ipgmail.com

What It Is

iPGMail is an OpenPGP encryption app for iPhone and iPad. It is used to send encrypted email, decrypt PGP messages, manage keys, and encrypt files. Its core purpose is not to replace your email provider, but to perform local encryption before messages reach Gmail, Outlook, Apple Mail, iCloud, Fastmail, or a self-hosted mail system—so the mail provider only sees ciphertext.

Core Features and Security

The product states compatibility with OpenPGP RFC 4880 and RFC 9580, and the page also mentions RFC 5581. It can interoperate with tools such as GnuPG, GPG Tools, and Mailvelope. For key management, it supports generating RSA, ECDSA, and EdDSA keys on-device, with RSA up to 4096-bit. Users can also import existing keys, export public keys, and manage multiple key pairs. Private keys are protected through a passphrase, an encrypted in-app database, the iOS sandbox, device screen lock, an optional 4-digit PIN, and Face ID/Touch ID. Encryption and decryption can be performed offline, reducing the risk of exposing plaintext to cloud services.

Deployment, Management, and Integration

Deployment is via an iOS/iPadOS app, making it a personal endpoint-side security tool. It supports .pgp, .gpg, and .asc file formats, and can process content through sharing, the clipboard, or the app’s internal file space. One developer-friendly feature is support for x-callback-url, which can invoke actions such as encrypt, sign, compose, and decrypt, and return results via the clipboard, files, or JSON. However, the available information does not show an enterprise admin console, centralized policies, audit logs, SIEM integration, or alerting capabilities, so it should not be treated as a full enterprise email security gateway.

Pricing and Target Users

Pricing is straightforward: a one-time App Store purchase of USD 3.99, with no subscription, no in-app purchases, and no hidden fees. It is suitable for privacy-conscious individuals, mobile workers, legal and financial communications, journalist source protection, and small teams that need to handle standard PGP on iPhone or iPad. The page says it can be used for HIPAA-compliant healthcare messaging, but it does not provide third-party certifications or audit reports. For compliance procurement, organizations still need to assess their own workflows, key management, and record-keeping requirements.

Pros, Cons, and Access from China

Its strengths are open standards, local processing, low cost, independence from email providers, and fairly complete mobile key and file encryption capabilities. The downsides are the inherent learning curve of PGP key exchange and backup, the need to manually import and export public keys for ProtonMail interoperability, and the lack of centralized management and alerting. The source text does not provide information about access from China. App Store availability, network connectivity, and payment methods should be checked based on the actual regional account. Alternatives include GnuPG, GPG Tools, Mailvelope, and other OpenPGP-compatible clients.