Lumo gives you the power to solve problems big and small, while keeping your personal data confidential. Try it now.
Less interested in the AI thing, more interested in this bit nested at the bottom of the page: (h/t Jonah Aragon)
Because of legal uncertainty around Swiss government proposals to introduce mass surveillance — proposals that have been outlawed in the EU — Proton is moving most of its physical infrastructure out of Switzerland. Lumo will be the first product to move.
From their own response (and due to logical thinking about how the LLM service works): https://fosstodon.org/@notesnook/114927444378333659
Strictly speaking, if you consider Lumo’s GPU servers to be one of the “ends”, then yeah, it is E2EE (you and the server being the ends).
But Proton own the GPU servers, and therefore have access to their private keys, so they can decrypt your messages as they arrive, before they’re deleted, which happens after they’re encrypted with your asymetric key (so only you can read it) and stored with zero-access.
I don’t consider this safe. In a system where you are only interfacing with a computer (and not other users), E2EE should mean that only you have access to the unencrypted data, at any given time. Which is how Proton Drive works.