19
Can we talk about how people mix up 'private' and 'secure' messaging?
I keep seeing posts where someone says they use a 'private' app because it has end-to-end encryption, but then they back up all their chats to a cloud service without a second thought. I did this myself for years with Signal, just letting it sync to Google Drive. It hit me last month when a friend asked if her messages were safe from a subpoena. The app is secure, but the backup on a company's server is a whole different thing. That backup is often not encrypted with your key, so it's a weak spot. I had to dig into the settings to turn off cloud backups and use a local encrypted file instead. It's a small step, but it feels like a real win for actually controlling my data. Has anyone else found a good way to explain this backup gap to people who aren't techy?
1 comments
Log in to join the discussion
Log In1 Comment
jake_thompson4h ago
Oh man, this is such a big deal. I was just reading an article that called cloud backups the "Achilles' heel" of private messaging, and it really stuck with me. The app itself can be locked up tight, but if you're dumping a copy of the key under the doormat, it doesn't matter. Explaining it, I just tell people the app is like a safe, but the cloud backup is like leaving a photocopy of everything in a friend's garage. They might mean well, but you don't control that copy or who else gets to see it.
2