REST API

Developer portal ›

SecuMailer has a REST API for sending secure emails. Both the GDPR and the NTA 7516 functionality are fully accessible via this API.

The API is documented with OpenAPI specification 3.0.1.

The REST API has webhook functionality, which means that the SecuMailer platform can communicate email events with an HTTPS endpoint of the sender.

SMTP API

The SMTP API is usually the simplest integration option for many backend applications because backend applications often have a provision for an SMTP client on board.

We have successfully integrated for customers with Salesforce, SAP and Centric. We have also successfully integrated with patient file systems such as Medisoft Dossier Manager.

GraphQL API

The SecuMailer platform offers insight into email events. This can be done on the basis of a (push) webhook call (see REST API above) and on the basis of a (pull) GraphQL endpoint.

Get a Demo

Name(Vereist)

Contact Sales

Your Name(Vereist)

Secure emailing without compromise

You can’t control every user decision, but you’re still accountable for the outcome.

SecuMailer removes that responsibility from the user with security by default. No portals, no plugins, no extra steps, sending secure email feels exactly like sending regular email. It integrates seamlessly into your existing infrastructure, requires no user training, and has minimal impact on IT. All data is processed within the EU, fully aligned with European data protection laws. Thanks to full data sovereignty, your organization retains complete control over its own information. So that you can control the outcome, without relying on user decisions, without having tot compromise between safety, compliancy and ease of use.

Request a demo
Contact Sales

Always compliant with EU regulations

Every email meets GDPR, NTA 7516, eIDAS, NIS2 and DORA by default. Compliance is enforced automatically at the mail server not left to end users.

Full control over your data with data sovereignty

All data stays within the EU and under your control. Emails are removed from our servers after delivery only a delivery receipt is kept. What’s not there, can’t leak. That’s privacy by design.

Easy to use

Secure email without disruption: user can focus on their work, without being slowed down by email security. It just works invisibly, reliably, and without getting in the way.

No friction, no user steps, just safe and compliant delivery every time.

From send to secure in five seamless steps.
Step 1

You send your email, no extra steps

From Outlook, Microsoft 365, or Google Workspace, no plugins, no extra steps.

Step 2

SecuMailer encrypts and applies your organization’s predefined transport rules

The email is encrypted automatically at the server level, using pre-set transport rules. No user action required, protection is applied instantly.

Step 3

In more than 98% of cases, the email is delivered straight to the inbox with no link or login required.

When legal frameworks such as NTA 7516 require additional authentication, the recipient verifies their identity via a secure link and a one-time SMS code. This code remains valid for up to 90 days by default, although your organization can set a shorter period if needed. During that time, recipients experience secure email just like regular email, fully compliant, without added friction.

Step 4

The email content is deleted after delivery

Just like a letter leaves the postman’s hands, the message disappears from our servers the moment it’s delivered. Only the delivery receipt is kept for logging and compliance purposes.

Step 5

Full compliance, zero friction

Your email was sent, delivered securely, and is no longer stored. All processing happens on EU-based servers, fully aligned with GDPR and NTA 7516. No complexity, no loose ends just secure communication, done right.

Product Features

SecuMailer

 

Core functionality

  • Email from your own email environment
  • Delivery to the recipient’s mailbox
  • Every email always secure
  • Delivery without portal intermediaries
  • No additional installation or extra software required
  • Works with all email clients
  • Works on all devices
  • Integration with back-office systems possible
  • Delivery receipt available
  • Functional / shared mailboxes possible
  • Custom branding applicable
  • Standard attachment size up to 40MB
  • Send up to 5TB with SecuFiler

 

Technical Integration

  • Integration with any professional mail server
  • Implementation based on existing features
  • Security based on existing features
  • Security based on transport rules
  • API integrations available
  • (Audit) logging available
  • Two-factor authentication based on SMS
  • SAML / SSO available for the management environment

 

Compliance & Certifications

  • GDPR
  • Data minimization
  • ECSO (European Cyber Security Organization)
  • ISO 27001
  • NEN 7510
  • NTA 7516
  • eIDAS
  • ISAE 3000 SOC 2 Type 2

 

Service & Support

  • Personal service
  • Easily reachable by phone
  • Service commitment: uptime 99.95%
  • Service and support from 9-17
  • Self-service portal
  • Monthly SLA reports

 

Made for organizations that handle sensitive data

Municipalities

Municipalities

Formal decisions, objection procedures

Read More
Health-Care

Healthcare providers

Medico-legal communications.

Read More
Finance

Legal professionals

Contracts, notarial deeds

Read More
Legal

Financial institutions

Audit-proof delivery.

Read More
Government

Education & regulators

Certified communication

Read More

Compliance, built-in / Compliance & governance

Designed to align with GDPR principles: integrity/confidentiality, privacy by design/by default, data minimisation, accountability. Supports regulated contexts (NIS2; DORA for financial services). Evidence and reporting fit ISMS and audit requirements. EU data sovereignty is standard: hosted in European data centres operated by European providers, no dependence on hyperscalers. Certifications/attestations available (ISO 27001, SOC 2 Type 2, eIDAS; health flows align with NEN 7510/NTA 7516).

ISO_27001
ISO 27001 – International standard for information security management.
SOC2
ISAE 3000 / SOC 2 Type II – Assurance for security, availability, and privacy.
NEN 7510
NEN 7510 – Dutch standard for healthcare information security.
NTA
NTA 7516 is a Dutch standard for secure communication in healthcare, ensuring that sensitive patient information is transmitted securel
eIDAS (qERDS & qREMS) – EU qualified trust services, included in EU Trusted List.
ECSO
ECSO Label of Trustworthiness – Recognition by European Cyber Security Organisation.
A new marketing tool to promote European cybersecurity companies and increase their visibility on the European and on the global market.

Ready to share and manage sensitive data securely?

Seamless, secure email that respects privacy, meets legal standards, and feels effortless—for both your team and the people you serve.

Get a Demo
Contact Sales