Privacy Guard 2014 is the complete privacy package! Complying with the OpenPGP standard delivering military strength encryption using public key and symmetric encryption, yet presented in a very user friendly way.

Security and privacy are so important - and everybody's fundamental right - Privacy Guard is engineered in a way that provides a staggering array of features but at a price that is low enough to be considered the number one choice for your data security and integrity!

We know that PGP and other encryption technologies can be extremely daunting and complicated. Privacy Guard cuts out all this complexity and gives you the best possible encryption, in a straight forward and easy to use interface! Let us worry about the maths and the algorithms... you focus on your privacy!


Whether your data is stored locally, or in the cloud, Privacy Guard will secure it. Using PGP, the data is encrypted to specific keys meaning even if the data is sent to the wrong person, lost or stolen, provided to the government under an information request warrant or snopped on by your cloud provider, it remains impossible to decrypt by anybody other than those it is intended for.


Make no mistake, just because your data is stored in the cloud, it may be no more secure than storing it on a local hard disk. A cloud server is essentially a hard disk in a data centre - it's your data, on someone elses hard drive - and by shifting the onus of security from your local PC or your local IT department to a cloud service, can you be sure it is stored securely? Encrypting your data with Privacy Guard ensures your data - local or cloud - remains secure under all circumstances!


It is also worth remembering, since the US introduced the Patriot Act, and subsequently started its Prism, Bullrun (and now defunct TIA) programs, they can gain access to any cloud data they wish, on any UK and EU citizen, without any offical request, or even a warrant.



We could talk all day about how fantastic we think this product is, but we're going to let its feature set speak for us >>>



"Encryption works. Properly implemented strong crypto systems are one of the few things that you can rely on..." - Edward Snowden. Read More


"Trust the math. Encryption is your friend. That's how you can remain secure even in the face of the NSA" - Bruce Schneier. Read More


"For me, the ease of use and variety of keys it can generate make it ideal. The fact it can generate 8192-bit RSA keys caught my eye immediately. And because it uses open source PGP it integrates seamlesly with my countermail keys. Great and simple to use product that almost anyone can use with minimal training. Ideal in this day & age of snooping, spying & big data." - Tom Farley, Systems Officer, TT2 Ltd


"I saw Privacy Guard on Twitter and wanted to try it (despite thinking it was for business customers only - I now know it's not!) and within a couple of hours, all family members had PGP keys and ALL our personal information is now for the families eyes only! Love it!" - Saffi, UK.


"The only PGP application I've seen that offers so much functionality and ease of use. Especially love the huge range of keys available. Very quick to implement office wide." - C Barnett, Data Security Analyst.


"The whole 'I have nothing to hide' argument is an automatic response for lazy people. Privacy involves being proactive when it comes to your private data. When your private data has been compromised, reactivity is futile. Be proactive, get Privacy Guard, protect your private information!" - Vince, Minnesota, USA


"Have your emails stored and analysed for the next five years by the US and UK governments... why? Because they have to, because they can't read their contents. Encrypt your emails, files, documents and chat with Privacy Guard and keep what you do online PRIVATE." - Tamara, Kursk


"I once used Privacy Guard (or ProtectIT as it was known then!) from its first days in 2010. I am blown away by the new look application and the amount of security features Privacy Guard 2014 now offers. I love it, my number one choice for all my information security!" - D. Walton, UK.


Registered Software Only denotes this feature is only available in registered copies of Privacy Guard.


Complies to Open PGP standards

What does this mean?

Privacy Guard

OpenPGP is an Open Source version of PGP.

PGP was developed in 1991 by Phil Zimmerman.

In 1997, it was agreed to release an Open Standard for PGP, freeing it from all the legal issues surrounding patents etc.

AES Key Generator

What does this mean?

Privacy Guard

Privacy Guard will now generate AES encryption keys based on random passwords, or passwords provided by the end user. This provides safe and authentic keys for use in a development environment.

Uses CryptoStore Technology

What does this mean?

