Skip to content

A different email address for every website

Protect your real email address from spam, data breaches, and unwanted marketing. Create unique email aliases that forward to your real inbox — deactivate or delete them anytime without affecting your primary email.

100% German. 100% EU. Out of reach of the US CLOUD Act.

Hosted in Germany, EU · GDPR compliant · No tracking

Get started for free Login

How email aliasing works

Email aliases act as a privacy shield between your real email address and the outside world. Share aliases instead of your primary email — stay in complete control of who can contact you.

1. Create aliases

Generate a unique email alias for every website, newsletter, or service you sign up to. Use it anywhere you'd normally give your real email address.

2. Receive emails safely

Emails sent to your alias are instantly forwarded to your real inbox. Your real address stays completely hidden from the sender. Optionally encrypt with GPG.

3. Reply anonymously

Reply directly from your email client. The recipient only sees the alias address — your real email is never revealed. Works with Gmail, Outlook, and any email provider.

4. Block spam instantly

Getting unwanted emails? Deactivate the alias to silently discard all messages, or delete it to bounce them back. Your real inbox stays clean.

Privacy-first email forwarding features

Everything you need to take control of your inbox, stop spam, and protect your email identity online.

Unlimited email aliases

Create a unique email address for every website, newsletter, and online service. If one gets compromised in a data breach, the rest stay safe. Identify exactly who sold your data.

Reply and send from aliases

Respond to emails and send new messages from any alias. The recipient only sees the alias address — your real email stays hidden. Compatible with Gmail, Outlook, Apple Mail, and any standard email client.

GPG/OpenPGP encryption

Add your public GPG key and every forwarded email is encrypted end-to-end before delivery — including attachments and optionally the subject line. Zero-knowledge: even we can't read your messages.

Stop spam and phishing

Receiving spam or phishing attempts? Deactivate the alias to silently discard all messages, or delete it to bounce them back to the sender. Block specific senders or entire domains from your blocklist.

Multiple recipients per alias

Route a single alias to multiple real email addresses simultaneously. Perfect for shared inboxes, team email addresses, or forwarding to both personal and work accounts.

Catch-all and on-the-fly aliases

With catch-all enabled, aliases are created automatically when they receive their first email. Make up any address on the spot — like shopping@yourusername.mailflusher.com — no setup needed.

Smart filtering rules

Create custom rules to automatically forward, block, or redirect incoming emails based on the sender address, subject line, or which alias received the message. Automate your inbox management.

Works with any email provider

MailFlusher works with Gmail, Outlook, ProtonMail, Tutanota, Yahoo, iCloud, and any other email provider. No migration needed — just start using aliases that forward to your existing inbox.

Developer-friendly API

Manage aliases, recipients, and domains programmatically with our complete REST API. Generate API keys to build custom integrations, browser extensions, or automate your email workflow.

New

Burner aliases that self-destruct

Create aliases that auto-deactivate after a set time (1 hour, 24 hours, 3 days, up to 30 days) or a set number of emails (1, 3, or 10). Perfect for one-time signups, downloadables, or giving your email to a site you don't fully trust.

New

Know who leaked your address

We learn the legitimate sender for each of your aliases and flag any mail from unrelated domains as a suspected leak. When netflix@mrunknown.mailflusher.com starts getting mail from some marketing network, you'll know Netflix probably sold or leaked your address.

New

Tracker and pixel stripping

Mailchimp, HubSpot, SendGrid and friends track whether you opened an email and what you clicked. Pixel stripping is included on all plans. Standard and Pro add link rewriting through our /r/ proxy that strips UTM and click-tracking parameters before the 302 redirect.

New · Pro

Ghost Inbox — even we can't read it

Flag any alias as "ghost mode" and incoming mail is encrypted with an OpenPGP key that only your browser can unlock. The ciphertext is stored on our servers; the plaintext lives only in your browser. Database dumps, subpoenas for stored content, stolen backups — none of it reveals the message. If you forget the passphrase, not even we can recover it.

New · Standard

Outbound webhooks

Subscribe to alias.received, alias.blocked, and alias.leaked events. Every delivery is HMAC-SHA256 signed with a per-webhook secret, retried with exponential backoff, and logged so you can audit failures. Build Zapier-like automations, alert pipelines, or custom integrations without polling our API.

New

One-click import from SimpleLogin or Addy.io

Moving in from another alias service? Paste your API token and we'll fetch your existing aliases and recreate them on your MailFlusher subdomain — descriptions and active states preserved. Preview the import first, then commit when you're happy. Firefox Relay doesn't expose a public API, but we'll handle those manually.

Who uses email aliases?

Email aliasing is used by privacy-conscious individuals and professionals around the world.

