End-to-End-Encrypted Team Communication & Collaboration Tools

Applications, Security
Published Apr 15, 2020 Updated Feb 13, 2021

This post is a collection of my notes about my search for secure collaboration and communication tools for smaller organizations, specifically vast limits. I will update it from time to time.

[Bird's nest in a stationery sign](https://flickr.com/photos/analytik/5672283296/in/photolist-9DeWcS-6tH5tr-6hjNSz-2gj1YxW-2EF3RE-aF86yo-84FbEi-vAQmPz-7GNkFG-8hhFnA-89bVAQ-9HKoLd-NPj6Z-FAh9aN-2fkS44B-27DgXvk-W1Yv-2e7gPJC-H6QhNJ-TW19Gs-56WoPF-iM8oXM-VTvDK1-2ChM2f-aotjz6-GxNjnM-kmKkmT-9GpEVJ-UTHwmw-5TQc1u-86faS-29NYmD-7G7Y57-nM8eBC-Vjb27k-23pMDQb-nc4hKm-2gDvMqc-H9Rrb5-2iF3GCM-6fsdaX-ETnA5W-akL5Rd-23tmMHT-H15qzT-6fBawB-GVGj93-6qHavF-8qi1kd-f2LZW4) by Milan B under [CC](https://creativecommons.org/licenses/by-sa/2.0/) — Bird’s nest in a stationery sign by Milan B under CC

What is This About?

In an ideal world, all our data and communications would be stored and transmitted end-to-end encrypted, i.e., in such a way that (cloud service) providers never see unencrypted data. Realistically, end-to-end encryption is only available for a subset of the services we use and need.

Requirements

Which features are we looking for? What functionality do we need?

End-to-end encryption with keys managed by the customer
UX: user experience and stability
SaaS: application hosted and managed by the vendor

Text & Audio/Video Chat

Mattermost

Company website
No SaaS option, on-premises only
Mobile app: the reviews on the Play Store and the App Store are not great

Netsfere

Company website
Cloud-based enterprise messaging service
The free plan looks good already. The paid Enterprise plan adds AD synchronization via an agent to be installed on domain controllers.

Element (Formerly Riot)

Company website
Free and open-source software built on the Matrix backed by a well-funded organization
Available for self-hosting or as SaaS
Mobile app: good reviews on Google Play and the App Store
Audio/video calls use WebRTC which is not end-to-end encrypted.
Lack of admin controls.

Stackfield

Company website
Text chat and team collaboration as SaaS or on-premises solution
Functionality includes task management, time tracking, and event scheduling
Currently 1:1 calls only, no group calls with audio/video

Wickr

Company website
Zero-trust communications as SaaS (Wickr Pro) or on-premises solution (Wickr Enterprise)
Supports SSO via OpenID Connect (requires Wickr Pro Gold plan; Google and Okta specifically listed as compatible; configuration is not documented)

Wire

Company website
Fast-growing startup focusing on secure communications for enterprises
Usability of the encryption and security features seems to be good
Mobile app: the reviews on the Play Store and the App Store are not great

LucidLink

Company website
Presents cloud storage to the OS as a virtual drive
Adds a logical layer, works with most cloud storage providers (including Amazon, Azure, Google, Backblaze)
Lack of admin controls
The Windows client’s UX is so-so

pCloud Business

Company website
Swiss-based cloud storage that offers end-to-end-encrypted and non-encrypted folders in the same account
The feature set seems to be mature
No ACLs with encrypted folders, but team members can be invited with different permission levels (source): view, edit, manage rights

Sync.com for Business

Company website
End-to-end encrypted file storage and sharing for teams
Inexpensive, good feature set
Supports ACLs through team shared folders (no nesting or changed permissions on subfolders)
Only one sync folder (directories outside the sync folder can be synced by creating symbolic links; this is not officially supported, though)
Not everybody seems to be happy with the Android app