No clue at the moment, this is still a big problem and something Fastmail already knows based on the comment here from robn_fastmail.

If we have a solution, everybody would be using it by now. PGP or SIME was going to be it back in 90s but it didn't take off well.

The content of the message itself should be encrypted at the very least but how do you deal with the keys then?