448
Survey shows Gmail users would gladly sacrifice features for more privacy (www.androidauthority.com)
submitted 6 days ago by [email protected] to c/[email protected]
102 comments fedilink hide all child comments

Most of you said you’d switch to Proton Mail for the privacy, even if it meant giving up some of the convenience of Gmail.

you are viewing a single comment's thread
view the rest of the comments
[-] [email protected] 3 points 5 days ago

To be precise, even when an email is not from Proton user, they encrypt it with ypur public key, send it to you and delete it (they call it zero access). Which is the best you can get. Also managing PGP keys, especially on multiple devices is a pain.

[-] [email protected] 1 points 5 days ago

This is actually good to know. OTOH, aren't all messages transfered using encryption with most email providers/clients anyhow (TLS/SSL)? This is mostly about making sure your data on the servers stays safe even if someone gains access, right?

[-] [email protected] 2 points 5 days ago

So, TLS is just a point-to-point encryption protocol, it doesn't prevent anybody of the parties involved from having access to the content. Once the email is encrypted with PGP, Proton loses permanently access to this content.

So this is pretty much what happens with a Gmail <-> Outlook and a Gmail <-> Proton email.

Gmail to outlook:

A writes the email in their editor <- TLS -> Google servers <-TLS-> outlook servers <-TLS-> B reads the email. While every communication is encrypted with TLS, every server has access to its content. Every time B accesses the email from outlook servers (I.e., their inbox), the data is transferred with TLS, but outlook is the "other end of the tunnel", so it has access to this content.

Gmail to Proton:

A writes the email in their editor <- TLS -> Google servers <-TLS-> Proton servers -> encrypt original message with B's public key and discard original -> send to B inbox -> Proton client decrypts email -> B accesses it.

So yes, it is

about making sure your data on the servers stays safe even if someone gains access

As long as you consider the email provider part of those potential "someone".

The way I would say it essentially is that PGP encryption (even in cases where the original messages was not using it) still gives you the confidentiality property of PGP, even without the integrity and non-repudiation properties (which are not possible to guarantee with respect of the original message of course). In other words, the biggest difference is that the email provider doesn't have access to your stuff.

[-] [email protected] 1 points 4 days ago

Thanks!

this post was submitted on 27 May 2025
448 points (97.9% liked)

Privacy

2341 readers
913 users here now

Welcome! This is a community for all those who are interested in protecting their privacy.

Rules

PS: Don't be a smartass and try to game the system, we'll know if you're breaking the rules when we see it!

  1. Be civil and no prejudice
  2. Don't promote big-tech software
  3. No apathy and defeatism for privacy (i.e. "They already have my data, why bother?")
  4. No reposting of news that was already posted
  5. No crypto, blockchain, NFTs
  6. No Xitter links (if absolutely necessary, use xcancel)

Related communities:

Some of these are only vaguely related, but great communities.

founded 6 months ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]