We are committed to the privacy of our users, and will absolutely not release user data without an order that is legally enforceable under the laws of British Columbia, Canada, which is the jurisdiction where our servers are located. However, if we do receive such an order, we are required to do everything in our power to comply with the law. Hushmail will not accept an order from any authority or investigative agency that is not enforceable under the laws of British Columbia, Canada. Please read our Privacy Policy for more information.
But I thought the data was always encrypted
When one Hushmail user sends an email to another Hushmail user, the body and attachments of that email are kept on our server in encrypted form, and under normal circumstances, we would have no access to that data. We cant just pick an arbitrary encrypted email message off the server and read it. An encrypted email message cannot be decrypted without the passphrase, and in the normal course of operations, we do not store passphrases. However, we may be required to store a passphrase for an account identified in a court order enforceable in British Columbia, Canada.
That’s who I’m thinking of going with. Anyone else use them?
"When you send an email from Hushmail to another Hushmail member, we encrypt the contents of the email and deliver it to that members Inbox. When that member later opens the email it will automatically be decrypted.
When you send an email from Hushmail to someone who is using another email provider, you can choose to encrypt the contents of the email by typing a secret question and answer. The recipient must be able to answer that question in order to decrypt and read the email."