REST API

Developer portal ›

SecuMailer has a REST API for sending secure emails. Both the GDPR and the NTA 7516 functionality are fully accessible via this API.

The API is documented with OpenAPI specification 3.0.1.

The REST API has webhook functionality, which means that the SecuMailer platform can communicate email events with an HTTPS endpoint of the sender.

SMTP API

The SMTP API is usually the simplest integration option for many backend applications because backend applications often have a provision for an SMTP client on board.

We have successfully integrated for customers with Salesforce, SAP and Centric. We have also successfully integrated with patient file systems such as Medisoft Dossier Manager.

GraphQL API

The SecuMailer platform offers insight into email events. This can be done on the basis of a (push) webhook call (see REST API above) and on the basis of a (pull) GraphQL endpoint.

Get a Demo

Name(Required)

Contact Sales

Your Name(Required)

Secure emailing without compromise

You can’t control every user decision, but you’re still accountable for the outcome.

SecuMailer removes that responsibility from the user with security by default. No portals, no plugins, no extra steps, sending secure email feels exactly like sending regular email. It integrates seamlessly into your existing infrastructure, requires no user training, and has minimal impact on IT. All data is processed within the EU, fully aligned with European data protection laws. Thanks to full data sovereignty, your organization retains complete control over its own information. So that you can control the outcome, without relying on user decisions, without having tot compromise between safety, compliancy and ease of use.

Your organization’s most valuable asset is its information.
SecuMailer ensures every email is delivered securely, by default, not by decision.

Request a demo
Contact us

Always compliant with EU regulations

Every email meets GDPR, NTA 7516, eIDAS, NIS2 and DORA by default. Compliance is enforced automatically at the mail server not left to end users.

Full control over your data with data sovereignty

All data stays within the EU and under your control. Emails are removed from our servers after delivery only a delivery receipt is kept. What’s not there, can’t leak. That’s privacy by design.

Easy to use

Secure email without disruption: user can focus on their work, without being slowed down by email security. It just works invisibly, reliably, and without getting in the way.

No friction, no user steps, just safe and compliant delivery every time.

From send to secure in five seamless steps.
Step 1

You send your email, no extra steps

From Outlook, Microsoft 365, or Google Workspace, no plugins, no extra steps.

Step 2

SecuMailer encrypts and applies your organization’s predefined transport rules

The email is encrypted automatically at the server level, using pre-set transport rules. No user action required, protection is applied instantly.

Step 3

In more than 98% of cases, the email is delivered straight to the inbox with no link or login required.

When legal frameworks such as NTA 7516 require additional authentication, the recipient verifies their identity via a secure link and a one-time SMS code. This code remains valid for up to 90 days by default, although your organization can set a shorter period if needed. During that time, recipients experience secure email just like regular email, fully compliant, without added friction.

Step 4

The email content is deleted after delivery

Just like a letter leaves the postman’s hands, the message disappears from our servers the moment it’s delivered. Only the delivery receipt is kept for logging and compliance purposes.

Step 5

Full compliance, zero friction

Your email was sent, delivered securely, and is no longer stored. All processing happens on EU-based servers, fully aligned with GDPR and NTA 7516. No complexity, no loose ends just secure communication, done right.

Want more technical detail?

Explore our documentation

Product Features

SecuMailer

 

Core functionality

  • Email from your own email environment
  • Delivery to the recipient’s mailbox
  • Every email always secure
  • Delivery without portal intermediaries
  • No additional installation or extra software required
  • Works with all email clients
  • Works on all devices
  • Integration with back-office systems possible
  • Delivery receipt available
  • Functional / shared mailboxes possible
  • Custom branding applicable
  • Standard attachment size up to 40MB
  • Send up to 5TB with SecuFiler

 

Technical Integration

  • Integration with any professional mail server
  • Implementation based on existing features
  • Security based on existing features
  • Security based on transport rules
  • API integrations available
  • (Audit) logging available
  • Two-factor authentication based on SMS
  • SAML / SSO available for the management environment

 

