Thank you for reading this. If you guys want Financial, Legal and Medical service providers (notably) to embrace Proton, I strongly recommend you implement this request.

A key missing feature is the ability to assign accesses to a user's inbox or calendar to another user (to avoid sharing credentials). In some regulated industry, this is necessary to properly execute compliance functions.

Three delegation profiles would be necessary for this feature to be effective:

1. Temporary: the ability for a user to delegate inbox/calendar accesses to another user for a specific amount of time (Holiday, Maternity, Illness),

2. Enhanced: the ability for a user to delegate inbox/calendar accesses to another user for an indeterminate amount of time (Executive Assistants, Managers, long term leave of absence),

3. Compliance: the ability for an organisation to automatically delegate inbox accesses for a determinate or indeterminate amount of time to specific individuals within an organisation (departed employee, third party audit, litigation hold, client privacy request)

Key components by profile:

• All: the ability to switch on or off this feature for an organisation as a whole

• All: a separate toggle for the compliance profile option.

• All: retains logs of these accesses

• All: visual indicator that an inbox has delegation(s) active.

  • Temporary / Enhanced: Folders included/excluded could have a badge

• Delegation recipient: within the inbox of someone receiving delegated emails either a clear indication that an email is a delegated email or a "tab" of sorts that "switches" to the delegated inbox and hosts everything in there.

• Temporary / Enhanced: in-app notification to the user when a delegated user is currently viewing their inbox.

• Temporary / Enhanced: the ability to send emails "From (colleague A) on behalf of (colleague B)" as a separately selectable option when implementing a delegation.

• Temporary / Enhanced: the ability to temporarily suspend all delegations for a specific amount of time

• Temporary / Enhanced: the ability to include/exclude certain email contacts from a delegation

• Temporary / Enhanced: exclude or limit access to things like alias, tags and account settings

• Temporary / Enhanced: the ability to have the delegation only work during specific hours or on specific days

• Compliance: include current and past delegations in an accounts' activity logs

• Compliance: ability to assign each user another user(s) as manager

• Compliance: ability to assign to specific users membership to the compliance team

• Compliance: grant access to a delegated account's inbox activity log as well as existing delegations.

• Compliance: once a user leaves an organisation, grant full access to a user's inbox to their assigned manager(s) and the Chief Compliance Officer ("CCO") and/or Chief Privacy Officer ("CPO"). The CCO/CPO can delegate that access to subordinates or change the managers' accesses if necessary.

• Compliance: a still-employed user should be able to restrict a compliance access to their inbox by excluding specific folders, email addresses or calendar categories. This is to preserve the privacy of other clients or projects.

• Compliance: Compliance should still see and find in search the email titles, folders, addresses and attachment names / document types of excluded content by a still-employed employee, but not see the actual contents of the email.

• Compliance: The CCO/CPO should have the ability to override the confidentiality exclusions of an employee subject to a mandatory compliance delegation if they deem necessary.

• Compliance: deactivate permanent erasure of deleted emails for accounts with active compliance delegations.

• Compliance: When an organisation has activated the compliance feature, extend for everyone the delete folder's retention time to 1 year.

• Compliance: All compliance activities, including temporary delegations, assignments, override, etc. should be logged.

• Compliance: After X amount of years, an org's CCO/CPO should have the ability to permanently delete a preserved inbox.

That's it! I understand that this might take a while to implement, but professional services firms are truly the perfect niche of business clients for your product suite: typically lower headcounts, obsessed with privacy and at high risk from cyberthreats.

Next thing on the docket for this client group would be better calendars (further integration with mail and contacts, better attachment management, more regional calendars, better notifications, better collaboration) , more quality of life features for Proton Mail (OoO messages, better signatures, better contact management, etc.) big improvements to Proton Drive (compliance, document structure, collaboration, File explorer integration of shared folders, etc.). I also think you guys need a dedicated contact management platform.

Anyway, hope this helps, best of luck.