What is Reddit's opinion of
CTemplar?
From 3.5 billion Reddit comments
➔ CTemplar website
By popularity on Reddit, this Service is:
33 reviews of this app found across Reddit:
Please consider disabling new account sign-ups on https://ctemplar.com/ until all users who lost their accounts have them restored.
If you don't disable new account sign-ups you will get a real mess when someone signs up with a username belonging to an existing user.
I admit it‘s a lot like it but the idea didn’t originate from there. Its also supposed to be a lot more minimalistic and we are going to implement other safety measures to ensure privacy. For example a system similar to the CTemplar Checksum Verification to prevent malicious javascript attacks from the site owner.
Hello!
It's possible that your submission was removed due to our security issue policy.
https://ctemplar.com/security/
Please report it accordingly and you might be entitled to compensation.
Thank you!
They are located on Iceland, and Iceland is known for having great privacy-respecting laws. CTemplar (Iceland based email-provider, never used them) has a nice list of some reasons; https://ctemplar.com/icelandic-privacy-laws/
Thank you for reaching out.
You cannot add two separate accounts to the CTemplar mobile app or PC. You can only add one account, upgrade to paid feature, add domain and aliases to it. All addresses can be used within the app.
If you create a second account it will log out the first account session and have only the second account logged in because you can use only one account at a time on the CTemplar platform. The second account will not be under the 1st primary account because they are both different accounts and they cannot be logged in at the same time.
If you have one paid account, to use your personal address you need to set up a custom domain account using the guide instruction here. If you are having an issue setting this correctly, please reach out to for guide assistance. Thank you
Hello!
This question was already answered here: https://www.reddit.com/r/ctemplar/comments/q2y1sf/question_is_my_ctemplar_account_linked_to_those_i/
And here: https://ctemplar.com/help/answer/request-an-invite/
The answer is no. We do not correlate or track any invite codes. The invites are generated and then deleted after being used or by inactivity.
Please do feel free to create a Reddit throwaway and ask for an invite.
ctemplar accepts crypto payments but they also claim to be 100% green energy. Maybe that offsets the fact that they accept crypto for you. They don't sell your information. They did have a data loss event about 6 months ago but I strongly suspect that is a 1 time thing.
https://ctemplar.com/features/
You can request an invite for a free account by direct message on their subreddit or emailing their support [email protected].
I dont personally use ctemplar but it at least checks some of the boxes you mentioned.
Hello!
We address here, why we have opted for an invite system: https://ctemplar.com/email-creation-restriction/
I have sent an invite to you.
Let us know if you have any other questions!
Thank you!
Hello!
> So, if CTemplar is all about privacy, how come they monitor account inactivity?
This has to do with hardware limitations. We can not keep expanding indefinitely for our free users.
Check here for more details: https://ctemplar.com/help/answer/inactive-account-policy/
> What else they monitor then? Strange, isn't it?
We do not monitor anything else. Please do check our privacy policy.
Feel free to let me know if you have more questions!
Ctemplar accepts monero, I like them quite a lot. You also have 10 aliases with their prime-plan.
I have some invite-codes, so if anyone interested DM.
Hello!
/r/CTemplar moderator here. It's true. We only comply with valid Icelandic court orders, the law require us to do so.
> If an Icelandic court order is issued, we will provide the encrypted mail contents and all other metadata in our possession of the offending user(s). We will provide users with options to encrypt metadata at a later time. We do not record IP addresses at any time.
The data is encrypted at all times, thus unreadable.
Feel free to check all of our features here: https://ctemplar.com/features/
Do not hesitate in contacting me if you have any feedback/questions or would like an invite to give us a try.
Cheers!
Tutanota was forced to make copies of arriving emails before encryption and hand them over to the German police, which is much worse than what Protonmail was ordered to do:
https://www.reddit.com/r/tutanota/comments/kaawl1/german_court_forces_encrypted_email_provider/
CTemplar is a tiny provider, but according to their transparency report, even they have granted requests made via Icelandic court orders:
Hello!
We would like to inform that both login and registration on our .onion domain is unavailable due to an ongoing issue with the Tor Browser itself.
> https://gitlab.torproject.org/tpo/applications/tor-browser/-/issues/32865
We have to wait for the Tor team to address it.
In the meantime, you can still use the Tor Browser on our clearnet domain - https://ctemplar.com/
Thank you!
Hello!
This is just to save some time from having to decrypt the email header each time you login to your email account.
