Data on Storj is by default end-to-end encrypted with keys only the data owner controls (with optional support for sharing features). Only the data owner can decide who to share the keys with and who can see the data. Put another way, Storj can't access data without the data owner sharing keys and access!

However, if the owner shares the encryption keys and provides access to others, it can be further distributed by others. Storj does not allow illegal content per our terms of use and conditions. If someone has stored potentially illegal content and shared it with others, law enforcement may seek to obtain information by way of a subpoena, warrant, or other legal process. As you probably know since you're reading this thread, often such inquiries are confidential and the recipients may be prohibited from disclosing their existence.

If you're interested in our encryption and security design decisions, there are a lot more details over at https://www.storj.io/disclosures. Glad you're all paying such detailed attention!

reply

btown 12 hours ago | parent | next [–]

Of course it's a different business model, and I can't vouch for PIA actually standing by those commitments. And I empathize with wanting to use best in class tooling to optimize your site experience. But prioritization of privacy, and commitments to minimizing log retention, are things you should consider revising to the extent you are legally able to do so. Don't feel you need to respond here, of course, to that point!

reply

rsync 11 hours ago | parent | prev | next [–]

Yes, that is exactly the kind of thing you're supposed to be taking a stand against and resisting.

In fact, warrants like this are not "often" confidential - that is an aberration and an abomination - and a relatively recent one.

We - all of us - should publicly oppose these measures and work to resist them.

EDIT:

I think I have misunderstood - the HN title is incorrect/misleading.

Storj did not remove their warrant canary, they failed to update it.

Interesting ...