Email Privacy for Journalists and Activists: A Practical Guide

Elevated Risk: Why Journalists and Activists Need Stronger Protection

For most users, email privacy is about avoiding spam and limiting data broker exposure. For journalists, activists, human rights workers, and researchers working on sensitive topics, the stakes are significantly higher:

- Sources may be in danger if their communications are compromised
- Professional work product may be legally sensitive or subject to subpoena
- Activists may face surveillance from governments, corporations, or hostile actors
- Journalists have a professional obligation to protect source confidentiality
- Researchers working on sensitive subjects may face retaliation

This guide addresses the specific email and communications security needs of high-risk users.

Threat Modeling: Who Are You Protecting Against?

The first step in building appropriate protection is understanding your specific threat:

Government surveillance: State-level actors may intercept communications, compel disclosure from service providers, or use technical surveillance tools.

Corporate adversaries: Investigative journalists covering corporations may face well-resourced opposition intelligence operations.

Criminal organizations: Journalists covering organized crime face real physical and digital risk.

Hostile individuals: Activists may face harassment campaigns from organized groups or individuals.

Law enforcement: In some contexts, journalists and activists may face subpoenas, search warrants, or device seizure.

Your security measures should be proportionate to your actual threat model. Overcomplicating security for threats that do not apply to your situation creates friction without benefit.

Core Email Security Measures

End-to-End Encrypted Email:
For sensitive source communications and confidential correspondence, standard email (Gmail, Outlook) is not appropriate — the provider can be compelled to produce email content.

Recommended:
- ProtonMail: Swiss jurisdiction, end-to-end encrypted between ProtonMail users, accessible over Tor for anonymized access
- Tutanota: German jurisdiction, end-to-end encrypted, open source
- Using PGP encryption with any email provider (more complex but works with existing addresses)

SecureDrop:
For journalist-source communications specifically, SecureDrop is the gold standard. It is a Tor-based anonymous document submission system used by major news organizations. Sources submit documents without creating a direct communication link to the journalist.

Account Security:
- Hardware security key (YubiKey) for 2FA — phishing-proof and the strongest available option
- Strong, random password via password manager
- Compartmentalized accounts — separate accounts for different story areas to limit blast radius if one is compromised

Email for Non-Sensitive Activity:
Use Temp90 for any registration or subscription that is not directly related to your sensitive work. This keeps your professional communication channels clean and limits the email addresses that appear in public records.

Source Protection Practices

Compartmentalize by topic:
Use separate email accounts for different beat areas or campaigns. If one account is compromised, only that area's communications are exposed.

Educate sources:
Sources who are communicating sensitive information should use encrypted email (ProtonMail to ProtonMail) or ideally Signal for messaging. Most source-compromise incidents happen on the source's side, not the journalist's.

Never email about sources in non-encrypted channels:
Even your own analysis of source information should not appear in standard email. Use encrypted notes or offline storage for source-identifying information.

Assume metadata is visible:
Even with end-to-end encrypted email, metadata (who communicated with whom, when) may be visible to providers and can be compelling under legal process. Use Tor-based ProtonMail or SecureDrop to protect metadata as well as content.

Device and Operational Security

Full-disk encryption:
Encrypt all devices. If a device is seized or stolen, encrypted storage prevents access to communications.

Compartmentalized devices:
For the most sensitive work, use dedicated devices that are not connected to personal accounts. This limits cross-contamination between personal and professional activity.

Secure deletion:
Use tools that securely overwrite deleted files (rather than just removing directory entries). Eraser (Windows) and secure-empty-trash options on macOS address this.

Physical security:
Keep sensitive devices physically secure. Be aware of who has access to your work environment.

Working in Hostile Jurisdictions

When working in countries with active surveillance:

- Use Tor for all sensitive communications
- Use VPN combined with Tor for additional protection (VPN to hide Tor usage from ISP, Tor for actual browsing)
- Be aware that some countries block Tor — use Tor bridges in these environments
- Minimize sensitive data on devices crossing borders
- Consider using a separate travel device with only the accounts needed for travel

Legal Protections and Their Limits

Shield laws (where applicable): Many jurisdictions have shield laws protecting journalists from being compelled to reveal sources. These vary significantly by jurisdiction and typically do not protect against federal subpoenas in the US.

Attorney-client privilege: Communications with your attorney through encrypted channels may have stronger legal protection than regular email.

Know your legal rights and consult with a media law attorney or digital rights organization before relying on legal protections for security planning.

Resources for Journalists and Activists

Electronic Frontier Foundation (EFF): eff.org/deeplinks — surveillance self-defense guides

Access Now Digital Security Helpline: accessnow.org — direct support for civil society organizations under attack

Committee to Protect Journalists (CPJ): Digital safety resources for journalists

Tactical Tech: Security for human rights defenders

Freedom of the Press Foundation: SecureDrop, training, and resources for journalists

FAQ:

Q: Is Signal sufficient for journalist-source communication?
A: Signal is excellent for direct messaging and has strong security properties. For fully anonymous source submission, SecureDrop provides stronger protection because it uses Tor and does not create a direct communication link between journalist and source.

Q: Should journalists avoid email entirely for sensitive communications?
A: Standard email should not be used for sensitive source communications. End-to-end encrypted email (ProtonMail-to-ProtonMail) or secure messaging (Signal) with the source provides appropriate protection for most scenarios.

Q: How does Temp90 fit into a journalist's security practice?
A: Temp90 serves the same role for journalists as for any user: a disposable email for non-sensitive registrations (subscription services, platform access, research resources) that keeps primary work email addresses out of commercial databases and data broker records.

Conclusion:

Email security for journalists and activists requires proportionate protection based on specific threat models. End-to-end encrypted email, hardware security key 2FA, compartmentalized accounts, and source protection practices form the core of a robust framework. Temp90 plays its standard role — protecting against unnecessary email exposure in commercial contexts — while dedicated security tools address the higher-stakes communication scenarios that define high-risk professional work.