Managed Mail Services

Overview

Email is still the backbone of business communication, and for most organisations it now runs through Microsoft or Google. That puts your business correspondence outside the European legal system and turns it into raw material for Big Tech telemetry. We build mail services that stay fully under your control: open source, hosted in the EU, with no data processor you did not ask for.

Our Approach

• Open source end to end: Postfix as the MTA, Dovecot for IMAP and LMTP, Rspamd for anti-spam and anti-malware, Sieve for filter rules, and Roundcube or SOGo as webmail. No proprietary lock-in.
• Privacy and data sovereignty: Your mailboxes run on infrastructure in the EU, on your own servers or ours. No telemetry, no content mining, no US Patriot Act exposure. Data processing agreement aligned with GDPR.
• Security by design: Hardened Postfix and Dovecot configuration, mandatory TLS for SMTP and IMAP, DKIM, SPF and DMARC set up and continuously verified, MTA-STS and DANE/TLSA for enforced transport encryption, and optional S/MIME or PGP for end-to-end confidentiality.
• Integration with your identity platform: Authentication via LDAP, Active Directory or Keycloak with MFA. One account, one password, centralised management.
• Monitoring and deliverability: Wazuh or Loki audit logs, Postfix queue monitoring, blacklist monitoring, and automated DMARC reporting so you know if your domain is being abused.
• Migration and lifecycle: Migration from Microsoft 365, Google Workspace or legacy mail servers with folders, rules and aliases preserved. Documentation and runbooks so your team can take over.

Technologies

• MTA & Delivery: Postfix, Rspamd, OpenDKIM, OpenDMARC
• IMAP & Webmail: Dovecot, Sieve, Roundcube, SOGo
• Authentication: LDAP, Active Directory, Keycloak, MFA
• Transport security: TLS 1.3, MTA-STS, DANE/TLSA, DNSSEC
• Monitoring: Wazuh, Prometheus, Grafana, Loki
• Backup: Borg, Restic, off-site snapshots