What is this?

The premise is simple: A sufficiently secure, encrypted mail service that is not proprietary and still allows interoperability with standard protocols and software.

How does it work?

It was designed with 3 primary goals in mind:

Portability: You choose where your mail is stored. Each mailbox can be configured for a given region and moved at will.
Privacy: All data stores are encrypted, both at the system and mailbox level. All data store locations are secret and unknown to even the servers you connect to. Obviously we can't say how, that would give the game away.
Interoperability: Standard SMTP, IMAP, and POP3 & Sieve protocols are supported. No bridges, no proprietary proxies, standard protocols, standard software.

What features does it have?

As a service must be useful, all the expected features are supported:

Your choice of: single mailbox (uuid@ne2hhr.xyz), and/or subdomain (@uuid.ne2hhr.xyz), and/or your own domains (and optionally subdomains). The only limit is your user quota, share them between mailboxes/aliases/domains as you wish.
As many aliases as you want based on localpart@domain, catch-all @yourdomain.com, etc
Aliases on our domains to avoid associating your own domain for high risk scenarios
Plus addressing (e.g. user+tag@domain.com)
Sieve filtering
Quota per mailbox
DKIM, SPF, DMARC verification
DKIM signing on outgoing messages (your key or generated by us)
SMTP, IMAP, POP3 support (TLS)
Supports SRV lookups
Accessible via TOR, Lokinet and I2P
Supports receiving and sending mail from and to .onion MXes

Additionally, relay only is supported, using your own smtp/lmtp destination:

If it's reachable via clearnet (any port), TOR, Lokinet, I2P etc, ne2hhr.xyz can purely be inbound/outbound.
For this, currently it is priced at $4 per month per domain (including unlimited subdomains).
Obviously you're responsible for setup and limited support is available.

Things we would like to support at some point in the future, if it can be done reliably and in a privacy-conscious manner:

Calendars, contacts, notes, etc (plenty of things exist for this already)

Things that are not supported and will not be supported:

Webmail
Analytics, metrics, log export etc (we don't collect it, how can we send it to you?)
STARTTLS

How much does it cost?

While benevolence is nice, it is not sustainable. Nothing is free to run or maintain, as of yet final pricing has not been determined, but it will be in the range of $5 per month per 1GB of storage. Custom domains, aliases, filtering etc, are for the moment, free of charge. As the service is developed and refined, pricing may change. Pricing will be grandfathered in (or reduced as appropriate) for existing subscriptions.

What payment methods do you accept?

Cryptocurrency (currently: BTC & Monero) is the preferred method of payment, inline with the privacy principles, however, credit cards and wire transfers will also be accepted upon request.

What jurisdictions are you under?

That is a tricky question to answer. While the infrastructure is owned and operated by USA and European domiciled entities, the data stores may not be. It remains to be seen how this will be approached legally.

How about some more technical information?

Architecture

Backends:

Locations: located in jurisdictions within the region that are likely to offer the least amount of surveillance, interference or data retention obligations. Current regions: Europe, North America
Security: All machines are ephemeral, block encryption secures the data store and additionally, per-mailbox encryption also takes place. The APIs driving rotating encryption keys and tamper detection etc are in a physically secure location with no 3rd party access.
Portability: You decide where your mail is stored. The region for each mailbox can be set or changed in the dashboard at any time. If you change the region, your access and new mail will be delivered to the new location, however existing mail will be migrated automatically, it may take a while.

Internet-facing: These servers are essentially just proxies, they do not store any data, they simply route your connections to the appropriate backend based on the mailbox region and handle encryption and decryption of the data in transit. They are also responsible for accepting incoming mail and routing it to the appropriate backend. They store no logs and have only minimal information required to get the connections to the correct place. The same security and encryption techniques are applied, additionally they have no input, consoles or management access whatsoever. Unavailability results in destruction.