When it comes to security, there's no such thing as mission accomplished. Here's where we currently stand.
If an intruder has physical or remote access to your computer, they will be able to execute the necessary attacks to access your data (which is decrypted client-side), and encryption keys.
We operate under the assumption that someone is always listening in, or modifying communications. However, there is a non-zero possibility of a targetted attack that can compromise your data.
Mailyard is designed to be resilient primarily against passive threats, and is continuously evolved to mitigate against active threats.
Awkwardly enough, that's us, but that's alright. We don't want to be saddled with all your private data anyway.
Some attacks go straight for the source code, and insert backdoors at various stages of the software delivery life cycle.