ProtonMail often touts its Swiss jurisdiction and privacy guarantees, but at the same time, it is complying with a record number of data request orders going through the Swiss legal system. ProtonMail is one of the most popular secure email services in the world, having launched in 2014 via a crowdfunding campaign. It promises a …
  • blewit@lemm.ee
    ·
    1 year ago

    From the article (emphasis is mine): Is Proton Mail still secure and private?In short, the answer is yes if you are looking for a secure, encrypted email service that does not have access to the contents of your inbox. After all, ProtonMail is far better than Gmail or Yahoo when it comes to privacy.

    If you are doing things to attract the attention of law enforcement, then the data you provide when you use ProtonMail, such as IP address and recovery email, may be shared with authorities if Proton Technologies is legally compelled to do so in Swiss court.

  • mtchristo@lemm.ee
    ·
    1 year ago

    Never forget every email that leaves Protonmail to other email providors are not anymore secure or encrypted as using gmail or others.

    Second no one can certify that incoming emails and meta-data can't be read and recorded to a ghost mailbox before getting encrypted. you have no control on what happens on their servers

    privacy shouldn't rely on trust

    • The Hobbyist@lemmy.zip
      ·
      1 year ago

      It's really difficult if not impossible to be private with services you can't trust... suppose you were to not trust Tor. How can you prove it to be private if you can't trust anything they say or share? I think it's almost impossible, isn't it?

      You're going to have to put trust somewhere if you want to be private, whether it's your device's hardware, software, ISP or other...

      • mtchristo@lemm.ee
        ·
        1 year ago

        I don't think that Tor relies entirely on trust. it rather relies on the probability that there needs to be at least half of entry and exit nodes compromised for a attacker to be able to deanonymize users trying to access the clearnet. the hidden network is even harder to deanonymize as there are more than 6 hops in the path. and all nodes participating in the network are visible.

        proton on the other hand can do what ever they please on their servers and can never get caught with it.

        • The Hobbyist@lemmy.zip
          ·
          1 year ago

          I don't disagree with you. But if you start with the assumption that a service cannot be trusted, it's really difficult, maybe even impossible that despite it, privacy is safe. That's a different claim. Especially as this claim would have to hold across the whole end to end. I can't see how one can imagine having any privacy in such a scenario.

  • TraditionalMuslim@reddthat.com
    ·
    1 year ago

    Protonmail is basically a honey pot. I lost all trust the moment they gave the French government a protestor's location. Why the hell is it complying to foreign government requests?

  • Achird@sh.itjust.works
    ·
    1 year ago

    Proton are very transparent about what data is and isn’t stored, how data is protected and what (very limited) data may be available in the event of a legal warrant - going through all the proper channels.

    Complying with legal warrants doesnt make the service insecure or not private. It makes it a legal and legitimate company.

    It shouldn’t really be a surprise to any of it’s users.