Proton spam and the AI consent problem

Posted by dbushell 1/23/2026

Proton spam and the AI consent problem(dbushell.com)

557 points | 428 commentspage 2

anigbrowl 1/23/2026|

This isn't an AI issue. Marketing departments have been like this forever, or at least since the infamous Canter & Siegel 'Green Card' email.

https://en.wikipedia.org/wiki/Laurence_Canter_and_Martha_Sie...

prism56 1/23/2026|

The same reason I pay for proton and they insist on showing ads for upgrading my subscription. I click no don't show this and then a month later when there's a different promotion, there's another ad at the top

Tepix 1/23/2026||

I had a similar issue with Microsoft today. They obviously invented a new "Copilot Newsletter" and subscribed my address to it, without my consent.

I wonder what the legislation says (I'm in Germany). I know that some business related mails are deemed legal, but this seems to clearly cross the line.

chrisjj 1/23/2026||

UK legislation says it is illegal. MS are serial offenders and the UK regulator has charged them not once.

gingerlime 1/23/2026|||

Same. Posted a comment about it [0]. I already filed a GDPR and ePrivacy compliants. Happy to share notes. Contact details in my profile.

[0] https://news.ycombinator.com/item?id=46730206

weedhopper 1/23/2026||

Here is an interesting case of a failure of the regulations, I’m curious how this goes

https://www.gofundme.com/f/hold-mojang-accountable-for-their...

user34283 1/23/2026||

[flagged]

direwolf20 1/23/2026|||

Of course it appears repeatedly. It occurs every single time they run a new marketing campaign.

gingerlime 1/23/2026|||

no unsubscribe button in this MS Copilot campaign. And they’re trying to gaslight like it’s some essential notification when it’s clearly and blatantly unnecessary marketing spam.

BrouteMinou 1/23/2026||

I canceled my subscription, and deleted my account due to the nagging and promotional annoyances.

I've contacted the support, but they basically don't care.

There are not multiple ways to fight back against this behavior. I am now with mailfence until they start the same circus.

unethical_ban 1/23/2026|

Y'all are wild. I have most of their emails turned on and barely think about Proton's comms. Rarely get one, briefly skim if I do.

Night_Thastus 1/23/2026||

Yeah, I've always been surprised at how negative HN can get about Proton. They're not perfect, but man at least they're trying to fight the privacy fight.

I've always had a very good experience with them. It's cheap, fast and their spam filter works well. Maybe 1x-2x a year I get an email from them about some promotion but that's it.

cheschire 1/23/2026||

I always wondered if it’s just a few actually upset customers mixed with a ton of astroturfing by competitors pretending to be outraged proton customers.

osmsucks 1/23/2026||

Great timing: I just received a Copilot spam email from GitHub. I don't remember opting in to such marketing communications, instead I generally opt-out from such communications as soon as I sign up to a service...

Tepix 1/23/2026|

Same here. They created a new newsletter and added you to it without your consent.

RayVR 1/23/2026||

I have often found proton’s intrusive marketing campaigns annoying.

I use them for email and that’s all I want. Every time they market some new product to me, I get closer to moving to a new provider.

g947o 1/23/2026||

When I migrated my email from Gmail, I took a careful look at Proton and Fastmail.

Proton's very questionable design and claims around encrypted emails and their service offerings made me concerned, which were the main reasons I went with Fastmail.

So far it has worked well, and I hope it stays that way.

alex1138 1/23/2026||

Proton's UX just subjectively FEELS bad

heikkilevanto 1/23/2026||

Same here. Tried out Proton and Fastmail, and chose Fastmail. Been happy with it for a few months so far.

nexoft 1/24/2026||

Proton have a real problem with intrusive practices. 2 things that happened on the span of 2 years and almost got me to leave them :

1 - there was a persistent, very visible at all time big ass button on the Proton-Mail UI asking/suggesting to upgrade to a more premium plan, while I was already a paid customer. It was done in a way that was so wrong. Never experienced such frustrating things elsewhere even with my 99% full google drive.

