We take security very seriously (encryption in transit + at rest, SOC 2 based infra and GDPR compliance). We considered default E2EE, but currently, it introduces significant friction for features like instant server-side search (our core value prop vs Slack's hidden history) and simple multi-device onboarding without key management headaches. We are exploring E2EE for specific "Secure Channels" as a future feature, but for the general workspace, we prioritize a seamless "it just works" experience with standard high-security industry practices.