SecureTempMail

Security

Last updated: May 2026

Security is the core of the product, not an afterthought. Here's how we protect you and the platform.

Safe email rendering

All incoming email HTML is rendered inside a sandboxed iframe with scripts disabled and no same-origin access. This neutralizes tracking pixels and prevents malicious markup from executing.

Platform hardening

  • Rate limiting and bot detection on inbox creation and the API.
  • CAPTCHA challenges on suspicious traffic.
  • DDoS mitigation and WAF via Cloudflare.
  • Strict security headers (HSTS, X-Content-Type-Options, etc.).
  • CSRF protection on state-changing requests.
  • Spam and phishing filtering on inbound mail.

Data minimization

We store only what's needed to deliver your mail, for only as long as your inbox lives. Less data means less risk.

Responsible disclosure

Found a vulnerability? We appreciate responsible disclosure. Email security@securetempmail.com and we'll respond promptly.