2 - This must’ve been 2022 or 2023 Black Friday/cyber Monday season and there was a persistant, hardcoded, very annoying pop up that would immediately spawn each time I was opening Proton-Mail, asking me against to upgrade to the more premium plan than the premium I had, this will spawn every time I refresh despite hitting “don’t show this again”.

There are so many slick and smart way to get customer to use more services. Shoving unsolicited pop ups and spams is the worst thing you could do for your brand. I even start to wonder about their core values of privacy and whatnot, they play the suiss neutral privacy friendly so badly, their head of marketing is either so bad and should be fired or we going to discover another [Crypto AG](https://en.wikipedia.org/wiki/Crypto_AG) scandal.

tmarice 1/23/2026||

I've been using Fastmail for years now, and I'm completely satisfied. Custom domain + built-in masked email functionality works great.

chrisjj 1/23/2026|

The FM Masked Email is insecure in that there is a circumstance under which it can leak your real email.

tmarice 1/24/2026||

Do elaborate.

chrisjj 1/24/2026||

"WARNING: Fastmail Masked Email insecurity" https://www.emaildiscussions.com/showthread.php?t=81287

tmarice 1/24/2026||

One concrete vulnerability is mentioned in a linked thread and described here https://news.ycombinator.com/item?id=37791500

I have created a ticket with the Fastmail support asking them more details about the vulnerability you mention in your thread, I’m curious to see their response.

chrisjj 1/24/2026||

There FM said:

> When forwarding an email as an attachment and later checking the headers of the attached email, I could not find the X-resolved-to header

this is odd, no? This header field should remain.

And regarding that FM Privacy First declaration, this is now 404.

tmarice 1/24/2026||

Well they still claim it is impossible to connect different masked emails together. If you as a sender can reliably determine the target email address, then that claim is untrue as well.

chrisjj 1/24/2026||

Where are they still claiming that?

tmarice 1/25/2026||

On their Masked Email feature page https://www.fastmail.com/features/masked-email/

> Companies have no way of linking different Masked Email addresses together to track you.

I have received the Fastmail support response, and since they do not consider this a vulnerability, I'll post it here:

- You have a Masked Email

- You have set up forwarding from your Fastmail account to another email service

- The other email service rejects the mail for some reason

- The bounce message goes back to the original sender, and may include the email addresses along the chain after the Masked Email address.

I'm assuming the bounce message contains the X-Resolved-To header mentioned in the other HN thread linked above.

chrisjj 1/25/2026||

Thanks. I agree. The privacy claim is contradicted by Support's "may include the email addresses along the chain". I note though that I got the opposite answer from Support.

Did you request escalation?

r_lee 1/23/2026||

Is anyone actually like super hyped about "Building AI Agents" with this and that? I wish I could get excited and just become a 100% AI Agwnt vibecoding all day and building AI agents to do AI stuff but like, I don't know?

Is there a crowd that just drools whenever a new way to "Build AI Agwnts" or "Agentic Workflows" comes out or something?

fergie 1/23/2026|

> Proton for Business newsletter

AFAIK you are legally allowed to spam businesses, but not individuals. A handy get-out clause for marketeers.

robin_reala 1/23/2026|

How do you know the address you’re emailing belongs to a business? The head of A&A ISP in the UK used to regularly win ~£100 judgements in small claims from spammers because his personal email was leased for a nominal fee from aa.net.uk, the same domain as his business.

fergie 1/23/2026|||

OP had checked that they would like to receive the "Proton for Business newsletter", and on that basis was deemed a "business".

ivan_gammel 1/23/2026||||

If your email is used as a contact on Business subscription it is safe to assume that it is used for business purposes.

petesergeant 1/23/2026|||

I mean that's cute and all, but it's a party trick, and very unlikely it caused any actual behaviour to change.

More comments...