this post was submitted on 06 Mar 2024
127 points (98.5% liked)
Privacy
4183 readers
23 users here now
A community for Lemmy users interested in privacy
Rules:
- Be civil
- No spam posting
- Keep posts on-topic
- No trolling
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
The article states that they are only saving a hashed copy of the currently set username, if any. While they might in theory keep more than that on hand, their policy has always been to minimize accessible data, and have responded in kind whenever subpoenaed, which is at least a very strong evidence.
The code is also fully open source for both server and client, so you could independently validate it yourself.
Are you sure code for server is open source? I thought only the client was.
https://github.com/signalapp/Signal-Server
Everything is completely open under AGPL 3.0, really neat.
Worth pointing out that a git repo doesn't mean that's what they're running on the server
I'm not saying don't trust Signal, but it's worth remembering that you are trusting them