Compliance & Certifications

  • GDPR
  • Data minimization
  • ECSO (European Cyber Security Organization)
  • ISO 27001
  • NEN 7510
  • NTA 7516
  • eIDAS
  • ISAE 3000 SOC 2 Type 2

 

Service & Support

  • Personal service
  • Easily reachable by phone
  • Service commitment: uptime 99.95%
  • Service and support from 9-17
  • Self-service portal
  • Monthly SLA reports

 

Made for organizations that handle sensitive data

Municipalities

Government & Municipalities

Communicate confidentially with citizens, departments, and partners, fully compliant with GDPR. Align with eIDAS requirements for legally registered digital delivery, with full traceability. SecuMailer delivers secure messages directly to the recipient’s inbox: a simple and secure way to share sensitive decisions, notifications, and documents. It’s secure, accessible communication without barriers.

Read More
Health-Care

Healthcare providers

Send patient records, referrals, and lab results securely and in full compliance with NTA 7516 and GDPR. SecuMailer integrates with your EHR system and enables secure email that meets healthcare standards ensuring interoperability across organizations. Need to reach a patient? Your message arrives directly in their inbox: no portals, no repeated logins, just secure and accessible communication.

Read More
Finance

Legal professionals

Communicate confidentially with clients, courts, and legal partners fully compliant with GDPR. Need legal proof of delivery? SecuMailer supports eIDAS-compliant registered email, ensuring full traceability and legal validity. For regular confidential messages: secure emails arrive directly in the inbox, with no portals or logins required. A flexible solution for both formal and everyday legal correspondence.

Read More
Legal

Financial institutions

Send sensitive documents like payslips, tax returns, or financial statements securely and GDPR-compliant. With SecuMailer, you reach clients directly in their inbox, without requiring a portal or login. Need legal proof of delivery? Our eIDAS-compliant registered mail gives you full traceability. It’s professional, secure communication made simple for both you and your clients.

Read More
business

Business Services

Whether you're sending contracts, proposals, reports, or personal data, SecuMailer ensures your emails are secure and fully GDPR-compliant. Messages are encrypted and delivered straight to the recipient’s inbox, without requiring portals, accounts, or logins. It’s a professional, accessible way to protect sensitive communication and strengthen trust with your clients.

Read More
Housing

Housing & Property Management

Send rent contracts, payment reminders, or tenant communications securely and in full compliance with GDPR. SecuMailer lets you reach tenants and partners directly in their inbox. Need legal proof of delivery? Use our eIDAS-compliant registered email with full traceability.

Read More

Compliance, built-in / Compliance & governance

Designed to align with GDPR principles: integrity/confidentiality, privacy by design/by default, data minimisation, accountability. Supports regulated contexts (NIS2; DORA for financial services). Evidence and reporting fit ISMS and audit requirements. EU data sovereignty is standard: hosted in European data centres operated by European providers, no dependence on hyperscalers. Certifications/attestations available (ISO 27001, SOC 2 Type 2, eIDAS; health flows align with NEN 7510/NTA 7516).

ISO_27001
ISO 27001 – International standard for information security management.
NEN 7510
NEN 7510 – Dutch standard for healthcare information security.
SOC2
ISAE 3000 / SOC 2 Type II – Assurance for security, availability, and privacy.
eIDAS (qERDS & qREMS) – EU qualified trust services, included in EU Trusted List.
ECSO Label: Recognising cybersecurity companies built entirely on European values and expertise.

More than 200 organizations rely on SecuMailer, every day

“With SecuMailer’s approach, all colleagues can safely send emails directly from their work account, regardless of whether they are using a work laptop, their phone, or a home PC.”
Joost van der Borg
Privacy Officer van gemeente Pijnacker-Nootdorp

Ready to secure your email without disrupting your workflow?

SecuMailer makes secure emailing effortless. Whether you’re in healthcare, government, or finance, we help you meet the highest compliance standards with zero user friction, fast deployment, and proven reliability.

Want to see it in action?
Experience how easy secure email can be.

Prefer to talk first?
Let’s explore the best-fit solution for your organization.

Get a Demo
Contact us