this post was submitted on 11 Oct 2023
148 points (94.6% liked)

Privacy

31876 readers
494 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

I've been using Proton Mail and VPN for a while now, and I'm just wondering how everyone else feels about them. I have this kind of inherent alight distrust of them just because they seem like they offer a lot for free and kind of have a Big Tech vibe about them, but there's nothing for me to really substantiate that distrust with, its mostly just a feeling. That being said, I do use their services as mentioned and they work pretty well, even on the free teir. So aside from that one instance where they gave that guy's info to the feds, is there any reason not to trust them with my data?

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 1 points 1 year ago* (last edited 1 year ago) (3 children)

it is also owned by the people who run it

The ownership of a service, ideally, should make no difference to that service's trustworthiness.

[–] [email protected] 1 points 1 year ago (2 children)

That makes absolutely no sense - at the very least, this is unimplementable for an email provider.

I am trusting someone for my data. Ownership belonging to the people running it, who just want to make a living, has the meaning that our interests are better aligned than a multinational ad agency or a nation state whose subject I not even am. That relationship is more healthy, the contract is clearer and more balanced.

[–] [email protected] 1 points 1 year ago (1 children)

at the very least, this is unimplementable for an email provider.

If one ignores the collection of metadata, then this is the very purpose of PGP.

I am trusting someone for my data

The point that I am trying to make is that one should never have to trust someone with their data -- if all data is encrypted, for example, from a privacy perspective, it really doesn't matter where it is stored. Of course, metadata can still be gathered, but that is, in my opinion, a lesser issue, and the user has some, if not complete control over it.

I should also say that it depends on what you mean by "trust". My response, and original comment are under the assumption that "trust" is referring only to privacy.

[–] [email protected] 1 points 1 year ago* (last edited 1 year ago)

After the WhatsApp scandals, my trust in encryption is limited. I'm not a mathematician (which is a goddamn shame), and if there is a backdoor in the mathematics themselves, I wouldn't be able to catch it even if I read the source code. And there is always the possibility of decryption by quantum computers....

So where we store our data is very important, even if it is decrypted. Encryption is just a secondary defense, the primary is limiting the accessibility to the data itself. And where you store the data, and to whom you allow access, determines the accessibility