edit: I'd like to inject a reminder that protonmail doesn't encrypt all of your mailbox contents. From their privacy policy:
"we have access to the following email metadata: sender and recipient email addresses, the IP address incoming messages originated from, attachment name, message subject, and message sent and received times"
> "we have access to the following email metadata: sender and recipient email addresses, the IP address incoming messages originated from, attachment name, message subject, and message sent and received times"
Is there any of that that’s not basically required by the fact that they’re running an _email_ service?
Sure, for sending/receiving the email all of that is accessible/needed but some (all, even) of this could be stored encrypted by the user's password/mailbox-password.
If I remember correctly: one of the reasons they don't encrypt that metadata is so they can do the search box server-side.
If you can cite some sources, I will be very interested to read all about it. I trust Proton with most of my crucial e-mails(bank, insurance, govt services) and use a cheap alternative for personal things.
If it is really a NSA honeypot, I'd rather let M$ or GOOG have my e-mails anyways.
Agreed. I'll look for where I read this... Maybe it was just a paranoid loon on the internet but for some reason I shelved it mentally as trustworthy... Bah don't trust me
edit: I'd like to inject a reminder that protonmail doesn't encrypt all of your mailbox contents. From their privacy policy:
"we have access to the following email metadata: sender and recipient email addresses, the IP address incoming messages originated from, attachment name, message subject, and message sent and received times"