Your inbox stays yours

Supafax is built on simple principles: read only what's needed and store no email content.

Secure by design

Supafax is built with security and privacy at the core.

Draft ready for review

Actions stay under your control

Supafax drafts, organizes, schedules, and sends only from your direct instructions. It does not permanently delete emails.

Certified data protection

Certified by ADA Tier 2 CASA, GDPR, Penetration Test audit, ICO data protection.

End-to-end encryptedSecure channel · verified
AES-256TLS 1.3

Encrypted in transit and at rest

AES-256 at rest, TLS 1.3 in transit. Scoped Google and Microsoft mailbox access.

No new apps - works in your inbox
Gmail
Outlook

Compliance is key

We meet the standards enterprise security teams look for, and are actively pursuing the rest. Progress and scope available on request.

CASA Tier 2 logo
Compliant

CASA Tier 2

Google Cloud App Security Assessment validating OAuth app security controls.

ICO Registered logo
Compliant

ICO Registered

Registered with the UK Information Commissioner's Office as a data controller.

SOC 2 Type II logo
In progress

SOC 2 Type II

Annual independent audit of security, availability, and confidentiality controls.

ISO 27001 logo
In progress

ISO 27001

Globally recognized information security management standard.

GDPR logo
Compliant

GDPR

EU data subject rights, DPAs, and sub-processor transparency.

HIPAA logo
In progress

HIPAA

Administrative, technical, and physical safeguards for PHI in healthcare inboxes.

Frequently asked questions

Leave inbox anxiety behind

Try Supafax in your email today.

Draft ready for review