When an email ID is added to our system we return an email link and a masked email ID. The masked email ID can be shown to the user with a hyperlink that we generate. When the user clicks on the link, reCAPTCHA will analyse the request and show the email ID, if the requester is not a bot. E.g. Go ahead, try this: email@example.com
All email IDs being hidden are stored with enterprise grade AES 256 encryption. This makes sure that even if a hacker gains access to our database, retrieving the email IDs would be near to impossible.