At SMTP2GO, we prioritize your email security and privacy, continuously updating our protocols to ensure the highest level of protection for your data.
Encryption Options
- TLS (Transport Layer Security): Recommended for secure email transmission, automatically selecting the highest encryption rate possible.
- SSL (Secure Sockets Layer): An alternative secure connection option.
- No Encryption: Available but not recommended.
We deliver to recipient servers using TLS.
View our TLS/STARTTLS and SSL Secure Connections article for more information.
Verified Senders
- Instead of updating your SPF and DKIM records, we provide personalized subdomains for you on your Verified Senders page to add as CNAMES in your DNS settings.
Data Storage
- Email body content is not stored, only headers and basic information, with encryption at rest using AES-256. By default, data is deleted once it reaches 35 days.
- Activity Storage Duration is customizable, ranging from 35 days to two years, depending on your plan.
- Optional Email Archiving allows for secure storage of full email content for six months to five years.
Authentication Methods
- SMTP Authentication: Username and password.
- IP Authentication: Allows you to specify IP addresses from which emails are allowed to be sent without using any SMTP username/password (paid plans).
- Address Authentication: Emails can be authenticated based solely on the sender’s email address (paid plans).
Restrict Senders or Recipients
- Secure your account by setting who can or can’t send through the account, along with the functionality to list who can receive emails.
Limit Sending via IP Allowlisting
- The IP Allowlist feature improves account security by allowing you to restrict sending to be from allowed IP addresses only.
Compliance and Certifications
- GDPR compliant with detailed information available on our Privacy page.
- ISO27001 and ISO9001 certified affirming our dedication to information security and quality management.
Server/Data Center Locations
- Strategically located servers ensure your emails are routed through the nearest server, keeping data within your region.
- Account information is securely stored at one of our data centers that is determined by your account location.
SMTP2GO provides data centers in:USA (Chicago & Washington DC) ISO 27001 certified, SOC1 Type 2 & SOC2 Type 2 certified, and PCI DSS certified.
EU (Amsterdam) ISAE 3402 certified and SOC1 Type 2 & SOC2 Type 2 certified.
Australia (Sydney) ISO/IEC 27001:2013 certified. - Utilization of Google Cloud and AWS for additional data processing needs.
Payment Security
- Secure payment processing through Chargebee and FastSpring, adhering to industry standards.
Sub-Processors
- A comprehensive list of sub-processors is available for review.
Two-factor authentication
- 2FA is available for enhanced account security, along with the Verifying Login Devices (VLD) feature for additional protection.
If you have questions regarding your account’s security and privacy, please contact our support team who can assist further.
