[phpnode]

better to delete it than hand it over if privacy was your selling point in the first place. if i were a customer, i'd be ok with this.

[iaskwhy]

Also, if I understand this correctly, his customers most probably had a copy of the emails on their computers so their loss was only the email address (and emails eventually received after the closedown).

[pdonis]

his customers most probably had a copy of the emails on their computers

Based on the fact that a number of them are talking about having lost data, I suspect that at least a significant number of customers only used webmail to access their accounts, so they never had a local copy of their data.

[iaskwhy]

I was thinking that using webmail would defeat the purpose of really private email.

[pdonis]

Not if you access it via https.

[iaskwhy]

It's still showing not encrypted on the screen which allows all sort of possibilities when done on a browser. For example, let's say you're using Chrome, hard to make sure page contents are not being used somehow.

[pdonis]

The same applies to any other email client; it has your data unencrypted, so if you can't trust it, you're screwed.

[orblivion]

They might have lost roughly a day's worth, depends how often they connect via IMAP.

[pdonis]

What if they're not using IMAP?

[digipaper]

If that's the case it would be fine with me too.

[zwdr]

I am a customer, and honestly, I'm more than okay with it. It's a real annoyance to me, but its better than having my stuff streamed to the NSA.