Does any data get sent to matrix hq or element?
You must log in or # to comment.
Disclaimer: I am not a synapse dev, but I have run a non-federated server for a long time.
Assuming you have fully disabled federation and Matrix.org provided services, data should not be leaving your instance. I run mine with bridges for services like Signal, IRC, and Discord, so as expected data goes out through the bridge software (via VPN).
To be extra safe, you could run it in a Docker container who’s network is limited to local, and an nginx proxy for Element.
Depends on the services you’re opting into. If you use integration services (sticker packs and such) hosted by the Matrix.org servers then the client will send some data to HQ. Same risk also exists with widgets such as traditional (video) calling which used Jitsi hosted elsewhere. There’s also the optional service that’ll link your phone and email to a Matrix account. All of that can be turned off, but most of it is enabled by default.
Oh, and if you join any rooms on matrix.org or chat with any :matrix.org users, then that’ll make your server share data, of course.
What do you mean by “traditional video calling”? Are video calls not encrypted? Is traditional meaning out of the box video calling? What is the alternative?
Modern Matrix has been moving towards a new video calling platform, but traditionally calls were done by just showing you a web page running Jitsi (by default https://app.element.io/jitsi.html?confId=something). I believe Jitsi gained the ability to encrypt calls, but you’d still be sending metadata (user agent, IP address, etc.) from your Element client to their servers.
You can prevent this by running your own Jitsi server and configuring your Matrix server/clients to prefer that. matrix-docker-ansible-deploy does this for you, for instance, if you just set
jitsi_enabled: truein the config file.
Since it’s not federated, joining or chatting with other servers won’t apply.
a few years ago there was a scandal about synapse having a lot of defaults that in one way or another resulted in matrix.org receiving a lot of data.
I think it was cleaned up since then, but it’s always better to audit your configuration along with what are the defaults.
I had seen a post from the official element account that said something along the lines of “we send encrypted data to the government. If you don’t like that, element isn’t for you.” Not word for word accurate but you get the gist. I didn’t know if that statement only applied to the official matrix.org server or self hosted instances as well.
where did you see this? that sounds… interesting
I understand that message so that they are providing a messaging service for a fee to police forces. I don’t think they meant that they send encrypted data to them for money.
“Yes, we fund Matrix dev by selling encrypted messaging to governments, which includes police: if you don’t like that then please feel free to use a different app.”
Idk that seems pretty clear to me that they are selling encrypted messages to governments and police. Not only that all the comments interpret it the same way.
EDIT: The more I read it the more I become unsure. Hopefully they elaborate. To me I am confused at the service they are selling. Matrix is open source these organisations could dedicate their own employees to spin it up. Do they have somewhere you can purchase the same service? The phrasing is what gets me. It feels like they are referring to already sent messages and data. If they were referring to a service they provide, that should be clearly stated.
Indeed, now rereading it I understand ypur uncertainty. It would be best if they would clarify it.
I still think they’re selling the service (the Element One SAAS thing), but with this wording they could point to this toot if something changes in the future to that end
Matrix is open source these organisations could dedicate their own employees to spin it up
sure but a lot of companies don’t want to deal with that, especially non-tech companies. also, look at how popular aws/azure/google cloud is, but also teams, zoom and the whole google suite. Companies love it when it just works, without them needing to pay someone (ideally multiple employees) to keep it operational and up to date. Also, Element One employees will basically always have more experience in maintenance than your own admins.
Do they have somewhere you can purchase the same service?
I don’t understand this one. Could you elaborate?
If you interact with any other server on the network (meaning users on another server), all messages/attachments/metadata will be synced with all other servers by design.
Given the percentage of users on Matrix.org & servers they provide, some of your data will end up on Matrix HQ servers.
Their instance is not federated.
Somehow missed that part. But what would be the point of a defederated chat then?
I use mine like old school Trillion. Element is my Discord, Signal, IRC client. One thing open on my desktop to do them all.
Edit: For instance, Beeper (https://www.beeper.com/) is just a defederated Synapse server with bridges.
I want to set up XMPP gateways to do the same, but I would still feel comfortable federating since the network isn’t centralized around a single hub. The clients are a lot less weighty too.
