Post Post
Addressed. Encrypted.
Yours.
Your messages are being read — by the platforms that carry them, by the governments that compel those platforms, and eventually by the quantum computers that will unlock every private message ever sent. Post is built for the world that's coming.
Email was designed in 1982 for a small network of university
colleagues who trusted each other. It shows. Anyone can write
from: yourboss@yourcompany.com in an email — and
the system has no reliable way to check. That's why phishing
works. The fixes layered on top are complicated, inconsistently
deployed, and still regularly fooled.
you@gmail.com belongs to Google. The day they shut
you down — a terms violation, a mistaken flag, an abusive ex
who knows your password, a government request, a corporate
acquisition — your identity evaporates. Decades of
correspondence go dark. Your contacts can't find you, because
there's no way to say "I moved."
Your message is protected while it travels. But once it lands at Google or Microsoft, it sits there — indexed, searchable, waiting for a warrant, a hack, or a curious admin. A lifetime of private conversation, sitting in someone else's database, quietly becoming a liability.
When sending costs nothing, people send everything. The result is an inbox full of noise, filtered by algorithms that regularly bury your GP's email and let scams through. The cost of sending should be paid by the sender — not by your time and attention.
Governments and intelligence agencies are saving encrypted messages today, waiting for the more powerful computers of tomorrow to read them back. Something you send in 2025 could be opened in 2045 — by a state, a corporation, or someone you never expected. The cost of a message leaking doesn't fade. It compounds.
Every message is encrypted twice — using the best security available today, and again using methods designed to resist the computers of tomorrow. Both locks have to be broken to read your message. Your messages stay private in 2025 and in 2045.
Your identity in Post belongs to you — it lives on your devices, not on a company's server. The servers that carry your messages can't read them. They just pass on sealed envelopes and then forget. Don't like your server? Switch it like changing a bookmark. Nobody can take your account, read your mail, or lock you out.
Reaching someone new in Post costs something small — a tiny fee, a puzzle, or a voucher. You decide what the price is. Legitimate senders get it back. Anyone trying to send a million messages goes broke. Your inbox, your rules.
Even if a server is handed over to the authorities, here's what they get: cryptographic identities (key hashes and public keys), timestamps, and approximate sizes. They can see which keys are talking, but not who those keys belong to in the real world — and never what the messages say. The worst a compromised server can do is delete your messages — and Post can send to several servers at once, so even that's hard to pull off.
You can be reached as you@yourdomain.uk, as
@yourhandle, or by a unique identifier that
only you control. All three point to the same place. None
of them belong to a company.
Post works across your phone, laptop, and tablet without any single device being "the important one." Add a new device by scanning a QR code. Lose one? Remove it instantly. Your messages don't become readable just because someone finds your old phone.
Every change to your identity is recorded in a public log that can only ever be added to — never altered. Post checks this log automatically. If anyone tries to impersonate you or take over your account, you'll know before the next message arrives.
Instead of a password reset email to a company that controls your account, Post lets you choose trusted people — friends, family — who can help you recover. House fire? Phone in a river? A short waiting period passes, your contacts confirm it's you, and everything comes back.
relay.postapp.email is for testing, not daily usePost works — and it's moving fast. You can send and receive messages through it today. New contributors are joining, the design is being refined, and the iOS app is already talking to the live server.
The .email in the address is a nod to the idea
of addressed, written messages — not a claim that Post is
email. It isn't. It keeps what was good about email (your
own address, no middleman required, messages that stay yours)
and fixes what was broken.
The encryption hasn't had an independent security review yet, and the server is a single machine — so don't use it for anything sensitive just yet. If you want to help build the messaging system that should have existed from the beginning, pull up a chair.
Post is open. Everything — the design, the code, the specification — is public and free to use. If you build things, we'd love your eyes on the code. If you work in security or cryptography, we really need your eyes on the code.