this post was submitted on 02 Oct 2023
126 points (95.0% liked)

Privacy

31987 readers
460 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

I'm currently still using gmail unfortunately

Cock.li (airmail.cc)looks very nice but it is invite only

you are viewing a single comment's thread
view the rest of the comments
[–] dracs@programming.dev 7 points 1 year ago* (last edited 1 year ago) (2 children)

Got a source for that? Proton isn't able to access to any user emails. I believe Swiss law also makes it illegal for them to provide user information without a (Swiss) court order.

The only case I've heard of that was similar was when the Swiss court ordered them to provide all the info they had on a user. This was the last IP address they logged on from and a recovery email the user had entered. The recovery email is an optional thing the user had set up on their account. They also used this same email address to sign up for a Twitter account. They were able to get enough data from Twitter to identify the person.

[–] daq@lemmy.sdf.org 2 points 1 year ago (2 children)

Courts can require you to provide your password in some circumstances. Where your email is stored is irrelevant.

[–] dracs@programming.dev 5 points 1 year ago

In that case Proton wouldn't be providing the data, the user would be. Proton can't provide what they don't have.

[–] TCB13@lemmy.world -5 points 1 year ago (1 children)

This wasn't the case, at all. Proton simply handed the entire mailbox decrypted.

[–] daq@lemmy.sdf.org 6 points 1 year ago (1 children)

That seems unlikely since your data is encrypted with a password they don't have.

[–] TCB13@lemmy.world -4 points 1 year ago (3 children)

Yes I do, and I tried encouraged my source to make the entire thing public but no luck there. In this case the person was already identified it wasn't much of an issue, the issue is that Proton simply provided everything to an US court without even a flinch. Apparently they can access user emails and they do without much fuzz.

[–] cosmic_skillet@lemmy.ml 9 points 1 year ago

That's called hearsay.

[–] dracs@programming.dev 5 points 1 year ago (1 children)

That doesn't hold up against the publicly available source code for their applications, white papers on their security and encryption, and multiple independent security reviews. And again, they are legally required to ignore US court orders. Only a Swiss court order can compel them to provide user information.

[–] TCB13@lemmy.world 1 points 1 year ago

Yes, I know about all of that.

show the source mothe*****r