Comment by microtonal
16 hours ago
Major US tech businesses are making money with analytics/ads though, so they would never roll out end-to-end encryption in a serious way. At least outside the US, a lot of E2E-encrypted services are popping up (Proton, Zeitkapsl, etc.).
I don't trust the small number of E2E US services at all. E.g., some of the companies that were/are in PRISM seem to have very convenient 'accidental' backdoors. E.g. WhatsApp doing backups on Google Drive without encryption by default on Android or Apple doing iCloud backups of iMessage that are not E2E encrypted unless you enable ADP. And even if you are wise enough to enable E2E in both cases, most people that you communicate with don't, because they use the defaults, so it's game over anyway.
There were four other countries in Five Eyes, and right now the UK and Australia have laws on the books that are ostensibly worse than the Cloud Act in the US if you're a foreign company with data hosted in those countries. That includes me, an American, who uses the Australian email service Fastmail.
On the other hand Apple can no longer off ADP in the UK.[0]
That some businesses are not trustworthy seems less a concern for me, than that many governments would like to make all business insecure by design.
[0] https://support.apple.com/en-gb/122234
I mean Europe just fundamentally doesn't think privacy should apply to the government.
In the EU, we have been fighting a bitter battle against Chat Control X.Y for some time now.
That won't change until Ursula von der Leyen goes. Her nickname in Germany (since 2009) is Zensursula, because she attempted to build a pan-German firewall.
She failed in Germany, but she may yet succeed in the entire EU.