Hacker News new | ask | show | jobs
by JackC 3018 days ago
Congratulations on the launch!

I hope you take to heart the privacy concerns here. In case you haven't come across it, here's a useful thread from last year about Unroll.me's datamining and selling of customers' inboxes, and the general trust problem for services like yours:

https://news.ycombinator.com/item?id=14179077

Frankly I'm not sure what it would take to convince me to open up email text access to a 3rd party service at this point.

You have to convince me not just that you (Fil, Lambert and Matt) are trustworthy, but also that the three of you can't be bought out by someone less trustworthy (bearing in mind that your customers may well be worth more to a shady business than they are to you!), and also that you're competent to run a hugely valuable database without ever making a mistake (quoting tptacek in the above thread: in your place, "I would be terrified.")

I don't know how you would crack this, but on the risk-of-hacking side as a user I might be looking for technical reassurance -- say, that you're running entirely locally instead of storing my email on your server in the first place, or that you're only using temporary email access to store sentences with k-anonymity or client-side encryption, and that your privacy model has been published in detail for review.

On the risk-of-purchase side you could look at Keith Porcaro and Sean McDonald's idea of the Civic Trust, where a private company's data is owned by an independent trust that can protect the interests of your users, separate from the vagaries of your business model:

https://medium.com/@McDapper/the-civic-trust-e674f9aeab43 http://digitalpublic.io/

My feedback here may amount to concern trolling, since I'm over on the paranoid end of potential customers these days and probably not your target audience -- but I'm passing it on in case it's helpful ...
1 comments
filipt 3018 days ago
Thank you! That's extremely useful - definitely not concern trolling. We recognize how important email is to our users, so we definitely want to resolve those issues!

We're incorporating some of the things you've already mentioned (client-side decryption, better sanitization), but we'll be a lot more cautious moving forward. You brought up really excellent points, so thank you for sharing those with us!

link
gt_ 3018 days ago
I could definitely use this tool but the privacy concerns would need to treated as be your #1 selling point along with user side encryption. The encryption could cost more but once a competitor arrives with these two necessities, I will sign up.
link
filipt 3018 days ago
Understood! We'll be working on this asap :) Really appreciate your feedback.
link