opaque, blob, decrypt, only, intended, recipient, matching, key, optional, advertisers, brokers, training, product, else, germany, has, physical, operate, provides, stronger, protections, than, based, customer, hosting, umg, operators, root, ability, except, required, diagnose, reported, administrator, full, who, roadmap, mailboxes, sprint, until, treat, trusted, zero, custodian, emails, volume, level, luks, stolen, disk, offline, database, itself, yet, per, cryptographically, protected, standard, for, most, servers, postfix, dovecot, hosted, all, connections, device, secured, certificates, https, starttls, 587, submission, 465, 993, page, tells, exactly, just, truth, islam, responsibility, give, trusting, communication, take, seriously, sign, pricing, features, skip,
Text of the page (random words):
security ummah email skip to content ummah email features pricing trust sign in reserve your handle trust amanah security our amanah what we protect what we don t and what you can do to protect yourself further no marketing language no vague promises our amanah to you in islam amanah means trust and responsibility when you give us your email you are trusting us with your private communication we take that seriously this page tells you exactly what we protect what we don t and what you can do to protect yourself further no marketing language no vague promises just the truth encryption in transit imap port 993 tls encrypted smtp port 465 tls encrypted submission port 587 starttls webmail https tls 1 3 all connections between your device and our server are encrypted with tls secured by let s encrypt certificates nobody between you and our server can read your email in transit encryption at rest today emails stored on our server are encrypted at rest at the volume level via luks this means a stolen disk cannot be read offline the mail database itself is not yet per message cryptographically protected which is standard for most email servers postfix dovecot hosted providers roadmap end to end encryption between ummah email mailboxes is on sprint 11 q3 2026 until then treat the server as a trusted but not zero knowledge custodian who can access your email you full access via imap webmail or any email client server administrator umg security operators have root access to the mail server we have the technical ability to access stored email but will not do so except a when required by law or b to diagnose a technical issue you have reported this is our amanah hosting provider hetzner germany has physical access to the hardware they operate under eu law and gdpr which provides stronger legal protections than us based providers they do not access customer data without a valid legal order nobody else no advertisers no data brokers no ai training no third parties your email is not a product end to end encryption optional today if you need absolute privacy where even we cannot read your messages enable openpgp encryption in your email client when you encrypt a message with pgp before sending it is stored as an opaque blob on our server we cannot decrypt it only the intended recipient with the matching private key can pgp is supported in webmail webmail ummah email with built in pgp support thunderbird with native openpgp support apple mail via gpg suite k 9 mail fairemail on android with openkeychain when pgp is active your email is end to end encrypted the server stores ciphertext it cannot read this is the strongest protection available today email authentication every email sent from ummah email is signed with dkim domainkeys identified mail this means recipients can verify that the email actually came from our server and was not tampered with in transit we also publish spf and dmarc records to prevent others from sending email that appears to come from ummah email what we will never do scan your email to show you ads sell or share your data with third parties use your email content to train ai models insert tracking pixels into your messages read your email without your knowledge or a legal obligation hand over data to any government without a valid legal order under eu jurisdiction infrastructure mail server open source mail engine our hardware location helsinki finland eu gdpr provider hetzner online gmbh bare metal tls let s encrypt auto renewed operator ummah media group llc delaware us our mail server handles imap smtp jmap caldav carddav spam filtering and dkim signing it is a single component stack with no external databases no analytics and no third party integrations touching your mail reporting a security issue if you discover a vulnerability in our systems please contact salaam ummah email we will acknowledge your report within 48 hours and work to resolve it promptly we do not currently offer a bug bounty program but we deeply appreciate responsible disclosure indeed allah commands you to render trusts to whom they are due quran 4 58 reserve your handle reserve your handle 5 mo questions salaam ummah email tie your camel and trust in allah tirmidhi 2517 do your part then trust ummah email is one door in ummah city the digital home of the global muslim community home sovereignty security transparency hijrah terms canary 2026 ummah media group llc contact salaam ummah email
|