Online shoppers

Use a unique alias for every online store. If one gets breached or starts sending spam, deactivate just that alias.

Freelancers & professionals

Compartmentalize client communications. Give each client a different alias and manage everything from one inbox.

Privacy enthusiasts

Stop cross-referencing of your accounts across websites. Each service sees a different email, making profiling impossible.

Newsletter readers

Subscribe to newsletters with aliases. If they become too frequent, deactivate the alias instead of unsubscribing from each one.

Why jurisdiction matters

Your email should live under European law

Most email forwarding services are US-based. That means your aliases, metadata, and forwarded messages can be compelled under the CLOUD Act, FISA §702, or an NSL — often without any notification to you. MailFlusher is run entirely from Germany, under EU law.

Servers in Germany

All infrastructure is located in Germany. Your data never leaves the EU. No US subsidiary, no US parent company, no data replication outside the union.

GDPR by default

You have the right to access, export, and delete your data at any time. We never sell it, profile on it, or use it for advertising. Subject access requests are answered within 30 days.

No US legal reach

We are not bound by the US CLOUD Act, FISA §702, or National Security Letters. Any lawful request must go through German courts under EU data-protection standards.

German hosting vs US-based forwarding services

MailFlusher Typical US service
Server location Germany (EU) United States
Governing law GDPR + German law US federal + state
Subject to CLOUD Act No Yes
Gag-order NSLs possible No Yes
Data sold or profiled Never Varies
Right to export / erase Guaranteed by GDPR At provider's discretion

This comparison describes the general legal posture of Germany-based vs US-based services. It is not legal advice and individual providers may differ. Read the full details in our Privacy Policy.

Frequently Asked Questions

What is an email alias?
An email alias is a forwarding address that redirects emails to your real inbox. You give out the alias instead of your real email. If the alias starts receiving spam, you simply deactivate it.
Can I reply to emails from an alias?
Yes. When you reply to a forwarded email, the reply is sent through the alias. The recipient will only see the alias address, not your real email.
What happens if an alias gets spam?
Simply deactivate or delete the alias. All future emails to that alias will be silently discarded or bounced. Your real email address remains unaffected.
Is my email encrypted?
You can add your GPG/OpenPGP public key and all forwarded emails will be encrypted before delivery. Attachments are encrypted too. You can even encrypt the email subject.
Does this work with my email provider?
Yes. Email aliases work with any email provider — Gmail, Outlook, ProtonMail, Tutanota, or any other service. Emails are simply forwarded to whatever address you use.
What is catch-all?
Catch-all means that any email sent to your username domain will be automatically forwarded to you, even if the alias doesn't exist yet. For example, if your username is "mrunknown", emails to anything@mrunknown.mailflusher.com will be received — the alias is created on the fly. Without catch-all, only pre-existing aliases will receive email. Catch-all is available on Standard and Pro plans.
How do I hide my email address online?
Instead of giving out your real email address, create an email alias with MailFlusher and use that instead. The alias forwards emails to your real inbox, but the sender never sees your actual email address. If the alias starts receiving spam, simply deactivate or delete it.
What's the difference between an email alias and a disposable email?
Disposable email services give you a temporary inbox that expires. Email aliases are permanent forwarding addresses that you control. You can reply from aliases, manage them from a dashboard, enable encryption, and keep them active as long as you want. Unlike disposable emails, aliases are suitable for important accounts like banking, shopping, and subscriptions.
Is email aliasing better than Gmail's plus (+) addressing?
Gmail's plus addressing (yourname+tag@gmail.com) is easy to strip — spammers simply remove the +tag to find your real address. With MailFlusher, aliases use a completely different email address that can't be traced back to your real one. You can also deactivate individual aliases, which isn't possible with plus addressing.
How do I know who sold my data?
Use a unique alias for every service you sign up to — for example, amazon@yourusername.mailflusher.com for Amazon and netflix@yourusername.mailflusher.com for Netflix. If you start receiving spam on one specific alias, you know exactly which company leaked or sold your data.
Where are your servers located?
All our servers are located in Germany, within the European Union. Your data is protected by the EU GDPR and Germany's Federal Data Protection Act (BDSG) — a regime built on a constitutional right to informational self-determination, recognised by the Federal Constitutional Court since 1983, and enforced by independent federal and state data protection authorities. Your data never leaves the EU. Read more in our Privacy Policy.
What is a burner alias?
A burner alias is a regular MailFlusher alias that automatically deactivates after a time window (1 hour, 24 hours, 3/7/30 days) or a number of emails (1, 3, or 10). Great for one-time signups — a site that needs to email you once for a download link, a trial account, or a service you don't fully trust. Once the burner expires, further mail to that address is silently discarded or bounced back depending on your choice. Available on all plans; Free is capped at 2 active burners at a time, Standard at 20, Pro unlimited.
How does MailFlusher detect if a company leaked my email?
If you use a different alias for every service — netflix@mrunknown, amazon@mrunknown, and so on — each alias should only ever receive mail from that one brand. We watch each alias's sender domains and learn a baseline. When an unrelated sender starts emailing a locked-in alias (and it's not a known email service provider like SendGrid or Mailchimp, which we automatically allowlist), we flag a "suspected leak" in your dashboard. You can confirm or dismiss it with one click. No machine learning black box — just straightforward first-party observation of which brands sent what.
What does "tracker stripping" do?
Marketing emails are full of hidden tracking. Tiny 1×1 images (“pixels”) report back when you open the email; links are wrapped in redirectors that log every click. Enable tracker stripping in Settings and every forwarded email is cleaned before it reaches your inbox: tracking pixels are removed, and links can optionally be routed through our proxy that strips UTM, Facebook, Google, and ESP click-tracking parameters before 302-redirecting to the real destination. Pixels only is available on all plans. Pixels and links is available on Standard and Pro. Never destructive — unsubscribe links are preserved, and the stripper never blocks email delivery if something goes wrong.
What is Ghost Inbox and how is it private?
Ghost Inbox (Pro) lets you flag an alias so incoming mail is stored instead of forwarded. The twist: your browser generates an OpenPGP keypair the first time you set up the vault, and we only ever see the public key plus a passphrase-encrypted copy of the private key. When mail arrives, the server encrypts the whole message with your public key, stores the ciphertext, and discards the plaintext. Reading happens entirely in your browser — we deliver the ciphertext, you enter the passphrase, OpenPGP.js decrypts locally. Database leaks, subpoenas for stored content, stolen backups: none of them reveal the message. Unlock sessions auto-expire after 15 minutes of inactivity (configurable). Forgot the passphrase? The mail is genuinely unrecoverable — we hand you a recovery sheet on setup. Stored emails auto-delete after 30 days.
Do you support webhooks?
Yes — on Standard and Pro plans. Add a webhook URL, pick one or more events (alias.received, alias.blocked, alias.leaked), and we'll POST a JSON payload there whenever one fires. Every request carries an X-MailFlusher-Signature HMAC-SHA256 header you can verify with the per-webhook secret we show once on creation. Failed deliveries retry with exponential backoff up to 5 attempts, and every attempt is logged in a per-webhook delivery log so you can audit and debug without us having to intervene.
Can I import my aliases from SimpleLogin or Addy.io?
Yes. Settings → Import has a one-click wizard. Paste a SimpleLogin or Addy.io API token, hit Preview, and we fetch your aliases and tell you exactly how many will import and how many will skip (because of your plan's alias cap). Confirm and we recreate them on your MailFlusher subdomain, preserving the description and active state. Your original aliases keep working at the source service unless you deactivate them there — this is a copy, not a move. Firefox Relay has no public API, so that one needs to go through the contact form; we'll import them manually, free.

