Privacy

46947 readers

698 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 6 years ago

MODERATORS

170

ProtonMail provides information used to identify email owner... (www.404media.co)

submitted 1 day ago by jrcruciani@lemmy.wtf to c/privacy@lemmy.ml

87 comments fedilink hide all child comments

Awesome...

you are viewing a single comment's thread
view the rest of the comments

[–] GreenShimada@lemmy.world 21 points 1 day ago* (last edited 1 day ago) (1 children)

Really, this headline should be "Organization so poorly organized that they messed up having relatively secure email."

[–] halcyoncmdr@piefed.social 17 points 1 day ago (3 children)

Not at all. Proton doesn't require any personal info at all. But if you pay with a credit card... That has your personal info tied to it. It's their fuck up paying with a credit card. Proton accepts other payment methods that aren't tied to your identity.

Proton is required by law to provide information they have when the courts say so.

[–] Auli@lemmy.ca 2 points 1 day ago (1 children)

Are they required to keep the data?

[–] halcyoncmdr@piefed.social 3 points 21 hours ago

Not sure about Swiss laws regarding merchant payment card data retention... But they aren't really going to matter with this situation either way. Even if Proton doesn't keep any identifying information directly, the payment processor for sure is going to keep identifying data. Proton will have a confirmation number for the payment being processed, which can be correlated via the payment processor anyway.

[–] toynbee@piefed.social 8 points 1 day ago (1 children)

So I'm not a criminal organization as far as I know, but if I did pay with a credit card originally can that be rectified without deleting and starting over?

[–] AmbitiousProcess@piefed.social 8 points 1 day ago (1 children)

Proton uses Chargebee for payments, which has its own data retention policy of essentially "as long as we want to", but Proton does themselves keep limited data like the billing name, and last 4 digits.

Proton's privacy policy says nothing about a pre-set time delay after which they'd delete that data. They only claim that they "reserve our right" to remove your payment information if they think it's no longer valid. So theoretically, that might mean if your card's expiry date has passed, but that's not a confirmation.

The best way to reliably make sure Proton wouldn't have any info on you is to not have ever tied any real information about yourself or your payment info to that account.

[–] toynbee@piefed.social 2 points 1 day ago

Thank you for the information.

[–] GreenShimada@lemmy.world 1 points 1 day ago

Yeah, exactly. They don't make it hard to not tie personal data to them if you want, you just have to actually DO the thing to take advantage of it. These people seemed to think it was magic, which seems to be how a lot of people think Proton or Tuta works.