MailPoppyYour domain's email,
in your own AWS.
MailPoppy is a desktop app for your Mac or PC. Connect your AWS account once and it builds a complete email service on your domain — then create unlimited mailboxes in seconds, with no per-seat fees. Everyone reads their mail on the web, iPhone and Android.
No AWS experience needed · Guided setup in about 5 minutes
MailPoppy- AAanya Volkov9:41Q3 board pack — finalNumbers are in, deck attached for tomorrow.
- Bbilling@yourdomain.comTueYour AWS invoice is readyThis month's usage summary for the team.
- TTomas EriksenTueRe: launch checklistLooks good — shipping Thursday once DNS is live.
- NNoor HaddadTueWelcome to the team 🎉Your new @yourdomain.com mailbox is set up.
A desktop app that gives you your own email service
MailPoppy is an app you install on your own computer. It connects to your AWS account and, in a few minutes, sets up a complete, private email service for your domain — inbound and outbound mail, storage, spam filtering and the DNS records, all done for you.
From then on, creating a new address — one for every teammate, an alias for every project — takes seconds, with no extra cost. Everyone signs in to the webmail or the iPhone and Android apps, and every message stays inside your AWS account.
Runs on your computer
A Mac & Windows app — no server to host or maintain.
Unlimited mailboxes in seconds
Add as many addresses as you want, instantly, at no extra cost.
Your AWS, your data
Everything lives in your account — we never see it.
You don't need to be technical
“Run your own email in your own AWS” sounds like a job for an IT department. It isn't. MailPoppy is for normal people — founders, freelancers, small teams — not just developers. If you can install an app and follow a few prompts, you can build a professional email service in about five minutes.
Never used AWS? Perfect.
You don't need a cloud background, an AWS account, or any technical experience. If you've never set up infrastructure in your life, MailPoppy is built exactly for you.
No command line, no config
Everything happens in a friendly app — buttons and plain-language steps. There's nothing to script, no servers to wire up, no settings files to edit.
Ready in about 5 minutes
Open the app, follow the on-screen instructions, and you'll have a complete, professional email setup for your domain in roughly five minutes.
It does the hard parts for you
Mail servers, DNS records, anti-spam, security — the things experts normally sweat over are configured automatically, correctly, behind the scenes.
All handled for you — you never touch any of this
Built for people who want their email to be theirs
If you own a domain and an AWS account, MailPoppy turns them into a real, private email service.
Startups & small teams
Professional email on your domain without paying a monthly fee for every person you hire.
Privacy-first organisations
Keep correspondence out of big-tech inboxes. No profiling, no scanning, no third party in the middle.
Developers & founders
You already have an AWS account. Run your email there too — serverless, low-cost, fully in your control.
Compliance & data residency
Pick your AWS region, set your own retention, and keep every message on infrastructure you own.
The email service where you hold the keys
Most providers ask you to trust them with your inbox. MailPoppy is designed so you never have to.
Your data plane, not ours
Unlike every mainstream email provider, your mailboxes live in your AWS account — not on a company server you have to trust. MailPoppy is the only one where the inbox is genuinely yours.
We literally can't read your mail
There are no MailPoppy servers in the path of your email. We can't open it, can't reset your password, can't hand it over. That's a guarantee of design, not a promise in fine print.
Pay AWS, not a per-seat tax
Spin up unlimited mailboxes in seconds. You pay AWS's usage rates — typically a few dollars a month for a whole domain — instead of a monthly bill that grows with every hire.
One-click deploy, one-click exit
The desktop app stands up the entire backend for you, and tears it all back down just as easily. No vendor lock-in, ever — your domain and data stay portable.
Everything a modern mailbox needs
A complete email service — without a server to babysit or a subscription to renew.
Unlimited mailboxes in seconds
Create as many addresses on your domain as you want — instantly, with no per-seat fee — each with its own storage limit.
Spam & malware protection
Inbound mail is spam-filtered and can be scanned for malware with AWS GuardDuty.
Deliverability done right
SPF, DKIM, DMARC and a custom MAIL FROM are configured for you, so you reach the inbox.
Import your old email
Migrate existing mailboxes over IMAP and keep your history when you switch.