You can read more here: https://ctemplar.com/help/answer/temporary-store-decrypted-data/
Thanks for getting back to us on your request.
Learn how this works on CTemplar following the link below.
https://ctemplar.com/help/answer/setting-up-a-dead-mans-timer/
Let us know if you need further assistance. Thank you
The mail list is good. I'd add Posteo as others have mentioned.
Two more to consider:
CTemplar (out of iceland): new, probably still working on some features, but highly secure and getting good reviews.
Criptext is totally unique. Email is not stored in the cloud at all. It gets delivered to clients where it is stored. Clients sync between each other. Criptext doesn't hold your email and thus no storage costs and they can't produce any email if handed a subpoena . E2EE. It's very beta, but the approach is unique. My concern there is that they seem to have gone somewhat silent the last couple months.
An account that would let you create a custom domain name costs $8/month or $72/year. CTemplar is more expensive than the other services primarily because we refuse Government investments and so we are not able to discount the prices with government money. I explain it in more detail on this page.
Tutanota is a great service and they are run by a solid team. I am sorry to hear about the DDOS attack they are dealing with.
I sent you two invite codes for free accounts, one for yourself and one for your wife.
Kind Regards,
On the page:
https://ctemplar.com/everything-about-anonymous-email-youll-ever-need-to-know/
there's an issue. Under the header Creating an Anonymous Email Account with CTemplar it says "is impossible to encrypt using standard methods", it should of course say decrypt in that snippet.
We have always allowed signup with a VPN and/or Tor. You can confirm this is true because all our changes are publicly available in Github.
I agree with you that this service is more expensive and we explain why in detail on this page. To summarize, every Government or Global Corporation investment proposal that I have received contains wording that shows their intent is to abuse my user's privacy, therefore I feel it's important to remain independently financed. The other services are able to discount their price using money from Governments or global Corporations. I created this email for those who are concerned about this. if you are not concerned then please use one of their exceptional services.
You asked what the purpose of the invitation code is. We respond to that question here. To summarize: Attackers created tens of thousands of free email accounts and used them to send sextortion emails. This is a violation of our terms of service. Solving this problem is difficult because we do not require your personal information to signup so we must create a solution that supports user anonymity.
You implied that someone from my team may have made you beg for an invitation code. Would you please tell me who did this? I will immediately take corrective action.
Hello u/Zlivovitch, I am the founder & CEO of CTemplar.
We publicly state that we use the same encryption Protonmail uses, not Tutanota. And we don't hide it. In fact, we've publically written about this and you can read about it here. We also express their gratitude for their service, and in other places, we recommend using them. You suggested several times we have malicious intent toward them however there is none. I view Protonmail as a fellow soldier in the war to protect people’s privacy & security. We might be a good fit for some people and not for others. We are not trying to become the next Gmail, we are seeking to serve a small group of people who want a specific type of secure email.
Kind Regards,
Here's a comparison table we've made. It doesn't include Mailfence or disroot and I'm going to add them in the near future. The main thing is Mailfence and disroot have access to reading your emails. https://ctemplar.com/ctemplar-comparison-table/
This is a very good comment! I've added it to our development schedule and you'll see us track it on future development schedule reddit posts.
What you write is encrypted in your browser, our server doesnt see your plaintext content. We are not able to decrypt it either. So no one will ever be able to access your emails. We also support encrypted subjects, contacts and we're working on encrypted metadata.
Let me know any other comments or questions, I appreciate the #2 item you shared. Kind Regards,
Hello Godfrey,
I just came across your product on my ISP's blog. Love to try something new, and possibly great as well.
Oh, ..I noticed that <em>https://ctemplar.com</em> has three home buttons!! I will press them all ;-)
It is not fundamentally different but I an going to implement more featured to protect users safety. For example a checksum verification similar to the one CTemplar has.
Hello Friend, CTemplar does use PGP encryption and have written about it here. We are still several months out from implementing our Metadata encryption.
We do have free accounts available to everyone but you need an invite code. You can request one from " [email protected]" We wrote about why we require invite codes on this page.
Protonmail and Tutanota also offer wonderful services. Our stance is a person's #1 priority is to protect their privacy from abuse. Much less important is which service they use to do so.
Kind Regards to you,
Godfrey de Saint-Omer
CTemplar Founder/CEO/Support Manager
Hello thanks for your interest. We sit outside the 5 eyes, and we have lots of other security features we are proud of that you can read about on our security page .