Privacy Guard

CryptoStore is an encrypted settings system from COCA Solutions that stores both keys and values in a secure format by implementing 256-bit AES and SHA256 hashing algorithms.

Registered Software OnlyMulti-Factor Authentication Login

What does this mean?

Privacy Guard

Your Private Key passphrase is extremely important, it should NEVER be shared as this provides access to your Private Key, used for digital signing and encryption methods under the PGP architechture.

Multi-Factor Authentication (MFA) allows you to generate an encrypted token on a removable device and secure this with a secondary password.

Using MFA, you need never key in your Private Key passphrase on a system suspected (for example) of running Key Loggers. Using both the MFA Token AND your secondary password allows a secure login without typing your passphrase. Should your secondary password be compromised, without the MFA Token, login in this way will not be possible. BOTH factors need to be present OR the original Private Key passphrase needs to be used.

Registered Software OnlyPublic Key Information And Images

What does this mean?

Privacy Guard

Eventually you will build up a number of contacts (some with multiple keys) and all these will be on your Privacy Guard keyring.

Privacy Guard allows you to add an image to a public key for easy identification. This image is stored in the key itself and will be available to the recipient of that key if distributed. The image is shown automatically when the corresponding user is selected on your keyring.

In addition, clicking any key in your keyring, quickly shows the important information in a dedicated Information Panel.

Registered Software Only AES, Blowfish, Twofish, 3DES Algorithms

What does this mean?

Privacy Guard

The are many encryption algorithms available. Some have been successfully cracked while others remain secure.

Privacy Guard's default algorithm for symmetric encryption is AES (Rijndael) but it also offers additional algorithms if required.

These include Twofish, Blowfish, 3DES (TripleDES) in addition to AES.

These additional algorithms are available when creating Privacy Guard Archives.

Check For Updates From Within Privacy Guard

What does this mean?

Privacy Guard

Privacy Guard speaks directly with an Update Server to check if you have the latest release available.

Simply click "Check For Updates", Privacy Guard will identify the installed version and check this against information on the update server. If an update is available, you will be directed to the Privacy Guard download page.

Note: In order to comply with UK export restrictions, Privacy Guard must be downloaded from this website.

Auto Clear Clipboard

What does this mean?

Privacy Guard

When enabled, Privacy Guard will overwrite your clipboard every 60 seconds with randomly generated data.

This feature provides piece of mind in case you leave sensitive data on your clipboard, Privacy Guard will clear it for you.

Generate Secure Random Passwords

What does this mean?

Privacy Guard

When symmetrically encrypting files the password is even more important.

To ensure a secure password is used, Privacy Guard now has a GENERATE button which will generate a random, 128 character password and drop this into the password fields for you.

No Escrow Keys

What does this mean?

Privacy Guard

Escrow Keys are 'hidden' keys in encryption hardware or software that allow another person or organisation access to any encrypted data.

What can happen is this, you specify a password for your data, this is then used to encrypt it. At the same time the software encrypts your data to the escrow key. This means there are now two keys (your personal key and the escrow key) that can decrypt the data.

There has been a lot of controversy recently surrounding the USA's NSA (National Security Agency) forcing large companies to insert such keys into their encryption software, allowing the NSA to decrypt any data - belonging to any person or any organisation - using that software.

Registered Software Only Database Ready Cipher Text

What does this mean?

Privacy Guard

Privacy Guard Archives (PGA's) are encrypted with the option of Rijndael (AES), Twofish, Blowfish or TripleDES algorithms.

Whatever algorithm you choose, Privacy Guard will format the output cipher text in a database friendly (BASE 64) format, allowing it to be reliably stored in any database.

Secure File Wipe

What does this mean?

Privacy Guard

When deleting a file from your Windows Operating System, the file is not actually removed from the disk.

What happens is the OS removes or 'scrubs' the File Header (the files identity) but leaves the physical file in place.

By removing the File Header, this 'hides' the files physical data from the operating system and allows that sector to be overwritten with new data.

