Skip to content
Privacy

How I Reduced My Big Tech Exposure with Proton Mail and SimpleLogin

By Victor Da Luz
privacy proton-mail simplelogin email-aliases big-tech data-protection custom-domains

I recently migrated from Gmail to Proton Mail, and it wasn’t just about switching email providers. It was about reducing my exposure to tracking and data collection from big tech companies. The process forced me to review every account I had, delete what I no longer used, and secure everything properly.

The migration took several weeks and involved some unexpected security incidents. But the result was worth it: I now have complete control over my email infrastructure, and I’m no longer contributing to Google’s data collection.

Here’s what I learned from the process and why it matters.

Why I decided to leave Gmail

Google’s data collection has become more extensive over time. Gmail scans emails for spam protection and may use this data for advertising and product development. The tracking goes beyond just email content.

What Google likely tracks:

  • Who you communicate with
  • How often you email certain people
  • What time you send emails
  • What attachments you share
  • Your email patterns and habits
  • Your location data (if you use Gmail on mobile)

This data is valuable. Google’s parent company, Alphabet, made over $300 billion in revenue in 2023, largely from advertising. Email data helps them target ads more effectively.

I was tired of being the product. I wanted to use email as a communication tool, not as a data collection mechanism for a large tech company.

The Proton Mail advantage: privacy by design

Proton Mail is built from the ground up for privacy. It’s not just about encryption—it’s about a different approach to email.

What makes Proton Mail different:

  • End-to-end encryption: Even Proton can’t read your emails
  • Zero-knowledge architecture: Proton has no access to your data
  • Swiss privacy laws: Subject to strict Swiss privacy regulations
  • No tracking: No email scanning, no data collection, no advertising
  • Open source: The client code is auditable and transparent

The business model is different too. Proton makes money from subscriptions, not from selling your data. They’re incentivized to protect your privacy, not exploit it.

Proton Mail pricing:

  • Free tier: 1GB storage, 150 messages per day, limited features
  • Mail Plus: €3.99/month, 15GB storage, unlimited messages
  • Proton Unlimited: €9.99/month, 500GB storage, all Proton services

Using custom domains: the key to independence

The most important decision I made was using my own domain. This gives me complete control over my email infrastructure.

Why custom domains matter:

  • Portability: If I ever want to switch away from Proton, I keep my email addresses
  • Professional appearance: Using your own domain looks more professional
  • Control: You own the domain, not the email provider
  • Flexibility: Can easily add subdomains or additional addresses

Setting up custom domains with Proton Mail:

  1. Purchase a domain (I recommend Cloudflare as a registrar - they’re cheaper than most and include privacy protection)
  2. Configure DNS records (MX, SPF, DKIM, DMARC)
  3. Verify domain ownership with Proton
  4. Create email addresses using your domain

The setup process was straightforward. Proton provides clear instructions, and most domain registrars have one-click DNS configuration for popular email providers.

My domain strategy: I use @mydomain.com for personal communication and @mail.mydomain.com for account registrations. This keeps things organized and makes it easy to identify where emails are coming from.

SimpleLogin: the email alias game-changer

SimpleLogin is what makes the whole system work. It’s an email alias service that lets you create unique email addresses for every account. Proton acquired SimpleLogin in 2022, so it’s now part of the Proton ecosystem.

How SimpleLogin works:

  • Create aliases: Generate unique email addresses for each service
  • Forward emails: Aliases forward to your real email address
  • Reply capability: You can reply from aliases (they appear to come from the alias)
  • Custom domains: Use your own domain for aliases
  • Blocking: Easily block aliases if they start receiving spam

The benefits of email aliases:

  • Privacy: Each service gets a unique email address
  • Security: If one service is compromised, others are unaffected
  • Tracking prevention: Services can’t correlate your accounts
  • Spam control: Easy to identify and block spam sources
  • Account management: Clear visibility into which services have your email

SimpleLogin pricing:

  • Free tier: 10 aliases, basic features
  • Premium: €3/month, unlimited aliases, custom domains, catch-all

I use the premium plan because I wanted custom domain support and unlimited aliases. It’s worth it for the privacy and security benefits.

The account review process: what I discovered

The migration forced me to review every account I had. This was eye-opening and time-consuming, but ultimately valuable.

The review process:

  1. Export all accounts from my password manager
  2. Categorize accounts by importance and usage
  3. Delete unused accounts (this was surprisingly satisfying)
  4. Update email addresses for active accounts
  5. Update passwords for all accounts (more on this later)

What I found:

  • Over 200 accounts across various services
  • Many unused accounts from services I forgot about
  • Duplicate accounts for the same service
  • Accounts with weak passwords that needed updating

The cleanup was satisfying. I deleted about 50 accounts I no longer used. This reduces my digital footprint and potential attack surface.

