this post was submitted on 22 Dec 2025
298 points (92.8% liked)

Privacy

3189 readers
117 users here now

Icon base by Lorc under CC BY 3.0 with modifications to add a gradient

founded 2 years ago
MODERATORS
Ategon@programming.dev
danielintempesta@programming.dev
298
Proton has handed over 32,076 users' data to governments since 2017. Their own transparency report states a 94% compliance rate in 2024. (infosec.pub)
submitted 2 days ago by cm0002 to c/privacy@programming.dev
134 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] hperrin@lemmy.ca 57 points 2 days ago (4 children)

I don’t think that’s bad on Proton’s part. They are obeying the law they are obliged to obey.

[–] Korhaka@sopuli.xyz 22 points 2 days ago (1 children)

Yeah, more important is what data was it

[–] Hawk@lemmy.dbzer0.com 8 points 1 day ago

Most data is encrypted, so the government wouldn't be able to use it anyway.

There is some metadata though. I believe in the past they used Proton to be able to link a criminal to a back-up e-mail address he entered.

[–] cassandrafatigue@lemmy.dbzer0.com 7 points 2 days ago

Well I'm certainly not a fan.

[–] Doomsider@lemmy.world 1 points 1 day ago (1 children)

If you think all 30k plus were for legitimate reasons and not government control, I have a bridge to sell you in Brooklyn.

[–] hperrin@lemmy.ca 3 points 1 day ago (1 children)

I didn’t say that. I said they’re obeying the law they are obliged to obey. In other words, they’re not defying the courts. In a perfect world, they could defy the courts and get away with it in the interest of user privacy, but this is not a perfect world.

[–] Doomsider@lemmy.world 1 points 1 day ago* (last edited 1 day ago)

You are right, they can argue that the government does not have sufficient reason. Many companies push back, but Proton is not one of them. I.e. Proton will not fight for you at all and they will follow court orders from other countries that are often questionable at best because "Interpol".

I think my original point stands which should make most people seriously reconsider using them as they are not in the business of protecting their customers. In other words it is bad on their part and hand waving that away is pretty gross.

[–] IceFoxX@lemmy.world 8 points 2 days ago* (last edited 2 days ago) (1 children)
[–] Cenzorrll@lemmy.world 21 points 2 days ago (1 children)

Privacy is not anonymity. In this case they were required to supply IP addresses of users logging into a certain account in an active investigation.

As usual, the devil is in the details—ProtonMail’s original policy simply said that the service does not keep IP logs “by default.” However, as a Swiss company itself, ProtonMail was obliged to comply with a Swiss court’s injunction demanding that it begin logging IP address and browser fingerprint information for a particular ProtonMail account.

[–] IceFoxX@lemmy.world -1 points 1 day ago

Yes, talk about it as nicely as you want. Ignore the facts and view them as lies. Feel free to trust that they don't have a key. I don't care. As a customer, I've been following what's been happening at Proton for long enough. What they say, what they promise, and what they actually do.
Feel free to vote me down because you don't like the reality. There's more to Proton's history, but I'm not going to look into it anymore because you don't want to know and instead punish those who give you sources. I'll laugh about it heartily in a few years.