Once overwritten, the data is safe from recovery but until such times, the data can be recovered using specialist 'Undelete Software'.

Privacy Guard overwrites the file in question ten times with random data, makes additional modifications to the file and its attributes before securely wiping the file altogether.

Access Privacy Guard With A Right Click

What does this mean?

Privacy Guard

Right click on your Windows Desktop and click Open Privacy Guard to launch Privacy Guard.

In addition to double clicking a file to decrypt it, a right click and selecting 'Send To' will send the file (or files) to Privacy Guard. After logging in, if the file(s) are encrypted, Privacy Guard will prepare the files for decryption. If unencrypted, Privacy Guard will prepare them for encryption.

One-time Passphrase Entry

What does this mean?

Privacy Guard

OTP (One-time Password) increase security by asking the user to enter their password (or in Privacy Guards case, passphrase) only once.

This is important as it means there is less chance of a password being seen as it's typed and also, less chance of keyloggers capturing the password as it is keyed.

Auto-Decrypt Clipboard

What does this mean?

Privacy Guard

The auto-decrypt feature monitors your clipboard for a valid PGP message and automatically decrypts it, replacing the encrypted text with the decrypted text.

This allows easy decryption of messages with a simple copy/paste.

See Recipients Of Archives And Messages

What does this mean?

Privacy Guard

When decrypting a PGP archive, Privacy Guard will analyse the file and list all the keys the archive is encrypted to.

This allows you to easily identify all intended recipients of the archive.

It is also possible to view the intended recipients of a PGP message by simply copying it to your clipboard and checking the Message Recipients.

Non-repudiation through Digital Signatures

What does this mean?

Privacy Guard

Non-repudiation is a legal term. In cryptography it gives a user confidence the file, text or email is from who it claims to be.

This is achieved by 'digitally signing' the item using your private key.

As only you have access to your private key, you cannot dispute you signed the item, likewise, the recipient(s) can say with certainty the item is genuine and from who it is claimed to be from.

Registered Software Only Direct & Certificate Key Revocation

What does this mean?

Privacy Guard

There may be a time when you need to revoke a key you've previously distributed.

Examples of why a key would be revoked could be the private key has been compromised, another key supersedes it, the key is no longer in use or the user no longer needs that key.

Privacy Guard allows you to revoke your key directly and export a replacement public key or generate a Revocation Certificate which can be distributed to your contacts. Importing these into Privacy Guard revokes the relevant key, preventing further encryption to that key.

Encrypt Multiple Files to Multiple Recipients

What does this mean?

Privacy Guard

The power behind Privacy Guard is the OpenPGP engine.

While you may need to only encrypt a single item for a single recipient, you're more likely to need to encrypt multiple items to multiple recipients.

Many encryption solutions allow this using symmetric (password based) encryption only. Privacy Guard makes this possible using your recipients public keys so only the people you encrypt the data for can decrypt it. No need to worry about passwords falling into the wrong hands.

This also allows you to encrypt an item to your recipients public key, as well as your own. Allowing only you and them access to the data.

Encrypt text to multiple recipients, in one pass

What does this mean?

Privacy Guard

The power behind Privacy Guard is the OpenPGP engine.

While you may need to only encrypt a single item for a single recipient, you're more likely to need to encrypt multiple items to multiple recipients.

Many encryption solutions allow this using symmetric (password based) encryption only. Privacy Guard makes this possible using your recipients public keys so only the people you encrypt the data for can decrypt it. No need to worry about passwords falling into the wrong hands.

This also allows you to encrypt an item to your recipients public key, as well as your own. Allowing only you and them access to the data.

X.509 Digital Certificate Support

What does this mean?

Privacy Guard

X.509 is a Digital Certificate standard.

Import Digital Certificates as public or private keys with Privacy Guard.

Privacy Guard supports .pfx, .p12 (essentially the same file, seperated by Microsoft and Netscape naming standards) files for Private Keys and .cer, .p7b and .key files for public keys.