Account deletion varied widely. Some services made it easy to delete accounts with a simple button click. Others made it nearly impossible, requiring phone calls, emails, or even legal requests. The website justdeleteme.xyz was invaluable for finding the right deletion procedures for each service.

The password exposure incident: a security wake-up call

During the migration, I had a security incident. I accidentally uploaded a CSV export of my passwords to cloud storage.

What happened:

  • I exported my passwords to migrate to a new password manager
  • The export was in CSV format with passwords in clear text
  • I had automatic cloud sync enabled
  • The file got uploaded to Google Drive (the irony wasn’t lost on me)
  • I discovered it later and panicked

The response:

  • Immediate deletion of the file from cloud storage
  • Password changes for all accounts (this took weeks)
  • Security review of all devices and accounts
  • Policy changes for handling sensitive exports

Lessons learned:

  • Always check export formats before downloading
  • Disable cloud sync when working with sensitive files
  • Use encrypted exports when possible
  • Have a plan for security incidents

The silver lining: The incident forced me to change all my passwords, which I should have done anyway. Now all my accounts have strong, unique passwords.

The entire process took about 3 weeks, spread across several sessions. The time investment was substantial, but it was worth it. I now have a much more secure and private email setup.

The results: what I gained and what I lost

What I gained:

  • Better privacy: No more email scanning or tracking from my new provider
  • Better security: Unique email addresses for each service
  • Account control: Easy to identify and manage all my accounts
  • Professional setup: Using my own domain looks more professional
  • Peace of mind: No longer contributing to big tech’s data collection

What I lost:

  • Gmail’s features: Gmail has some nice features that Proton doesn’t have
  • Integration: Some services work better with Gmail
  • Storage: Gmail’s free storage is much larger
  • Convenience: The setup process was time-consuming
  • Gmail app: The Gmail app on iOS is much nicer than Proton’s mobile app, but I’m also working on reducing installed apps for data privacy (a topic for another day)

The trade-offs work for me. The privacy and security benefits outweigh the minor inconveniences.

Tips for your own migration

If you’re considering a similar migration, here are my recommendations:

Start small:

  • Begin with a few important accounts
  • Test everything thoroughly before migrating everything
  • Keep your old email account active during the transition (I’m keeping my Gmail address for services that don’t allow email changes, in case I forgot something, or for people who still have my old address)

Plan your alias strategy:

  • Decide on a naming convention for aliases
  • Consider using subdomains for different types of accounts
  • Keep track of which alias goes with which service

Security first:

  • Use strong, unique passwords for all accounts
  • Enable 2FA wherever possible
  • Be careful with password exports and cloud sync

Be patient:

  • The process takes time
  • Some services make it difficult to change email addresses
  • You might need to contact customer support for some accounts

Test everything:

  • Make sure emails are being received correctly
  • Test reply functionality from aliases
  • Verify that password reset emails work

The bigger picture: why this matters

This isn’t just about email. It’s about taking control of your digital life and reducing your exposure to big tech surveillance.

The data collection problem:

  • Google, Meta, and other big tech companies collect massive amounts of data
  • This data is used for advertising, AI training, and surveillance
  • You’re the product, not the customer
  • The more data they have, the more they can manipulate you

Privacy is a fundamental right. You should be able to communicate without being tracked, analyzed, and profiled.

Small changes add up. Every account you migrate, every service you switch, every piece of data you protect makes a difference.

The migration to Proton Mail and SimpleLogin was just the beginning. I’m now looking at other areas where I can reduce my big tech exposure:

  • Proton Drive for cloud storage (planning to use this)
  • Proton VPN for network privacy
  • Alternative search engines instead of Google
  • Privacy-focused browsers and extensions

The goal isn’t to disappear completely. It’s to have control over your data and reduce the amount of information you’re giving away to companies that don’t have your best interests at heart.

The bottom line

Migrating from Gmail to Proton Mail with SimpleLogin was one of the best decisions I’ve made for my digital privacy. The process was time-consuming and sometimes frustrating, but the results work well for me.

I now have:

  • Complete control over my email infrastructure
  • Unique email addresses for every service
  • No more email scanning or tracking
  • Better security and account management
  • Peace of mind about my digital privacy

The migration forced me to review and secure all my accounts. While the password exposure incident was scary, it ultimately made my accounts more secure.

If you’re concerned about privacy and big tech surveillance, consider making similar changes. Start small, be patient, and remember that every step toward privacy is a step in the right direction.

Your data is valuable. Don’t give it away for free.

Ready to Transform Your Career?

Let's work together to unlock your potential and achieve your professional goals.