This reminds me of the "nothing to hide" fallacy. Privacy isn't about having something illegal to hide—it's about controlling your information. An immigration attorney needs to protect client privileged communications. A journalist needs to protect sources. A domestic violence survivor needs to keep their new address confidential from their abuser.

The technical challenge I keep coming back to is, how do you make proper encryption accessible enough that vulnerable populations actually use it? PGP has existed for decades but remains too friction-heavy for most people who need it most. E2EE cloud storage helps, but onboarding and key management are still barriers. The gap between "technically possible" and "practically usable by someone fleeing persecution" is enormous.

Anyone working on solutions in this space—I would love to hear what approaches you're taking to balance security with genuine usability for non-technical users.