Decrypt PGP encrypted archives

What does this mean?

Privacy Guard

Privacy Guard is OpenPGP compliant. This gives you - the end user - the ability to use PGP archives generated from other PGP and OpenPGP compliant software.

Likewise, any archives you create can be decrypted by other PGP compliant software.

PGP Sign and Verify files

What does this mean?

Privacy Guard

Privacy Guard can create digital signatures of files, allowing you to create a unique signature which can be made available to the recipient to allow them to verify the file, to confirm the content hasn't changed since being signed.

This can be done using hashes/messages digests but Privacy Guard also allows PGP signatures to be generated - allowing them to be verified by other PGP compliant software.

Drag and Drop file encryption

What does this mean?

Privacy Guard

The Keyring Manager screen contains a 'Drop Zone'.

Dragging files from a Windows folder onto this DropZone will add them to an archive and begin the encryption process.

Verify files using hashes/message digests

What does this mean?

Privacy Guard

Authentication is just as an important role in cryptography as encryption is.

Hashes/message digests are a set of unique characters, forming a 'digital signature' generated from a file or message.

This should be distributed securely or in a read-only format with any file allowing users to verify a file (or text) integrity.

An example of this is the SHA256 hash published alongside the Privacy Guard download.

Registered Software Only Generate file hashes/message digests

What does this mean?

Privacy Guard

Authentication is just as an important role in cryptography as encryption is.

Hashes/message digests are a set of unique characters, forming a 'digital signature' generated from a file or message.

Privacy Guard allows you to generate SHA1, SHA256, SHA512 and MD5 hashes/message digests of files.

An example of this is the SHA256 hash published alongside the Privacy Guard download.

SHA1, SHA256, SHA512 and MD5 Hashing Algorithms

What does this mean?

Privacy Guard

This refers to the supported algorithms for hashing files.

See Verify files using hashes/message digests for more information.

Secure Notepad - contents encrypted in memory

What does this mean?

Privacy Guard

Privacy Guard contains a secure notepad. This is a simple text editor that uses an encrypted memory space to store the information.

The information is auto-saved in case of power failure. This is also encrypted.

Encrypt & email Secure Notepad contents

What does this mean?

Privacy Guard

Privacy Guard uses MAPI to connect your default mail client. This allows you to prepare a message in Secure Notepad and send it directly from there to any recipient on your keyring.

Using the information from your recipients public key, Privacy Guard first encrypts the message to that key and opens an email form, containing the encrypted message - for you to check before sending.

Sign & email Secure Notepad contents

What does this mean?

Privacy Guard

Privacy Guard uses MAPI to connect your default mail client. This allows you to prepare a message in Secure Notepad and send it directly from there to any recipient on your Keyring.

Using the information from your recipients public key, Privacy Guard first digitally signs the text before opening an email form, containing the signed message - for you to check before sending.

PGP compatible Keyring Manager

What does this mean?

Privacy Guard

The Privacy Guard keyring is fully PGP compatible.

This means you can share PGP keys with both other Privacy Guard users and users of other PGP compliant software.

Generate Elliptic Curve Keys

What does this mean?

Privacy Guard

Elliptic Curve (EC or ECC) was suggested in 1985 but didn't enter mainstream cryptography until around 2004/2005.

ECC is a form of Public Key encryption; and all this protocols strength is reliant on the problems with large semi-prime factoring or the discrete logarithm problem.

Privacy Guard's ECC keys are based on the ECDH (Elliptic Curve Diffie-Hellman) scheme.

For Elliptic curve based protocols, it's assumed that finding the discrete logarithm of a random elliptic curve element with respect to a publicly known base point is infeasible.

Generate RSA and ElGamal (DH/DSS) keys

What does this mean?

Privacy Guard

These are the two main types of keys used in PGP encryption.

In the basic of terms, these are asymmetric keys, key pairs. One is a private key (and MUST be kept secret and safe!) and the other is public (which you distribute freely, to anyone who wishes to contact you securely).

