Your inbox stays yours

Supafax is built on simple principles: read only what's needed, store nothing, never send or delete anything on your behalf.

Talk to our CEO

Secure by design

Supafax is built with security and privacy at the core.

Draft ready for review

Emails never stored, sent, or deleted

Supafax drafts and organizes, but never sends or deletes emails.

Certified data protection

Certified by ADA Tier 2 CASA, GDPR, Penetration Test audit, ICO data protection.

End-to-end encryptedSecure channel · verified
AES-256TLS 1.3

Encrypted in transit and at rest

AES-256 at rest, TLS 1.3 in transit. Google-verified Gmail access.

No new apps - works in your inbox
Gmail
Outlook

Compliance is key

We meet the standards enterprise security teams look for, and are actively pursuing the rest. Progress and scope available on request.

CASA Tier 2 logo
Compliant

CASA Tier 2

Google Cloud App Security Assessment validating OAuth app security controls.

ICO Registered logo
Compliant

ICO Registered

Registered with the UK Information Commissioner's Office as a data controller.

SOC 2 Type II logo
In progress

SOC 2 Type II

Annual independent audit of security, availability, and confidentiality controls.

ISO 27001 logo
In progress

ISO 27001

Globally recognized information security management standard.

GDPR logo
Compliant

GDPR

EU data subject rights, DPAs, and sub-processor transparency.

HIPAA logo
In progress

HIPAA

Administrative, technical, and physical safeguards for PHI in healthcare inboxes.

Frequently asked questions

Leave inbox anxiety behind

Try Supafax in your email today.

Start for free
Draft ready for review