We also have the best looking security team in the industry... An I often use my six-pack ab muscles as a cutting board for carrots... ok that’s my attempt at a joke:)
The apps have been in closed beta about 3 months, their now in open beta. We wanted to eliminate all the bugs we could find before we let anyone else use the apps and we feel we have done that. If you use the apps I don’t think you’ll encounter any bad bugs, but I think you’ll absolutely make comments about the apps that we incorporate for one reason or another. What I’m trying to say is I think the apps need polishing. If you want to help polish the apps we would love to have your help. If not then I completely understand and it’s best to give the apps time before you use them.
Kind Regards to you,
Hello Diligent-Taro,
We probably will not offer tools to aid people switching from Protonmail to CTemplar because I don't want to risk creating in-fighting within the privacy community. Additionally, Protonmail is a great team member to the privacy community, we've written about their ongoing contributions on our blog.
So to answer your question, no we do not have any easy ways to import messages from PM and we probably won't add it. I hope it is understandable but if not send me a message
The "6" on that line refers to the sixth footnote on the source page. That's:
> MLAT treaties require broad and all-encompassing cooperation. If the US asks for data from a country with an MLAT treaty then the country must do everything within its power to provide what is requested. The treaty can be utilized to turn your mobile device into a tracking device recording your location. An example of this is the Swiss MLAT treaty which can require a Swiss company to “make every effort to ascertain the whereabouts and addresses” of their users. Countries with MLAT treaties include Belgium, Switzerland, and Canada.
Emails are encrypted in your browser and then sent to us encrypted. We only see your encrypted content. We have no way of decrypting your content because your encryption key's passphrase is your account password. And we use "Zero-Knowledge Password" proof.
A very serious problem is: "How can you know that CTemplar is not serving your browser malicious scripts to your browser?"
We have two solutions to this. You can perform a checksum that checks the code in your browser with the code in Github. If it doesn't match then your visit breaks. Or you can visit our site using code hosted from Github.
Kind Regards,
Godfrey de Saint Omer
> What are your feelings on this post? It may just be an outdated post but somewhat concerning.
I do think that table is largely marketing and skewed towards making CTemplar look "better".
I also spotted an error there, for example they say Tutanota supports IMAP, so not sure about its accuracy either.
In regard to anonymous account creation, Tutanota and ProtonMail certainly allow for that.
"Open Source Platform" what part? The serverside of ProtonMail should have a "no" there.
"Anonymous payment accepted" Should have a no for Tutanota. they allow for credit card and PayPal. They also claimed to meet "privacytools.io" criteria before we had a criteria.
Currently there are still a few marketing things that would exclude it.
I also believe the "Capable of decrypting user content" line is inaccurate in regard to Tutanota and ProtonMail.
Also I would argue that ProtonMail does not "give access to FBI, CIA, NSA", what does that even mean. The points only go up to 10, yet there's references past that, it doesn't elaborate.
There are quite a number of private email services. Protonmail, tutonta, CTemplar, posteo and so on. I have experience with protonmail and CTemplar,
If you are going to use the free version I recommend Ctemplar it has 1GB free space while protonmail has only 500MB. I switched to Ctemplar because of that. protonmail is also good. I recommend them both. Check them out.
There are quite a number of private email services. Protonmail, tutonta, Ctemplar, posteo and so on. I have experience with protonmail and CTemplar,
If you are going to use the free version I recommend Ctemplar it has 1GB free space while protonmail has only 500MB. I switched to Ctemplar because of that. protonmail is also good. I recommend them both. Check them out.
Ctemplar was launched on 2018 see for yourself
100% anonymous Anti phishing protection Open source Zero knowledge password protection. IP removal from emails Anonymous payment.
I started using it some time ago and didn't find anything wrong with it. Lol good luck
A few thoughts on the technology.
Any email server is fully accessible to the IT department and anyone authorized to view it. Google reads your gmail to serve you ads (an automated process) and probably other reasons. Your top boss, and likely your immediate manager have the ability to view content of work emails.
If you use email like Proton mail or cTemplar you have a level of privacy through encryption ad 2 factor authentication (2FA). Your work email does not have this.
Depending on your email system you may be able to read the full header of the email your boss sent you. This may reveal some information that helps you understand the path your email took to get to them.
>If I ask HR, are they required to tell me?
no, but they may be required to tell your boss that you asked.