REST API

Developer portal ›

SecuMailer has a REST API for sending secure emails. Both the GDPR and the NTA 7516 functionality are fully accessible via this API.

The API is documented with OpenAPI specification 3.0.1.

The REST API has webhook functionality, which means that the SecuMailer platform can communicate email events with an HTTPS endpoint of the sender.

SMTP API

The SMTP API is usually the simplest integration option for many backend applications because backend applications often have a provision for an SMTP client on board.

We have successfully integrated for customers with Salesforce, SAP and Centric. We have also successfully integrated with patient file systems such as Medisoft Dossier Manager.

GraphQL API

The SecuMailer platform offers insight into email events. This can be done on the basis of a (push) webhook call (see REST API above) and on the basis of a (pull) GraphQL endpoint.

Get a Demo

Name(Required)

Contact Sales

Your Name(Required)

GDPR Compliance: Secure Email for Every Organisation

Ensure your email meets every privacy and security standard

Privacy starts with secure communication. Since GDPR sets strict rules for processing personal data, email must be secure, traceable, and demonstrably compliant, every time. SecuMailer helps you meet GDPR requirements for security, confidentiality, and accountability without disrupting daily work. No portals. No pickup links. No extra steps for users.

Book a free GDPR compliance walkthrough
Contact Sales
GDPR

What is GDPR?

A unified EU framework for data protection

The General Data Protection Regulation (GDPR/AVG) defines how personal data must be processed and protected across the EU. It applies to controllers and processors in all sectors—public and private, wherever you handle EU residents’ data.

  • Lawfulness, fairness, transparency

  • Purpose limitation and data minimisation

  • Accuracy and storage limitation

  • Integrity & confidentiality of processing

  • Accountability (prove what you do and how)

Encryption, traceability, and compliance—without extra steps

  • Encryption by default

    All outgoing messages secured automatically; users send as usual.

  • Two-factor authentication (2FA)

    SMS/OTP ensures only intended recipients access sensitive messages.

  • Inbox delivery (no portals)

    Secure messages arrive directly in the recipient’s mailbox.

  • Complete audit trail

    Transmission, delivery, and access events logged for evidence and audits.

  • Data minimisation & storage limitation

    Message content deleted after delivery; essential metadata remains.

  • Interoperability

    Works with other secure mail solutions in regulated sectors.

  • Data sovereignty

    EU-hosted, European-managed cloud; no hyperscalers.

Built-in privacy and compliance controls

  • Integrity & confidentiality

    Default encryption, 2FA, TLS/SPF/DKIM/DMARC.

  • Privacy by design & by default

    No portals, minimal data copies, automated policies.

  • Data minimisation & storage limitation

    Ephemeral messages; configurable retention.

  • Accountability

    Tamper-resistant delivery logs for ISMS and audits.

  • Processor obligations & governance

    Clear DPA, sub-processor transparency, security docs.

  • Breach response & reporting

    Traceable events, E2E options, key revocation.

The technical foundation for compliant email

ISO 27001, NEN 7510, NTA 7516, eIDAS, SOC 2 Type 2 certifications.

Infrastructure in European data centres, European operators.

Works with Outlook, Microsoft 365, Google Workspace; no portals.

Millions of secure messages daily without performance drops.

Secure your email and demonstrate GDPR compliance

You already protect data—now make email the easiest part of your privacy program. SecuMailer enables secure, traceable, and compliant communication without changing how your teams work.

Ensure your email meets every compliance standard

Speak with our specialists and discover how SecuMailer keeps you fully aligned with GDPR requirements.
Request a free compliance consultation