@kusuriya who is this about? arent most big companies hosting in the us anyway?
@felix This isn't about anyone in particular but some example of people selling this false sense of security is Protonmail. Most the staff is in .ch, but the founders, and some of the staff with access are US Citizens living in SF...
@kusuriya oh i had no idea about that. My mail provider is completely in Germany, or at least so they say 😂
@felix Yeah I had no idea about that until I put my foot in my mouth and said their staff was mostly in the US so really how safe is it, and someone "WELL ACHKTUALLY"'d me and I had to go "Uhh, that makes it even worse..." and they couldn't understand how. I guess thats part of the reason my mail server is set to mark protonmail addresses and funnels them all into their own folder that I mostly ignore.
@alex False sense of security. If you can be whisked away and forced to cooperate...
@alex So using protonmail as an example here. If the next snowden was looking for services they may read the whole premise around and may go "Oh hey cool this will be safer than dealing with a host hosted in the US" and buy in.
In comes the rubber hose cryptography where the US Government puts the US people from proton mail into jail using something similar to a FISA court until they cooperate and let them into the account.
A false sense of security is far more dangerous than anything else
@alex probably not though, people act differently on perceived risk. If I told you "I have taken efforts to make it harder for government agencies in the US to snarfle your stuff but I ultimately am a US citizen so keep that in mind" you are going to still take a different level of protection than if I told you "ProtonMail is incorporated in Switzerland and all our servers are located in Switzerland. This means all user data is protected by strict Swiss privacy laws."
@kusuriya thinking of wire app maybe?
@dch they are another good example looking at it