RSA is often the preferred algorithm (hence it is default in Privacy Guard) although ElGamal is used extensively and neither have a real advantage over the other in terms of security.

It's personal preference which is used.

1024-bit to 16384-bit key sizes

What does this mean?

Privacy Guard

A key size is measured in bits and as a rule, the larger the key, the more secure it is (it's worth noting Elliptic Curve key sizes aren't the same as their algorithms differ), although its performance may take a hit.

Most encryption software offers key sizes from 512-bits to 2048-bits. Some offer up to 4096-bits.

The strength of these keys relies on factorisation. These keys are essentially very, very large numbers, or semi-primes and made up from two smaller prime numbers.

Their security relies on how long it takes a computer to factor this massive number back to its two constituents. The two original prime numbers.

There is some talk 1024-bit keys may have been successfully factorised, so a minimum of 2048-bit key sizes are recommended.

Basic/Advanced modes of operation

What does this mean?

Privacy Guard

Privacy Guard has a Basic and Advanced mode of operation.

Basic mode offers most of the features of Privacy Guard with some functionality removed for ease of use.

Advanced mode enables all the features, for the more confident user.

You can easily switch modes by clicking OPTIONS under the FILE menu and clicking the checkbox in the options screen.

Registered Software Only Import PGP Private and Public Keys

What does this mean?

Privacy Guard

Because Privacy Guard is OpenPGP compliant, you can import PGP key pairs (private/public) into Privacy Guard.

In addition, you can export your private/public key pairs from Privacy Guard.

Registered Software Only Change Private Key User ID

What does this mean?

Privacy Guard

Should your name or email address change, Privacy Guard allows you to change this information on your private key.

By distributing the replacement key, Privacy Guard will reflect these changes on their keyring.

Export Public Keys

What does this mean?

Privacy Guard

A public key is the 'encryption key' for your recipient. You need to distribute this to your contacts or make it available for download from your website for example.

You could also be asked for a colleague or friends public key - which you are able to distribute with it being public.

Privacy Guard allows these to be easily exported to a (Armoured ASCII) file, straight from the keyring.

Registered Software Only Export keys as pairs

What does this mean?

Privacy Guard

Privacy Guard allows multiple private keys on the same keyring. One - for example - may be the company private key, the other may be your own.

Privacy Guard allows you to export these as pairs.

Care should be taken when doing this. Whilst the keys are still encrypted, they are no longer under the protection of the keyring. You must keep any exported keys and their corresponding passphrases secure.

Integrated help via the CIH Technologies Help Centre

What does this mean?

Privacy Guard

The CIH Help Centre is an online help screen, clicking HELP or pressing F1 anywhere in Privacy Guard will open the Help Centre

Import Public Keys direct from clipboard

What does this mean?

Privacy Guard

Sometimes you'll be sent a public key by email.

Privacy Guard allows you to copy this to your clipboard and import this directly to your keyring via the KEYS menu.

AES Encrypted Keyring

What does this mean?

Privacy Guard

Your keyring contains your private key (and any others you may have created/imported) and the keys of your recipients.

To add an additional layer of security for your keys, Privacy Guard encrypts the keyring with 256-bit AES encryption.

Registered Software OnlyAES encrypted Keyring backups

What does this mean?

Privacy Guard

It is always advisable to backup your keyring, just in case of hard disk or system failure.

We recommend completing this backup via Privacy Guard to ensure the relevant files are backed up and protected using AES-256 bit encryption.

This is done to provide an additional layer of security in case you choose to use external media.

If you do not backup and your private key is lost, any data encrypted with this key will be unrecoverable.

Registered Software Only Key Signing

What does this mean?

Privacy Guard

PGP allows you to sign another persons key.

This effectively means you 'verify' that key belongs to that person and you can vouch for this. When that key is sent to others, they can check the signatures on that key and see you have signed it, meaning they can be assured that key is from the person it claims to be, based on your recommendation.

