Really uncomfortable with (otherwise cool) organizations using the presence of cryptography to back up a security/privacy claim that is 100% policy based.
Just because they don't do a thing doesn't mean they can't do a thing.
"We don't know who you talk to" (because we don't log that information as it passes through our servers)
is a very different claim than...
"We don't know who you talk to" (because we physically and computationally will never have access to that information)