Personal Privacy Shield is an open list (VPE enabled) used by a single person to compartmentalize all outside email contact. Each outside party - each service, each person, each business - gets a unique alias sublist address. The real inbox behind the relay never receives direct mail from anyone. Every inbound message arrives through EMail Parrot, screened and stripped of tracking content, with the sender visible by sublist identity rather than the real address behind it.
This configuration suits individuals who want to control who can reach them and how, prevent cross-site identity correlation from data brokers, and limit the blast radius of any single address compromise. It is the privacy-first equivalent of using a different password for every site.
1. EMail Parrot Configuration
Create your list. Go to emparrot.com/admin and create a new list. Choose a list name that reveals nothing about you personally - relay or mp or anything neutral works fine. Your list address will be yourlistname@emparrot.com.
Add yourself as the only member. You are the sole member. Use a pseudonym that does not identify you - me or any placeholder. All mail to the list routes to your real address.
Enable VPE. In Group Settings, set “Open Email List with VPE” to True. This allows you to initiate contact with outside parties without exposing your real address, and allows replies to route back through the relay.
Create a sublist for each outside contact or category. This is the core of the Personal Privacy Shield pattern. Instead of giving out your list address directly, you create a dedicated sublist for each outside party or service. Examples:
bank.relay@emparrot.comfor your bankdoctor.relay@emparrot.comfor your doctor’s officeshop-amz.relay@emparrot.comfor one retailershop-tgt.relay@emparrot.comfor anotherfriend-alice.relay@emparrot.comfor a specific person
Each sublist contains only you. Outside parties can send to it. You receive the mail. The sending party knows only the sublist address - not your real address, not your identity across other contexts, and not your other aliases.
Turn on all protection settings. In Group Settings:
- Advanced protection: on
- Strip external content: on
- AI safe protection: on
- Instant deletion: on
Leave direct messaging enabled (default). Since you are the only member, direct messaging has no effect but there is no reason to disable it.
2. Your Email Client Setup
The strongest configuration: block all non-EMP mail at the inbox level. If the goal is that your real inbox never receives direct mail, configure your email client to treat any mail not relayed through EMail Parrot as low-priority or filtered out entirely.
In Gmail, create a filter:
- Condition:
-from:emparrot.com(or the relay sender domain if you have a custom domain) - Action: Skip inbox, apply label “Direct - Review”
This means scammers who find your real address through a data breach cannot reach your inbox directly. Mail from EMail Parrot lands normally. Everything else lands in a holding folder for manual review.
Create a filing folder per sublist (optional). If you maintain many aliases and want mail from each to arrive in its own folder, create filters that match the sublist address in the To or subject fields and route to labeled folders. This is optional - a single “relay” label for all EMP mail works fine for most people.
Consider a privacy-focused email provider as the real address behind the relay. EMail Parrot protects your address from outside parties, but the relay itself knows your real address. Using a privacy-focused provider (Proton Mail, Tuta, or similar) as the address behind EMP means that even if EMP logs were compromised, the real address is itself unlinkable to your legal name or physical location. This is defense in depth, not a requirement.
3. Addressing Conventions
Never give out your real address or your main list address. Always give out a sublist address specific to the context. When a new service, contact, or relationship appears, create a new sublist first, then give out that address.
Generating a new alias before you need it. Do not wait until you are on a sign-up form to create the sublist. Create the sublist in the EMP admin panel first, then use that address on the form. Keeping a small pool of pre-created generic aliases (temp1, temp2) works well for one-time signups where you do not want to invest in a named alias.
Rotating a compromised alias. If a sublist address starts receiving spam (meaning the outside party leaked it, sold it, or was breached), the response is to:
- Create a new sublist with a fresh name
- Update your contact record with the relevant party to the new address (or simply stop using that service)
- Disable or delete the compromised sublist in the EMP admin panel
Your real address is never exposed. The blast radius of the compromise is contained to that one alias.
Outbound to new outside parties. Use the VPE format: +contact=at=theirdomain.com+yourlistname@emparrot.com. Use the address conversion tool to generate this. Save the converted address as the contact record for that person or service. Future replies route back through the relay automatically.
For a contact who should have a dedicated sublist, address outbound mail through that sublist instead: +contact=at=theirdomain.com+doctor.relay@emparrot.com. Replies from that contact will arrive tagged with the doctor sublist identity.
Settings to Consider
All protections are on by default in this configuration. A few additional considerations:
Custom domain is not required for personal use but adds a layer of plausibility if you want aliases that look more like organizational addresses (e.g., doctor.me@e.yourdomain.com rather than doctor.me@emparrot.com). Custom domains also make alias addresses slightly harder for data brokers to identify as relay addresses.
Address book restriction. Since you are the only member, the address book command (addressbook.yourlist@emparrot.com) returns only your pseudonym and sublist addresses. This is harmless, but be aware that any party with your list address can request the address book and see your sublist names. Name sublists with that in mind - bank is fine; bankname-acct1234 reveals more than necessary.
Alias naming discipline. Short, opaque alias names are better than descriptive ones. doc is preferable to my-dr-smith-cardiology. The alias name is visible to the outside party as part of the address format.
Checklist
- List created at emparrot.com
- Yourself added as the only member with a neutral pseudonym
- VPE enabled in Group Settings
- Advanced protection, AI safe protection, and instant deletion enabled
- Sublists created for first set of outside contacts or services
- Real inbox filter configured to route non-EMP mail to review folder
- Address conversion tool bookmarked for generating outbound VPE addresses
- Contact records updated to VPE-format addresses for existing contacts you want to bring behind the relay
Back to setup options | Addressing reference | Administrator documentation