ProtonMail logged a climate activist's IP address after a Swiss legal order
An encrypted-email provider that promised privacy was legally compelled to log and hand over a French activist's IP address, leading to an arrest — even though message contents stayed encrypted.
01What actually happened
In 2021, French police, via Europol and Swiss authorities, obtained a legally binding Swiss order compelling ProtonMail to begin logging the IP address and device information of an account tied to the “Youth for Climate” collective. ProtonMail complied; the email contents remained end-to-end encrypted and unreadable, but the IP metadata helped identify and arrest the activist. Proton's CEO stressed the encryption itself was never bypassed.
02Why it matters
Encryption protects message content, not the connection metadata a provider can be ordered to collect. Cipher minimizes metadata and requires no phone number, so there is far less identifying data to log or surrender — though no provider in any jurisdiction can promise immunity from lawful orders to capture what it can technically see.
Sources
- TechCrunch · Sep 2021ProtonMail logged IP address of French activist after order by Swiss authorities
- The Record · Sep 2021ProtonMail forced to collect an activist's IP address in police investigation
We describe only what these sources report. If you think we've framed something inaccurately, tell us — accuracy is the whole point.
Cipher is built for exactly this gap: zero-access encryption, no phone number, on-device AI, and minimal metadata — so the failure in this story can't happen the same way.
See how the architecture works