I just came across these "disturbing facts about proton mail". Let's say, hypothetically, that I administer a small org that now wants to move away from proton.
I guess I should just learn pgp, but that would be a tough sell for any boomer members.
EDIT: thanks for all the responses! It seems like my intuition was correct: email is inherently insecure, and proton is no worse than other email providers insofaras you don't let their marketing cause you to drop your guard. If it's illegal, keep it offline.
You need to threat model. Proton mail is fine for certain operations and catastrophic for others. You mentioned boomer members. You can put all the effort you want into making sure everyone uses encrypted email. If anyone doesn’t also have their device and home network secure, attackers can grab the stuff in plaintext after it’s decrypted