I’ve swapped to using it since I switched to GrapheneOS. Only apps I’ve got using it so far are Tusky (Mastodon), Molly (Signal fork with UnifiedPush), and some of my self hosted stuff which allows for web hooks.
I really hope it catches on in more apps. Especially as their library has automatic fallback to Google’s service.
It’s not about it being locked. It’s being able to re-lock it after unlocking. You can unlock it, flash something like GrapheneOS on to it and then re-lock it. If it’s left unlocked, then anyone with a few minutes access to your phone could flash anything over the top allowing them to bypass the standard protections, install any app as at the system level.
That doesn’t hold up against the publicly available source code for their applications, white papers on their security and encryption, and multiple independent security reviews. And again, they are legally required to ignore US court orders. Only a Swiss court order can compel them to provide user information.
Got a source for that? Proton isn’t able to access to any user emails. I believe Swiss law also makes it illegal for them to provide user information without a (Swiss) court order.
The only case I’ve heard of that was similar was when the Swiss court ordered them to provide all the info they had on a user. This was the last IP address they logged on from and a recovery email the user had entered. The recovery email is an optional thing the user had set up on their account. They also used this same email address to sign up for a Twitter account. They were able to get enough data from Twitter to identify the person.
I do the two profiles on mine as well. The Google profile isn’t allowed to run in the background so it’s only active when I’m using an app that really needs it. Down to just a single app now that needs it.