Transparency Report & Warrant Canary for the Secure Mail Service Tutanota

This is Tutanota's transparency report and warrant canary information. While in Germany a gag order is legally not possible, we want to give you peace of mind by publishing a warrant canary. The transparency report is updated every six months. We only release individual mailboxes if we receive a valid German court order. All email content (subject, body, attachments) is end-to-end encrypted, and we cannot decrypt any of this data.

Between the 1st of January 2017 and 30th of June 2017 Tutanota has

  • received requests for inventory data in 23 cases.
  • released inventory data in 2 cases.
  • received requests for traffic data in 2 cases.
  • released traffic data because of a valid German court order in 0 cases.
  • received requests for monitoring of traffic data (TKÜ) in 3 cases.
  • released monitored traffic data (TKÜ) because of a valid German court order in 2 cases.
  • received requests for content data in 4 cases.
  • released encrypted content data because of a valid German court order in 4 cases.
  • received requests for monitoring content data in 0 cases.
  • released monitored encrypted content data because of a valid German court order in 0 cases.

The transparency report for the last six months contains more details than previous reports. Due to Tutanota's quickly growing user base, the number of requests for user data by the authorities increase as well. This is why we want to explain what data we have, and what data can be asked for by the authorities.

You can find more details on German data protection laws here. This blog post also explains what the terms 'content data', 'traffic data' and 'inventory data' refer to.

Previous Tranparency Reports

Between the 1st of July 2016 and 31st of December 2016 Tutanota has

  • received requests for user data in 25 cases.
  • released encrypted user data because of a valid German court order in 2 cases.

Between the 1st of January 2016 and 30th of June 2016 Tutanota has

  • received requests for user data in 30 cases.
  • released encrypted user data because of a valid German court order in 1 case.

Since Tutanota's launch in March 2014 until the 1st of January 2016 Tutanota has

  • received requests for user data in 15 cases.
  • released encrypted user data because of a valid German court order in 3 cases.

Warrant Canary

Tutanota has never received any National Security Letters or FISA court orders, and we have not been subject to any gag order by a FISA court. We have never placed any backdoors in our hardware or software and have not received any requests to do so.



PS: The Transparency Report is updated every six months. The warrant canary is always up to date. If there was any request stated above, we would immediately take down the canary. However, such a request is not possible according to German law. If you feel insecure about whether the canary is still valid, please ask us via the comment section below. We will answer asap, latest after a couple of days.

Free your data from mass spying!

and get your encrypted mailbox for free now.

Matthias is co-founder and developer of Tutanota. I write code to fight for our human right to privacy. I want to create a cloud service which is so easy to use and so secure that it locks out all the spies. We really deserve better.

Posted on: 2017-07-01

Share

Comments