In this video, I break down the “Stop Cop City” case that triggered a huge backlash against Proton Mail after court records showed data from a Proton account helped the FBI identify an anonymous account holder. Proton has long been treated as the gold standard for private email, largely because it’s based in Switzerland and built around a “we can’t see your data” promise. But this case is the perfect real-world example of what private email can and can’t do when a serious investigation triggers international legal channels. I walk through how the MLAT process works in practice: the FBI can’t just serve Proton like a U.S. provider, so they route the request through Swiss authorities. Once Swiss courts approve a legally binding order, Proton must comply with Swiss law—yet their zero-access encryption still matters because it limits what they can actually produce. Here, Proton didn’t hand over email content or contacts; the key detail was metadata tied to payment. The user paid with a credit card, Proton provided a payment identifier, and the bank linked that identifier to a real name and billing address. My takeaway is simple: Proton’s encryption didn’t fail—operational security did. Proton is still a strong option for privacy-conscious users, but anonymity requires layers: avoid identity-linked payments, watch recovery options, and minimize metadata that can connect your account to you.