Simple, transparent pricing

Start for free, upgrade when you need more.

+ 7 days Pro free

Free

Free
  • 10 aliases
  • 2 active burner aliases
  • 1 recipient
  • No rules
  • No additional usernames
  • No reply/send
  • No failed delivery logs
  • No blocklist
  • No catch-all
  • No custom domains
  • Leak attribution
  • Pixel stripping
  • No webhooks
  • No Ghost Inbox
  • Import from SimpleLogin / Addy.io
  • 10 MB bandwidth/month
Get started
Popular

Standard

€1 /month
  • 20 aliases
  • 20 active burner aliases
  • 5 recipients
  • 5 rules
  • No additional usernames
  • Reply and send from aliases
  • Failed delivery logs
  • Sender blocklist
  • Catch-all
  • No custom domains
  • Leak attribution
  • Pixel & link stripping
  • Outbound webhooks
  • No Ghost Inbox
  • Import from SimpleLogin / Addy.io
  • 200 MB bandwidth/month
Subscribe

Pro

€5 /month
  • Unlimited aliases
  • Unlimited active burner aliases
  • 30 recipients
  • 30 rules
  • 10 additional usernames
  • Reply and send from aliases
  • Failed delivery logs
  • Sender blocklist
  • Catch-all
  • Custom domains
  • Leak attribution
  • Pixel & link stripping
  • Outbound webhooks
  • Ghost Inbox (E2E encrypted)
  • Import from SimpleLogin / Addy.io
  • Unlimited bandwidth/month
Subscribe

Stop giving out your real email address

Join thousands of privacy-conscious users. Create your first anonymous email alias in seconds — no credit card required.

Get started for free Login