How to Encrypt Emails in Microsoft Outlook

Outlook is one of the most popular Windows email clients used by many professionals and businesses. As such, there will be times when you want to send sensitive emails or confidential documents while ensuring that only the intended recipient can access them. Sure, almost all the major email services use email encryption (SSL/TLS) to make sure that it is safe and secure. However, more often than not, this type of encryption can only protect the email when it is moving through the Internet. When your email is in the resting state. i.e. in your inbox, anyone with access to your email account can read it.

To make sure that only the intended recipient can access your email, you can further encrypt the email using GPG (GNU Privacy Gaurd) to use public and private keys to encrypt emails. Here’s how to encrypt emails in Outlook using GPG.

Encrypt Emails in Outlook Email Client

To encrypt emails in Outlook we are going to use a free software called Gpg4win which supports OpenPGP. Download and install Gpg4win like any other software. The software will install the required plugin to encrypt and decrypt email within the Outlook email client.


Once installed, search for “Kleopatra” in the Start menu and open it. Here, you can create your own keyring and import any public keys as needed.


After opening Kleopatra, navigate to “File,” and then select the option “New Certificate.”


In this window select the first option, “Create a personal OpenPGP key pair” and click on the “Next” button.


Here, enter your name and email address you want to create the keyring for. The key pair will be tied to this email address.


Now, review your certificate parameters and click on the “Create Key” button.


Enter a strong password for your key pair and click on the “OK” button. You will be prompted to re-enter the password; just enter the same password to continue.


The above action will create your key pair that contains both your public and private keys. By clicking on the “Make a Backup Of Your Key Pair” button, you can create a backup of the key pair for safekeeping.


Publick Key: The public key is used to encrypt the email. As such, you can share your public key however you want. If someone wants to send you an encrypted email, they have to use your public key to encrypt the said email.

Private Key: The private key is used to decrypt the encrypted email. You should never ever share your private key. Moreover, your private key can only decrypt emails that are encrypted with your public key.

To export the public key, select your certificate in the main window, and click on the “Export Certificate” button.


Select the destination and click on the “Save” button. By default, the file fingerprint will be used as the name. You can change the file name if needed.


Once exported and saved, you can distribute the public in any method you want like in forums, on your website, etc.

Like I said before, if you want to send an encrypted email, you have to use the target recipient’s public key to encrypt the email. Before you can do that, you have to import the public key of the recipient.

To do that, ask them to give you their public key and download it. In the main window of Kleopatra click on the “Import Certificate” button. Now, browse and select the certificate.


The above action will import the public key. Before you can use it, you need to trust it. To do that, navigate to the “Imported Certificates” tab in the main window. Right-click on the certificate you just imported and the select the option “Change Owner Trust.”


Now, select the “I believe checks are very accurate” radio button and click “OK.”


Again, right-click on the certificate and select the option “Certify Certificate.”


Here, select both the checkboxes as indicated and click “Next.”


Select the “Certify only for myself” radio button, and click the “Certify” button.


You will be prompted for your password that you entered while creating the key pair. Enter the password and click “OK.”


You will see the confirmation window. Click “Finish” to close the window.


Once you are done importing the public key, you can use it to encrypt the email for that specific user using your Outlook client.

To encrypt the email, open the Outlook client and compose a new email like you always do. After composing the email, navigate to the “GpgOL” tab, and then click on the  “Encrypt” button.


As soon as you click on the button, Gpg4win will encrypt the email if you have the public key of the target email address. Once encrypted, this is how it looks. The intended recipient will be able to decrypt this email using his/her private key.


If someone sent you an email encrypted with your public key, Outlook will prompt you for the password that you entered while creating the key pair. Just enter the password and click on the “OK” buttom.


If everything goes well, you will see the decrypted message in your Outlook client.


It is that simple to send and receive encrypted emails using Outlook email client. Again, never ever share your private with anyone.

Do comment below sharing your thoughts and experiences about using the above method to encrypt emails in the Outlook email client.

Vamsi Krishna

Vamsi is a tech and WordPress geek who enjoys writing how-to guides and messing with his computer and software in general. When not writing for MTE, he writes for he shares tips, tricks, and lifehacks on his own blog Stugon.

Subscribe to our newsletter!

Our latest tutorials delivered straight to your inbox