For information on changes for our US clients, please visit our Support Center article.

Due to increased demand, account verification may be delayed. Please avoid submitting multiple requests, and for best results, review our document requirements beforehand.
Search
How do I set up PGP/GPG encryption for my email?
Before setting up PGP encryption, we recommend reviewing our short explanation of the topic. Note that this is an optional security feature. You will be able to receive our emails without PGP enabled, and will receive those emails with standard security methods enabled like TLS.
To start with setting up PGP, you will need software that can create your private and public key so that you can:
  • Encrypt emails that you send.
  • Decrypt emails that are sent to you.
We recommend that you review the software list of OpenPGP to find the best match for you.
The most popular methods are:
Once you have created your private and public key, you will now be able to receive encrypted emails from Kraken by sharing your public key with us through your account settings. To find your public key, review the documentation provided by your PGP software; every software provider stores public keys in different ways.
Note: you should never share your private key with anyone. Kraken will never ask for your private keys.
Sharing your PGP public key with Kraken
  1. 1
    Sign-in to your Kraken account.
  2. 2
    Navigate to your name in the top right corner, select Settings
    image3.png
  3. 3
    Click on the Security tab, then scroll down until you see the Additional settings section with Email Encryption. Toggle this on.
    image2.png
  4. 4
    Paste your public key in the field which says PGP key, then click on Change email encryption.
    image4.png
  5. 5
    That’s it! We will now be sending all automated account notifications to you encrypted with your public key from [email protected].Note: Company announcements and marketing emails from Kraken will never be encrypted, but are always signed with our public key. If you want responses from our Support team to be encrypted, please follow these instructions.
Verifying that Kraken signed an email with Kraken’s private key
[@portabletext/react] Unknown block type "block", specify a component for it in the `components.types` prop
Testing PGP Setup
Finally, to test and verify that an email from Kraken will be fully encrypted, follow these steps:
  1. 1
    Trigger an automated email from us by requesting your username.
  2. 2
    Navigate to your email account while using your PGP email software and verify that the sender details of the email are showing as encrypted.
    For comparison, Protonmail shows it as follows:
    image5.png
  3. 3
    You should now be set and ready to go!
What is the "signature.asc" email attachment?
  • The signature.asc file that is attached to all automated emails being sent from [email protected] and [email protected] can be used to verify whether the email was actually sent by Kraken.
  • You don’t need to open it, since it’s a file that is meant to be decrypted by PGP software.
  • It contains a PGP text block which is generated by using both the content of the email and Kraken's PGP private key. Generally email providers will automatically decrypt this text with the public key of Kraken, and show you whether a sender is verified.
  • For more information on the topic we suggest you review our article on what PGP is.Note: you should never share your private key with anyone. Kraken will never ask for your private keys.