Privacy

40315 readers

1170 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago

MODERATORS

Should i trust proton? (lemmy.dbzer0.com)

submitted 1 week ago by somerandomperson@lemmy.dbzer0.com to c/privacy@lemmy.ml

75 comments fedilink hide all child comments

If not, what alternatives can i use?

you are viewing a single comment's thread
view the rest of the comments

[–] 0xtero@beehaw.org 3 points 6 days ago* (last edited 6 days ago) (1 children)

If and when you send or receive e-mail encrypted by PGP, the body (contents) of the message is indeed encrypted and you're safe from snooping and data collection, which is great. However, privacy-wise this might actually be a bad thing, because almost no one uses PGP and using it makes you stand out in a sea of normal e-mail users for someone who collects and analyzes lot of data. So if that's your threat model, using PGP might actually be dangerous. Also, you have to remember and remind everyone to use PGP, which is cumbersome if you correspond with non-techie people. You don't really know how they handle "their side" and PGP software is notoriously not very user friendly.

Whenever you send someone unencrypted e-mail from your Proton account, there's a chance that the recipients e-mail provider (most likely Google or Microsoft) reads it. Same when they send it to you. It doesn't actually matter that the message sits encrypted "at rest" in your Proton accounts Sent Items -, the contents have already been read, indexed and sold to a broker.

It's very hard to do e-mail privacy because the protocol itself doesn't have any built-in. It's better to use other communication methods for sensitive transactions.

[–] appropriateghost@lemmy.ml 2 points 5 days ago

Good explanation, and I figured the same.

I feel the 'encrypted at rest' is then a false sense of security. Alas it is much better than gmail, etc.