Comment by yadavrh
13 hours ago
We take security very seriously (encryption in transit + at rest, SOC 2 based infra and GDPR compliance). We considered default E2EE, but currently, it introduces significant friction for features like instant server-side search (our core value prop vs Slack's hidden history) and simple multi-device onboarding without key management headaches. We are exploring E2EE for specific "Secure Channels" as a future feature, but for the general workspace, we prioritize a seamless "it just works" experience with standard high-security industry practices.
it'll be exciting when someone finally demonstrates fully integrated, seamless and low-friction e2ee in a real-world application that is competitive in features and ease of use to traditional counterparts. i believe it would be challenging to get right, but is possible.