Threema

Swiss encrypted messenger with no phone number required. Paid, private, and metadata-minimal — the privacy-first alternative to Signal for journalists who want to stay off the grid entirely.

Secure messaging

Open source

Strong

https://threema.ch · Reviewed 2026-04-11 · Editorial assessment by Mike Schneider — not an independent security audit

What should journalists know about Threema?

Threema is the Swiss army knife of private messaging — literally Swiss, privately held, and built around one principle: collect as little data as technically possible. Unlike Signal, which requires a phone number, Threema assigns each user a random 8-character Threema ID. No email, no phone number, no personal information required to create an account. You can verify contacts in person via QR code. Messages are deleted from servers immediately after delivery. Contact lists stay on your device. Metadata is reduced to what Threema calls 'the technical minimum.' The encryption is NaCl (Networking and Cryptography library) with Curve25519, XSalsa20, and Poly1305 — plus Perfect Forward Secrecy since 2023, meaning compromise of a long-term key cannot decrypt past messages. Threema's code is fully open source (AGPLv3 for apps, server code published for audit). Builds are reproducible, so anyone can verify the app store binary matches the published source. External security audits are conducted regularly — the most recent by Cure53 in 2024 found no critical vulnerabilities. The company is ISO 27001 certified and operates redundant server infrastructure exclusively in Switzerland, subject to Swiss data protection law (which is stronger than GDPR in several respects). The tradeoff: Threema costs money. That one-time $6 purchase is both a barrier and a feature — it means Threema has no incentive to monetize user data or attention. The real limitation is network effects. Signal has far more users globally, and most journalists already have it. Threema is strongest in the DACH region (Germany, Austria, Switzerland) where it has significant adoption — the Swiss army and German federal agencies use Threema Work. For journalists elsewhere, the challenge is getting sources onto a paid app with smaller market penetration. But for high-risk reporting where you need an encrypted channel that does not require a phone number and produces almost no metadata, Threema is arguably stronger than Signal on privacy fundamentals.

Best for

Anonymous source communication where neither party wants to reveal a phone number. Newsroom-wide encrypted messaging via Threema Work. Journalists in Switzerland, Germany, and Austria where Threema adoption is high. Communication with sources who refuse to install Signal or who need deniability about the communication itself.

Not for

Reaching sources who do not already have Threema — the paid model and smaller user base create friction. Journalists whose entire network is on Signal. Large-scale group coordination (Signal and WhatsApp have stronger group features). Real-time voice/video calls in unreliable network conditions (Signal's calling infrastructure is more robust).

Security & Privacy

Encryption in transit Yes

Data is scrambled while being sent to their servers

Encryption at rest Yes

Data is scrambled when stored on their servers

Data jurisdiction Switzerland (Threema GmbH, Pfäffikon SZ). All servers located exclusively in Switzerland. Subject to Swiss Federal Data Protection Act (nDSG) and not subject to US, EU, or Five Eyes jurisdiction. Swiss authorities can request data but Threema holds almost nothing to hand over — no contact lists, no message content, no group memberships are stored server-side.

Where servers are located — affects which governments can request your data

Security rating Strong

Threema collects almost nothing. No phone number or email required. Messages deleted from servers after delivery. Contact lists stored only on-device. No advertising, no tracking, no profiling. Metadata reduced to technical minimum (sender ID, recipient ID, timestamp — all deleted after delivery). Threema does not know who communicates with whom. Key material generated and stored on-device only. Swiss law applies. No data sharing with third parties. Anonymous usage is the default, not an option you have to enable.

How to protect yourself:

Verify contacts via QR code in person for maximum trust level (three green dots). Enable Threema's built-in app lock. Use a strong passphrase for Threema Safe backups (encrypted, stored on Threema's Swiss servers or your own WebDAV server). For maximum anonymity, purchase Threema with cryptocurrency or a prepaid card and create your ID without linking any personal information. Review linked devices periodically. Enable disappearing messages for sensitive conversations. For newsroom deployment, use Threema Work with MDM integration for device management and compliance.

Threema earns a strong rating on privacy architecture: no phone number required, metadata minimized to near-zero, servers exclusively in Switzerland, open source with reproducible builds, regular external audits (Cure53), ISO 27001 certified, Perfect Forward Secrecy, and a business model aligned with user privacy (paid product, no ads, no data monetization). The 2023 ETH Zurich protocol critique was addressed rapidly with a new protocol and independent audit. The one area where Signal edges ahead: Signal's sealed sender feature hides even the sender's identity from Signal's servers, which Threema does not yet implement. But Threema's overall metadata posture — especially the no-phone-number requirement — makes it arguably the strongest option for journalists who need anonymous, unlinkable communication channels.

Who Owns This

Owner Threema GmbH (privately held Swiss company, Pfäffikon SZ, Switzerland)

Funding Self-funded through app sales and Threema Work subscriptions. No venture capital, no advertising revenue, no data monetization. The paid model is the business model — users are customers, not products.

Business model One-time app purchase for consumers (~$6). Threema Work subscriptions for organizations (per-user monthly pricing). Threema OnPrem for enterprises wanting self-hosted infrastructure. Threema Gateway API for businesses integrating encrypted messaging. No advertising. No data sales. Revenue comes entirely from users and organizations paying for the product.

Known issues

A 2023 ETH Zurich academic paper identified theoretical weaknesses in Threema's legacy protocol (Ibex) — specifically, the lack of forward secrecy in the original design allowed theoretical attacks if a server were compromised. Threema responded by deploying a new protocol with Perfect Forward Secrecy (Ibex successor) within weeks and disputed the practical exploitability of the findings. The new protocol was independently audited. Network effects remain the biggest practical issue: Threema has ~12 million users versus Signal's 40-70 million and WhatsApp's 2+ billion. Getting sources to install and pay for a new app is real friction. Voice and video calling quality lags behind Signal. No desktop app without mobile — Threema Web requires the phone to be online (similar to WhatsApp Web's original limitation, though a standalone desktop client is in development).

Pricing

One-time purchase (~$5.99 on iOS/Android). Threema Work plans for organizations start at CHF 1.50/user/month.

This is an editorial assessment based on publicly available information as of 2026-04-11, using our published methodology. Independent security review is pending. Security posture can change at any time. This is not a guarantee of safety.

Something wrong or outdated? Report it.