In the chapter titled "Use messaging apps more securely", under [Assess your needs to decide what tool works best for you](https://gitlab.com/securityinabox/securityinabox.gitlab.io/-/tree/3f64e8ac51b83aba0fc0d917977496d3e7a0c7a6/src/communication/secure-chat#assess-your-needs-to-decide-what-tool-works-best-for-you), question 5 and the discussion following it contemplate whether end-to-end-encryption is required: > Do you need to protect your messages with end-to-end encryption? > * If you need to share sensitive information in real time, and are not self-hosting your messaging tool in your own servers, you should make sure that your messages are protected by default through end-to-end encryption or that, at least, end-to-end encryption is a feature that you can enable for your most sensitive conversations. > * If you need to share sensitive information with groups, make sure that group chats can also be protected through end-to-end encryption. > * If you are going to use a messaging app for voice or video calls where you will share sensitive information with individuals or groups, make sure that these can also be protected through end-to-end encryption. In alternative, choose a tool hosted by you or by someone you trust. In my opinion, while the second and third points may be relevant, since some apps do not cover these modes of messaging with e2ee, the first point, and indeed the wording of the head question itself is superfluous, as per the general direction this guide has been taking in ubiquitously recommending e2ee, and when taking into consideration the landscape of modern messaging apps, the majority of which do implement e2ee anyway. Additionally, suggesting that e2ee is relevant only/more when the communication tool is not self-hosted is misleading, since e2ee is intended for the in-between nodes that can never be trusted. Any random host on the Internet is much less likely to be inclined to monitor anyone, whereas their ISP is the one that's likely to do so. I recommend: * rephrase the head question to assert the importance of choosing apps that support e2ee, in general. * keep the 2nd and 3rd scenarios as use-cases requiring further checks * omit the last sentence in the 3rd since self-hosting doesn't eliminate the threat for which e2ee is recommended.