Comment by ein0p

I don't assume in general that any of cloud services in the US are free of government surveillance either. Your only hope for any kind of privacy is self-hosting, and using certs issued by your own CA (I strongly suspect Let's Encrypt is a honeypot). Likewise I strongly suspect Proton Mail and Signal are both honeypots. Tucker Carlson was spied on when arranging his interview with Putin, even though he uses Signal. This likely bypasses the protocol - you don't get to examine the binary that's installed on your phone. It could contain all sorts of Five Eyes special sauce, as could iOS, and the companies won't even be able to tell you about any of it. It's safe to assume that all VPNs are tapped, too, unless you run your own.