Remove uncaught spying vector for slimy Google
First, how many starting users know all the settings and that they might be "effectively" thinking they're private on the VPN, while really not necessarily being protected fully from Google spying.
This is not a knock on Proton's excellent tunnel privacy, but a sort of front and back door that may be open, like it turned out to be on my iphone ProtonVPN install.
The biggest spyware operation that's ever existed called "Google," has a DNS operation to spy further on users activities which can happen prior to entering the VPN tunnel... IF ... you have "Allow Alternative Routing" to be turned on (which is the "tyrannical" default setting).
With browser fingerprinting and Google spy scripts on I'd estimate 97% of all websites in the world, it can easily know you are
a) diving into the finite number of Proton servers and
b) know it's you by virtue of the million points of data in a file they have on you and use it and fingerprinting to know it's you on the other end.
Privacy's number one enemy is the scumbag Google, manipulating world elections with its data and allowing for potential blackmail of anyone who opposes it, whether by its own doing or a government that has access to its servers (with/without consent).
Solution:
A) Turn off Alternative Routing by default;
B) Make it a tranparent choice as to which service(s) can be picked for alternative DNS;
C) disqualify Google from being one of those services!
Google has so many conned into thinking it's a friend with its manipulating algorithms, easy/lazy tools for webmasters, and cheap phones, chromebooks, tablets to "own" the user like a good spyware rootkit, but one that also puts users to sleep.
And lastly, Alphabet is already being said that for its A.I. it now wants every literal bit that flows on the entire internet to be in its servers. Sick.