The idea would be to have secure gateways (managed by Proton AND the community, via a Proton installer and/or procedure) with no logging capability whatsoever, systematically masking the IPs that "Proton services" can see. These gateways would be "black boxes" for those who install them at home, ensuring that absolutely no data or logs could be retrieved or used.

Let me explain: Similar to what SimpleX.chat does, for example, these relay servers/gateways would be systematically contacted by Proton apps (mobile, desktop, etc.), masking the use of Proton services (especially if connected to a server managed by a community member) and hiding the user's IP address.

Of course, all of this would be fully encrypted, and the servers would automatically run within the client application, either with each request or after 1 hour, 1 day, 1 week... configurable by the user, so that each configuration is different and prevents statistical surveillance.

In the long term, and within the limits of technical feasibility, mask and encrypt the email addresses of senders and recipients in ProtonMail, so that even this data cannot be communicated.

I believe the best way to deal with generalized surveillance demands is to make it technically impossible to provide information. We see today that more and more activists, whistleblowers, journalists, and even ordinary citizens are victims of surveillance or police harassment, and this will not stop. We therefore need to find new ways to ensure that our private lives remain private.