Your region, your rules
Choose the AWS region your mail lives in, and set retention windows that suit you.
Apps everywhere
A polished webmail client plus native iPhone and Android apps — all sharing one look and feel.
From zero to your own email in three steps
No mail server to configure, no IP reputation to fight, and no AWS experience required. The app walks you through each step — most people are done in about five minutes.
Install the app, connect AWS
Install MailPoppy on your Mac or PC and link your AWS account once. It deploys the entire email backend for you — no command line, no servers to host.
Add your domain & mailboxes
Point your domain, and MailPoppy sets up the sending records. Then create as many mailboxes as you want in seconds — and migrate your old mail over IMAP if you like.
Use it everywhere
Sign in on the web, iPhone or Android and start sending. Everything you read and write stays in your AWS account.
Coming from AWS WorkMail, Gmail or Microsoft 365? Read the migration guide →
Privacy that's structural, not a setting
With MailPoppy there is no third party between you and your mail. Because the whole service lives in your AWS account, your messages can't be mined for ads, handed to anyone, or read by us — there's nothing for us to read.
- Your mailboxes and messages stay inside your own AWS account
- MailPoppy operates no servers that receive, store or read your email
- Optional malware scanning with AWS GuardDuty
- Spam filtering with policies you control
- SPF, DKIM and DMARC configured for trusted delivery
- Choose your AWS region and set your own retention
Connecting your AWS, safely
A fair question for any tool that touches your cloud: could it copy your credentials? With MailPoppy, you connect AWS the same way every AWS tool does — and you decide exactly how much access to grant.
Runs on your computer
The app is local and calls AWS directly from your machine. There's no MailPoppy server in the path — so there's nothing to send your keys to.
Keys stay in your AWS config
They're saved only in your standard ~/.aws/credentials file (owner-only), in a separate “mailpoppy” profile that never touches your others. Never logged, never uploaded.
Give it least privilege
Connect a dedicated IAM user scoped to just the email stack — not your root or admin keys — so MailPoppy can never reach anything else in your account.
Or use temporary credentials
Works with IAM Identity Center (SSO) and short-lived session tokens, so there's nothing long-lived to leak in the first place.
Revoke at any time
Rotate or delete the key whenever you like, and MailPoppy's one-click teardown removes everything it ever created in your account.
In short
Your credentials are used on your machine, kept in your own config, and limited to exactly what you grant. Nothing about your AWS ever reaches us.
Don't trust us. Verify.
Most email providers ask you to take their privacy promises on faith. MailPoppy doesn't. The security-critical code — everything that runs in your AWS and everything that touches your AWS credentials — is open source, so the claims on this page are ones you can check line by line.
Read what runs in your AWS
The mail backend that receives and stores your email is open. You can confirm it only ever writes to your own account — nothing phones home, nothing is copied out.
Audit how your keys are handled
The component that reads your AWS credentials is open source too. See for yourself that they stay on your machine and are never sent to us or written to logs.
Least privilege, in the open
The exact IAM permissions MailPoppy asks for are published — so you can verify it only ever touches its own email stack, and nothing else in your account.
Source-available under the FSL
Free to read, run and build on under the Functional Source License — and every release becomes Apache-2.0 two years later. No black box, no lock-in.
Privacy you can audit is privacy you can trust
“Private by architecture” only means something if you can confirm it. Bring your own engineers, or your security team — the code that handles your mail and your keys is theirs to inspect.
One service, every device
Set it up once on the desktop; read and send from anywhere.
Desktop admin (Mac & PC)
Runs on your own computer. Deploy, add domains, create unlimited mailboxes and set policies — the control centre for your email.
Webmail
A fast, modern inbox in any browser. Compose in rich text, search, and manage folders.
iPhone & Android
Native apps with push notifications, swipe actions and the same crimson-navy design.
The difference is who's in control
| MailPoppy | Typical email SaaS | |
|---|---|---|
| Where your email lives | Your own AWS account | The provider's servers |
| Who can read it | Only you | The provider (and its partners) |
| Pricing model | AWS usage — no per-seat fee | Monthly, per user |
| Adding mailboxes | Free — just create them | Another seat to pay for |
| Leaving | One-click teardown, no lock-in | Export and hope |
| Data region | You choose | Often fixed |
| Can you verify the privacy? | Yes — the engine is open source | No — closed, trust required |
You pay AWS at cost — not us, per seat
Because everything runs in your account, your only running cost is your AWS usage, which is typically a few dollars a month for a whole domain.
