Skip to content

How can we improve our accounts settings, payments or plans?

← Accounts & payments
This idea is awaiting moderator approval

Scoped account logins/workspaces

For context, I am someone who works in a high security field where I am not allowed to have my personal phone on me depending on the area I am working in that day and only authorized to carry my work provided phone. On this work phone I am allowed to install personal apps in the personal android profile however everything is monitored. I would like a proton account management feature where you can set multiple passwords for your account that are associated with a different scope of access. For example entering the main password gives full access to account while the work password only grants the ability to view things I have added to that scope and not make changes to settings.

6 votes

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Leslie shared this idea  ·   ·  Report…  ·  Admin →
How important is this to you?

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • posted friction commented  ·   ·  Report

    This is absolutely critical! I wish I could use my paid Proton account on my untrusted desktop PC, in controlled manner.

    My use case is accessing VPN and specific Drive folders. It should also be possible to isolate Proton Pass from other services as well. Secondary password just doesn't cut it.
    I'm sure there are people signed into Proton VPN on insecure devices such as smart TVs. This can lead to an attacker gaining access to everything inside user's Proton account by exploiting a much weaker link. It is an unacceptable risk.

    Right now the only way to mitigate this is to create a separate (device-specific) Proton account and add it to a family/duo plan, just to be able to use a specific service. This workaround is extremely impractical and unnecessarily expensive.

    Related but not the same. It's merely a single way to tackle the problem: https://protonmail.uservoice.com/forums/935538-accounts-payments/suggestions/43173582-different-passwords-for-mail-vpn-and-drive

    Ideally I should be able to use some features of my Proton account on any device without major security drawbacks. Perhaps something like device-specific profiles could solve this? Think of them as a way to manage separate, yet internally linked, Proton accounts with fine-grained permissions. They would not be using the main e-mail address for logging-in.
    Example profiles:
    1. "VPN for my Smart TV" - can access only VPN, doesn't provide additinal info such as primary e-mail address or VPN settings from other profiles.
    2. "potentially insecure desktop PC" - used for synchronizing specific files and folders between devices, can't view anything about other services.

    I am aware that solving this issue might require a complex, careful implementation that has not been deployed by any other service provider yet. I also believe that it's in Proton's best interest to further expand security protections, so that their services can be used by people with different threat models. Not everyone can afford to fully trust all devices that they need to use on a daily basis!

    Please, have somebody think about this issue.
    For what it's worth, I could help brainstorming all solutions that would be deemed feasible by Proton.
    Thank You.

  • EU commented  ·   ·  Report

    Very niche but cool idea! I love this idea

Accounts & payments: Accounts

Categories

Feedback and Knowledge Base

(thinking…)