[qot]

You are missing the forest for the trees. This entire feature is a privacy violation.

> The alternative is upload everything unencrypted to providers who then scan there

No, the alternative is to not do any scanning.