So, Alice has Bob's public key. John doesn't know Bob but has received his public key. Alice says, Bob is OK, I know him, he is trustworthy and I have signed his key to prove this.

Key Trust Management

What does this mean?

Privacy Guard

Privacy Guard allows you to set Trust Levels against a key.

FULL implies you implicitly trust this person.

MARGINAL implies you know them but not enough to implicitly trust them.

NONE implies you know the person (or may not) but don't trust them.

Key Trust is a way to quickly identify a person on your keyring and to make a decision as to whether or not to secure information against their public key.

Share/send public keys by email from your Keyring

What does this mean?

Privacy Guard

Privacy Guard allows you to send your own (or other) public key by email. You can send this directly from your keyring, using your default mail client.

Separate keys for Signing and Encryption

What does this mean?

Privacy Guard

Using the same private key for signing and encryption can expose vulnerabilities and shorten the key's security life.

Because of this, Privacy Guard generates two key pairs, one for encrypting, another for signing. Both are 'packed' together on the keyring and the appropriate one is used for the appropriate action.

Store multiple Private Keys on the same Keyring

What does this mean?

Privacy Guard

There may be occasions you need a private key for your own personal privacy and one for your company. Or maybe one for you and another for a partner.

Privacy Guard allows you to generate as many private/public key pairs as requried and manage them all on the same keyring.

Registered Software Only Set any Private Key as default/primary key

What does this mean?

Privacy Guard

If you have multiple private keys on your keyring, you can select which is to be used as default.

Registered Software OnlyChange Private Key passphrase

What does this mean?

Privacy Guard

Privacy Guard protects your private key with a passphrase. This should be kept secret and only known to you.

Should this passphrase be compromised, you can change this at any time.

View who has signed Keys via Keyring

What does this mean?

Privacy Guard

This relates to Key Signing.

This feature allows you to view the signatories on any particular key, from the Keyring Manager screen.

Sign and Verify Clipboard

What does this mean?

Privacy Guard

If you have a document, text or similar from another source, copy it to the clipboard and Privacy Guard can digitally sign it, replacing the plain text with the signed text.

Likewise, if you have a signed block of text, Privacy Guard can verify the signatures whilst on the clipboard.

Encrypt and Decrypt Clipboard

What does this mean?

Privacy Guard

If you have text on the clipboard, you can encrypt/decrypt this in Privacy Guard without having to copy/paste into Privacy Guard.

This can all be done on the fly and in memory.

Sign and Encrypt Clipboard

What does this mean?

Privacy Guard

Signing and Encryption allows you to sign the text on the clipboard, then encrypt it.

This means the recipient can first decrypt the text with their private key and verify it's authenticity at the same time.

Armoured ASCII output

What does this mean?

Privacy Guard

This is a PGP standard and creates .ASC files.

ASCII armor involves encasing encrypted messages in ASCII so that they can be sent in a standard messaging format such as email.

Registered Software Only Encrypt and save files as self-decrypting archive

What does this mean?

Privacy Guard

A Self Decrypting Archive (SDA) is a way of distributing encrypted content in a compressed and encrypted executable (.EXE) file.

This allows documents/files to be distributed to others who may not use Privacy Guard or other PGP complaint applications.

View in depth key data from Keyring Manager

What does this mean?

Privacy Guard

The Keyring Manager is the main screen in Privacy Guard.

It provides a way for your to analyse and pull information about any of your imported PGP keys.

Including, the persons name/email, key fingerprint, key ID, expiry date, algorithm, key size etc.

Secure Notepad autosave (with 256-bit encryption)

What does this mean?

Privacy Guard

Autosave allows your work in Secure Notepad to be saved at regular intervals.

All auto-saved work is first encrypted, then saved to disk.

AES-256 file encryption

What does this mean?

Privacy Guard

AES is the international standard for secure encryption. All files encrypted with Privacy Guard uses AES-256 encryption to protect their contents.