ProtonMail often touts its Swiss jurisdiction and privacy guarantees, but at the same time, it is complying with a record number of data request orders going through the Swiss legal system. ProtonMail is one of the most popular secure email services in the world, having launched in 2014 via a crowdfunding campaign. It promises a …
just some metadata…
We kill people based on metadata https://www.wired.com/2015/03/data-and-goliath-nsa-metadata-spying-your-secrets/
And don’t for a second think you’re safe just because you’re not doing anything wrong. The people you’re in communication with could be a target, and you could be the plus one collateral, or just the plus one cleaning the network up. You don’t want to be a target. Metadata can make you an inadvertent target. Even if you’re doing everything right yourself
Then what do you suggest for an email client? My point is, you do the best you can and not make a big deal on couple thousand requests being handed over when there are 100m accounts.
Tutanota is the only email provider that I know that stores all data encrypted, AT REST.
Due to the nature of email, messages in transit are not encrypted (at least the metadata).
Depending on your risk tolerance, this might be fine.
I would recommend end to end encrypted communication for sensitive information (signal, etc).
Consult privacy guides for the tradeoffs of email and messengers.