Summary: The PRIVA SCORE evaluates the data protection features of video conferencing services and Consularia Office, Nextcloud Talk, Jitsi, Big Blue Button and Open Talk offer the highest level of data protection. Zoom, Google Meet and Skype perform very poorly because, among other things, they use servers in the USA and share metadata with third parties.
update: Open Talk has joined and is doing very well. GoToMeeting has now climbed into the ranks of services with a mediocre level of data protection. In addition, a small calculation error has been corrected.
It turns out that there are many services with a very good level of data protection in addition to the proprietary offerings of Big Tech!
Preliminary remarks on the subject of “comfort”: Yes, some of the services that perform best here are not as convenient to use as the products of the big players. But security and data protection are in the Age of digital capitalism not practical.
But that's what PRIVA SCORE is all about: Despite the complexity of the issue, making it as easy as possible to protect your own data and the data of others - and thus preserve civil liberties! But a little effort is necessary...
The PRIVA SCORE can receive a maximum of 270 points due to the calculation used to evaluate video conferencing tools.
As always, the PRIVA SCORE evaluates how well apps/services Data protection features Standards that are well met by all providers are not evaluated. In this case, this is access control through waiting rooms, passwords, etc. to avoid uninvited guests. Role concepts for assigning rights in the conference (moderation, presentation, participants...) are also offered by all services and are more or less easy to use.
When evaluating video conferencing tools cut the Open-Sourcesolutions Nextcloud Talk, Jitsi, Big Blue Button and newcomer Open Talk performs best. Not open source, but also among the recommended services is Consularia Office. These services have the highest data protection level (249, 243, 228, 225 and 209 points out of a possible 270) of the video conferencing tools compared here. Among the open source services Talk, Jitsi and Big Blue Button There may be variations in the level of data protection depending on who hosts the service. In this case, it is important to either host it yourself or choose a trustworthy provider.
The services of the big tech companies are traditionally at the bottom of the list. Zoom, Google Meet and Skype score very poorly (all 90 out of 270 points). This is due, among other things, to Server locationIt is true that Google also operates servers in Europe, but enough data still flows to the USA. zoom apparently has no European servers and Skype also runs through the USA, although Team can be partially operated via European servers - if a framework agreement has been concluded with Microsoft. And that is rarely the case for the average consumer.
All tools with yellow and red ratings must be viewed very critically in that the data processing has little to no transparent is. Metadata is shared with third parties, and also a anonymous participation is not possible. There is free choice of names, but due to the amount of metadata, it is obvious who is talking to whom, even with the wrong name.
Explanation of data protection features
Server location: To avoid data transfer to (unsafe) third countries such as the USA, users of video conferencing tools should use the option of choosing a server location within the EU. This prevents data from being transferred to countries with lower data protection standards.
End-to-end encryption: Complete encryption of the transmission and storage of video conference data from the user's end device via the provider's server to the end device of other participants protects the confidentiality of the content.
Open-Source: For this feature, a video conferencing tool whose code is openly accessible is the better tool in terms of data protection because it can be independently verified how well the tool protects users' data.
No recording without consent: Video conferences should not be recorded or stored without the express consent of all participants, as this involves personal data.
No metadata transfer to third parties: No metadata such as participant lists or similar should be transferred to third parties outside the EU.
Transparency about data processing: Video conference providers must fulfill information obligations regarding data processing towards participants and create transparency.
Anonymous participation possible: Participants should have the opportunity to participate in video conferences anonymously without registering or providing personal data.
EN 
DE_DE