As with the emails you send, every email you receive will come with a security label:
Not Secure: Not authenticated or encrypted. This means that it’s technically possible for your email provider or a hacker to read it, and that it lacks cryptographic evidence that it’s from who it says it’s from.
These emails will display the message ‘Real name: unverified’ below the sender’s name, even if they have verified your identity before sending. This is because emails can only be sent authenticated and encrypted, or not authenticated or encrypted.
Authenticated: Appears with the sender’s verified real name, meaning you can be sure that the email is really from who it says it’s from.
Secure: Authenticated and end-to-end encrypted, meaning it can only be read by you. Secure emails display the sender’s verified real name.
For Your Eyes Only: Authenticated, end-to-end encrypted, and protected with our face unlock technology. To decrypt a For Your Eyes Only email, you need to look continuously at the screen, passing a continuous liveness check using a template of the biometric data from your initial identity verification (stored only on your device).
If you look away from the screen, the email content will turn back into encrypted text. This is our highest security level and means that even if someone else were to access your unlocked device, they wouldn’t be able to read your emails.
By default, c.Email groups your messages (meaning you can see all emails from the same thread in one place). You can turn this off in your c.Email settings.