How Secure Is Cloud Sync in Canary Mail?

At Canary Mail, we prioritize the security and privacy of your email data. Our Cloud Sync feature allows you to seamlessly sync your email accounts, preferences, signatures, and templates across all your devices – but we’ve made sure this process is secure, end-to-end encrypted, and designed with your privacy in mind.

Here’s a breakdown of how security works when you enable Cloud Sync:

1. What Is Synced?

When you enable Cloud Sync, the following data is synced across all your devices:

  • Accounts
  • Account Colors
  • Aliases
  • Folders
  • Signatures
  • Templates

This allows you to easily set up new devices without having to re-enter all your account details manually.

2. What Happens to Your Login Credentials?

Canary Mail does not store or transfer your login credentials directly. Instead, for email providers that support OAuth, we use OAuth access tokens. These tokens grant Canary Mail access to your email accounts without the need for storing or syncing your actual passwords.

For email providers that do not support OAuth, Canary Mail securely stores your email credentials in the Cloud in encrypted form.

When restoring accounts on another device via Cross-Device Sync, Canary Mail transfers credentials in an encrypted format. Upon receiving the encrypted credentials on the second device, they are decrypted securely, allowing the account to be logged in. This means that only you have access to your credentials, ensuring that your information remains protected at all times.

3. End-to-End Encryption

We take your data privacy seriously. Here’s how we ensure security when using Cloud Sync:

  1. Encryption at Rest and in Transit:
    • All data synced through Canary Mail, including your email accounts and settings, is encrypted using industry-standard encryption methods. Your data is protected both in transit (while it’s being transferred between devices) and at rest (when stored on the Cloud).
  2. Private iCloud Keychain:
    • The encryption keys used to protect your data are stored securely in your private iCloud keychain, which only you have access to. Canary Mail has no access to these keys, ensuring that no one, including us, can decrypt your data without your permission.
  3. End-to-End Encryption:
    • All data associated with Cloud Sync is end-to-end encrypted. This means that even if the data were intercepted, it would be unreadable and inaccessible without the encryption keys stored in your iCloud keychain.

4. What Happens If You Disable Cloud Sync?

If you choose to disable Cloud Sync, all synced data will be removed from the Cloud. This ensures that your information stays private and only remains on the devices you’ve synced it with.

Your Privacy is our top Priority

With Canary Mail’s Cloud Sync, you can enjoy a seamless email experience across all your devices, knowing that your data is protected with the highest security standards. Your email accounts and personal information remain private, fully encrypted, and completely under your control.

If you have any further questions or concerns, feel free to reach out to our support team here. We’re always here to help! 🙂

[chatbot]