SecureMint

PPAP Alternative: Secure File Sharing with SecureMint

PPAP (Password-protected ZIP sent via email, with the password sent in a separate email) has been a common practice in Japanese businesses. However, it was officially discouraged by Japan's Digital Agency in 2020 due to serious security risks. SecureMint provides a modern, secure alternative.

Try Secure File Sharing
SecureMint uses zero-knowledge design. The server cannot read your data.

Steps

1

Select the file to share

Choose the file you want to send. No need to ZIP it first — just select the original file.

2

Set a password

Set a strong password. Unlike PPAP, you don't need to send it in a separate email — the decryption key is embedded in the link.

3

Send the encrypted link

Share the generated link with the recipient. The file is E2E encrypted with AES-256-GCM. The decryption key is in the URL fragment and never reaches the server.

4

Recipient decrypts in browser

The recipient clicks the link and decrypts the file directly in their browser. No software installation required.

Why It's Secure

  • PPAP was officially discouraged by Japan's Digital Agency (formerly Cabinet Office) in November 2020.
  • Password-protected ZIPs use weak encryption (ZipCrypto) that can be cracked in minutes with modern tools.
  • PPAP bypasses email virus scanning, as ZIP files cannot be scanned by mail gateways.
  • Sending the password in a separate email provides no real security — both emails travel the same route.
  • SecureMint uses AES-256-GCM (military-grade) encryption with PBKDF2-SHA256 key derivation.
  • E2E encryption means even the server operator cannot read your files.

FAQ

Our company policy requires PPAP. Can we still switch?
Many Japanese companies are transitioning away from PPAP following the government's recommendation. SecureMint provides E2E encrypted links that are more secure than password-protected ZIPs. Share this guide with your IT department to discuss the transition.
Can I send large files?
Yes. Free plan supports up to 1GB per file. Pro plan extends to 5GB. Files are encrypted in your browser before upload.
Is there an audit trail?
Pro plan includes download tracking with IP addresses, timestamps, and download count. This provides an audit trail for compliance purposes.

Related Tools

Secure File SharingSelf-Decrypt HTMLFile EncryptionPPAP Guide

Related Articles

How to Convince Your Boss to Stop PPAP

A practical script, data, and references you can use to persuade your boss or IT team to abolish PPAP (password-protected ZIP + separate password email) in your Japanese workplace.

PPAP Alternative for Japanese SMBs: Free, No Install

Japanese SMBs need a free, no-install PPAP replacement that works today. SecureMint is ready out of the box — zero knowledge, browser only, $0 to try.

Encrypted ZIP Blocked by Email? Do This Instead

Gmail, Outlook, and Microsoft 365 increasingly block password-protected ZIPs as malware. Learn why, and how to send encrypted files via SecureMint links instead — without getting bounced.