Email Alias Generator
Give every site a unique alias so you can spot exactly who sold your email. Supports Gmail tag aliases, iCloud Hide My Email format, ProtonMail aliases, and custom domains via catch-all.
My Alias Tracker
Which Strategy Should You Use?
- Gmail +tag β works everywhere, but some sites strip "+". Mail still arrives in your main inbox.
- Gmail dot β Gmail ignores dots in addresses, so
j.smith@gmail.com=jsmith@gmail.com. Lower spam-detection by site filters. - iCloud Hide My Email β Apple-managed forwarder. Random alias, optional disable. Requires iCloud+ for unlimited.
- Custom catch-all β own a domain? Every
anything@yourdomain.comhits your inbox. The strongest option.
How to Catch Leaks
If you sign up for newsletter.com using you+newsletter@gmail.com and later get marketing spam to that exact alias from a different sender, you know newsletter.com leaked or sold your address. Cancel them, block the alias, move on.
What this tool does
An email alias is a separate address that forwards to your real inbox. Instead of handing your actual email to every website, you give each one its own alias β like storename@yourdomain or a Gmail/iCloud variant β so your primary address stays private. This generator builds those site-specific aliases for Gmail, iCloud, ProtonMail or your own domain, entirely in your browser.
How to use it
- Pick your provider, or enter your own domain.
- Type the site or service you're signing up for.
- Copy the generated alias and use it in place of your real address.
- Keep the alias tracker handy so you remember which alias went to which service.
Why it matters
Hiding your real address is only half the value. The other half is traceability: because every service gets its own alias, the day spam or a phishing email arrives addressed to one of them, you know exactly which company leaked, sold or was breached. You can then switch off that single alias without disturbing any of your other accounts β something you can never do when every site has your one real address.
I spent about two decades in IT support, and email aliases are the one privacy habit I actually changed my own behaviour over. I started giving every signup its own address. Months later a wave of spam turned up addressed to the alias I'd only ever given to one mid-sized online shop β no human had that address, so there was no other explanation: their list had leaked. I killed that one alias and the spam stopped dead, while every other account carried on untouched. You learn very quickly that "we value your privacy" in a signup form means nothing; an alias is how you actually verify it.
β Hill, 20 years in IT supportEverything happens locally: the aliases and your tracker live in this browser and are never uploaded.
Frequently asked questions
Do aliases actually hide my real email?
Yes β the service only ever sees the alias. With a catch-all domain or a provider feature like Gmail "+" or iCloud Hide My Email, mail sent to the alias still arrives in your inbox, but the sender never learns your underlying address.
How does an alias help me catch a leak?
Because each alias is unique to one service, any message arriving at it could only have come from that service's list. If you suddenly get spam or phishing at shop@yourdomain, that shop is the source β and you can disable just that alias.
What's the difference between the strategies?
Plus-addressing (you+site@gmail.com) is instant but easy for a spammer to strip back to your real address. A custom domain or a provider's hidden-relay feature is more robust because the alias doesn't reveal your real address at all. Pick based on how much protection you want.
Is anything uploaded?
No. Aliases are generated in your browser and your tracker is stored locally on your device. Nothing about which aliases you create is sent anywhere.