Simple, one-time pricing
MailPoppy's own pricing is on the way. No subscriptions to us, no per-mailbox tax — just the app that sets it all up. In the meantime, you can look around the webmail today.
Open MailPoppyQuestions, answered
Does MailPoppy store or read my email?
No. Your mailbox and every message live inside your own AWS account. MailPoppy operates no servers that receive, store, or have access to your email — it is private by architecture, not just by policy.
Do I need to be technical, or know AWS, to use it?
No. You don't need any cloud experience — if you've never created an AWS account or set up infrastructure in your life, you'll be fine. MailPoppy is an app you install on your own computer (Mac or Windows); you follow plain-language, on-screen steps, and it deploys the whole email backend for you — inbound and outbound mail, storage, anti-spam and DNS records included. No servers to run, no command line, no config files. Most people go from nothing to a working, professional email setup for their domain in about five minutes.
How many mailboxes can I create?
As many as you want. Once your domain is set up, creating a new mailbox takes seconds, and there's no per-seat fee — add one address or a hundred for the same flat AWS usage. Each mailbox can have its own storage limit.
What does it cost?
Because everything runs in your own AWS account, you pay AWS directly for what you use — typically a few dollars a month for an entire domain, with no per-mailbox subscription. MailPoppy's own pricing is coming soon.
Can I use my own domain?
Yes. MailPoppy is built for your custom domain. It sets up the sending records (SPF, DKIM, DMARC and a custom MAIL FROM) so your mail lands in the inbox, not the spam folder.
Can I move my existing email over?
Yes. MailPoppy can import your existing mailboxes over IMAP, so you keep your history when you switch.
What if I want to leave?
There is no lock-in. A single action tears the whole deployment back down and removes it from your AWS account. Your data was always yours — and it stays that way.
Is it secure?
Mail is filtered for spam and, optionally, scanned for malware with AWS GuardDuty. You set retention, per-mailbox storage limits and your AWS region, so you control where your data lives and how long it's kept. And because the engine is open source, the security is verifiable — you don't have to take our word for it.
Is MailPoppy open source?
The engine is. The parts that matter most for trust — the mail backend that runs inside your AWS, the infrastructure definition with its least-privilege IAM policies, and the local component that handles your AWS credentials — are published as source-available code under the Functional Source License (which becomes Apache-2.0 two years after each release). The polished desktop app and any Pro features are proprietary, but the security-critical code is open for anyone to read.
How do I know my mail and credentials are really private?
You can verify it instead of trusting a promise. Because the code that runs in your AWS and the code that touches your AWS credentials are open, you — or your security team — can read exactly what MailPoppy does: that your mail never leaves your account, and that your keys are never sent to us. "Private by architecture" is a claim you can check line by line.
Could MailPoppy copy or misuse my AWS credentials?
No. The admin app runs on your own computer and talks directly to AWS — there is no MailPoppy server in the middle. Your keys are saved only in your standard AWS config file (~/.aws/credentials, owner-only permissions), in a separate "mailpoppy" profile that never alters your other profiles, and they are never sent to us or written to logs. For extra peace of mind, connect a least-privilege IAM user or temporary SSO credentials — and revoke them whenever you like.
Do I have to give MailPoppy admin access to my AWS account?
No — and you shouldn't. MailPoppy only needs permission to create and manage its own email stack. Connect a dedicated IAM user limited to those permissions (or temporary IAM Identity Center credentials) instead of your root or full-admin keys, so the app can never touch anything else in your account. You can delete that user, and tear the whole deployment down, at any time.
Where can I read my mail?
Everywhere: a webmail client in any browser, plus native apps for iPhone and Android. The desktop app is for the administrator who sets everything up.
Take your email back.
Professional email on your domain, private by design, with no per-seat bill and no lock-in. It runs in your AWS, so it's yours — start in minutes.
Open MailPoppy