Privacy Policy

Witopia, Inc. and Better World Security GmbH are companies that strive to protect the privacy and the privacy rights of our customers. It is, in fact, our very business to do just that.  It is also important to understand that, due to the design of SecureMyEmail (the “Service”) and our website(s), very minimal data is collected and that we administer strict policies safeguarding the privacy and security of the very little data that is collected. This Privacy Policy defines and informs you of the instances in which your personal data and information may be collected and how it may be used.


What information do we collect?

Visiting our websites:

We do use a basic installation of website analytics software to research general trend data. This data is non-personally-identifying bulk information such as: title of the pages on our websites being viewed, referring websites, geographical popularity . Again, this data cannot be used to personally identify users or visitors as we do not capture IP addresses or other personally-identifiable information.


We use third parties to process credit card and PayPal transactions. These services do have procedures in place to prevent online fraud that may capture and analyze transaction data.

Account creation and use:

We securely store the email addresses and name you entered when creating your accounts as well as contacts you submit to us. We also, because of the SMTP protocol, must temporarily store your recipients’ email addresses so we are able to route your communications.

Support and other communications:

We may retain emails, and other communications, you send to us, including through our internal trouble-ticketing system.

  • Our product uses OAuth for user authentication. We never have access to Google, Microsoft, Yahoo, Apple, or Android passwords.
  • Our apps’ use of information received from Google APIs will adhere to Google API User Data Policy, including the Limited Use Requirements.


How do we use the information we collect?

We do not have any advertising on our website or contained within our software. We do not share your personal information with third parties with the possible exception of what information you provide to payment processors when you purchase the Service, such as PayPal, your Credit Card issuer, or other payment method.

  • Email is used for correspondence and to send service, payment, and opt-out promotional information.
  • Payment and Sales data is used to manage customer signups, payments, and cancellations.
  • Website analytics data is used to improve our website and marketing efforts.
  • Other submissions by you, such as forms and emails is used for customer support.
  • Account information, such as names and contacts you submit to us, is used to build your contacts list and properly channel communications.

What about the privacy of my email using the service?

Email and attachments encrypted with SecureMyEmail are encrypted “end-to-end” and, as such, are encrypted on the sending device and are only able to be decrypted on the recipients” device(s). We do not possess the means to decrypt encrypted email sent using the Service as this requires the possession of the user’s private decryption key and secret passphrase, which is known only to the user. Your private decryption key may stay on your device or be transferred locally. If your private key is transmitted to us for ease of use of the Service, it is encrypted with your secret passphrase before it leaves your device and is delivered through an encrypted tunnel and stored in an encrypted state. If you do decide to transmit your private key to us, you may also choose to have it automatically deleted from our systems, or manually remove it at any time. In any event, we never have access to your secret passphrase so we never possess the ability to view or utilize your private key to decrypt any of your email.

Data Disclosure

We vigorously protect the privacy rights of our customers by design and by action. Although we do respond to valid legal requests, we scrutinize each and every request for compliance with both the “spirit” and letter of the law. As all SecureMyEmail systems, including our web and email servers, reside in Switzerland, we will disclose the very limited user data we possess if we receive an enforceable court order from either the Cantonal Courts of Geneva or the Swiss Federal Supreme Court. If permitted by law, we will always contact a user first before any data disclosure. Under Swiss law, it is obligatory to notify the target of a data request, although such notification may come from the authorities and not from the Company.

Third Parties

We do not run any advertising on our websites or share your personal information with any third parties aside from the disclosures already made in this privacy policy.

Modifications to Privacy Policy

By using our services, you consent to our Privacy Policy and we reserve the right to change this policy from time to time. Any changes to this Privacy Policy will become effective when we email you about the changes or post the revised Privacy Policy on the Site.  Continued use of the Service will be deemed acceptance of such changes.


The Service is sold and marketed, with payments collected, by Witopia, Inc. Any aspects of this agreement directly related to those functions between the parties shall be governed by the Laws of the Commonwealth of Virginia. Exclusive jurisdiction and venue for such matters shall be in courts located in Fairfax County, Virginia.

As systems to provide the Service, as well as store customer information, such as security keys and contact lists, are located in Switzerland, and managed by Better World Security GmbH, all remaining aspects of the Service shall be governed in all respects by the substantive laws of Switzerland. Any controversy, claim, or dispute arising out of or relating to these aspects of the Service shall be subject to the jurisdiction of the competent courts of the Canton of Geneva, the jurisdiction of the Swiss Federal Court being expressly reserved. We adhere to the standards mandated by the European General Data Protection Regulation (GDPR). If you have any questions regarding this policy, or wish to request deletion of archived account data, please feel free to contact us at Use of our websites or services, as well as any dispute over privacy, is subject to this Policy and our Terms of Service.