Privacy

39871 readers

463 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago

MODERATORS

474

[OC] What People Think Privacy/Security Is (lemmy.ml)

submitted 3 days ago by Charger8232@lemmy.ml to c/privacy@lemmy.ml

140 comments fedilink hide all child comments

I know there are plenty of software missing from here. This is just a fun infographic I made, no need to take it seriously :)

you are viewing a single comment's thread
view the rest of the comments

[–] UltraMasculine@sopuli.xyz 6 points 1 day ago (1 children)

What's wrong with it?

[–] pyre@lemmy.world 2 points 1 day ago (1 children)

proton has already shared user details with authorities.

[–] kadup@lemmy.world 8 points 1 day ago (1 children)

Any compliant commercial service will share user data with authorities - you don't get to operate a company and skip local laws. That's a non argument.

What's important is what "user details" they had on hand to share. If I create my service in such a way that I have zero data about you except some random useless string, I can "hand over all user data" to authorities and it would mean absolutely nothing for your privacy.

[–] pyre@lemmy.world -1 points 1 day ago* (last edited 1 day ago) (2 children)

except they shared the IP address of an account even though they state "No personal information is required to create your secure email account. By default, we do not keep any IP logs which can be linked to your anonymous email account. Your privacy comes first." on their homepage

[–] andronicus@lemmy.world 3 points 1 day ago

It's right there in your copy-paste my dude, "BY DEFAULT".

The jackass(es) who actually was at risk went the extra step to enable IP address logging, which means that when Proton had to comply with a lawful court order, they actually had data to give.

Proton is a company like any other that has to comply with laws in the country they operate in, but unlike a lot of other companies, they don't log data UNLESS YOU ASK THEM TO.

Moral of the story is, like has oft been repeated, know your threat model and plan appropriately.

[–] UltraMasculine@sopuli.xyz 1 points 1 day ago (1 children)

If I understood correctly from Proton's privacy policy, VPN does not log IP addresses but at least in some circumstances Mail does. This is from their privacy policy:

Due to limitations of the SMTP protocol, we have access to the following email metadata: sender and recipient email addresses, the IP address incoming messages originated from, attachment name, message subject, and message sent and received times.

One thing must be remembered: Even Proton must follow the law and rules.

[–] kadup@lemmy.world 1 points 1 day ago

And those are the limitations created by the fact that email was never meant to be truly secure, not in the way we define and expect security and privacy nowadays at least.