Gabz
Gabz

@maique ProtonMail always sounded like a bad guy from a Mega Man game to me šŸ˜…

What they do ?

|
Embed
Progress spinner
pratik
pratik

@maique If they collect, they’ll always share. Rest are excused. Should’ve used a VPN to even access Protonmail to be doubly safe.

|
Embed
Progress spinner
ronguest
ronguest

@pratik I’m not hugely upset w/ProtonMail (I’m a paying customer). But they really have oversold the benefits a la Tesla and self-driving cars. Also, to me, privacy is not the same as secrecy. Keeping what you’re doing secret is a whole level beyond using something like ProtonMail.

|
Embed
Progress spinner
Cheri
Cheri

@ronguest I see it the same way, and I’m mostly satisfied with their response.

|
Embed
Progress spinner
philly
philly

@Cheri @ronguest Glad to know, I’ve been spending the last couple weeks looking at shifting my work email there in part because they are HIPAA compliant. My email options in that regarded are painfully slim, and they seem to be among the better ones for my needs. Their support has been pretty responsive, too. This current situation gave me pause, but I can’t see the other options out there doing differently.

|
Embed
Progress spinner
pratik
pratik

@ronguest Yup. They’ve always admitted to collecting your IP addresses and will share if legally asked for. Of course, there was that whole mess of France going to Europol who then went to the Swiss who made it seem as if it was breaking Swiss law. That didn’t pass the sniff test but not much Protonmail could’ve done about it.

|
Embed
Progress spinner
jack
jack

@maique @pratik As I understand it, IP logs are either never kept or only kept temporarily unless the user is abusing the service or Protonmail is compelled by Swiss law (as in the recent French case). I don’t think their original language was deceptive, but it could certainly be misconstrued (obviously, considering the reaction to this recent story). I’m giving them the benefit of the doubt here.

|
Embed
Progress spinner
hjertnes
hjertnes

@jack @pratik anyone who takes security seriously will at the very least have something that process logs and turn that into metrics they can use to detect misuse, security problems, compromised systems/accounts etc

When I see anyone say they don’t store logs, I always assume it means that they don’t store it long term. Nothing suspect about it.

|
Embed
Progress spinner
mcg
mcg

@maique Basically, if you want to do anything a nation state might find objectionable, don’t do it on ProtonMail or ProtonVPN. They are not going to ā€œLavabitā€ themselves for you.

|
Embed
Progress spinner