Everything should be end-to-end encrypted by default.
Everything should be configurable by the user/admin to their security needs.
Once encryption is enabled you can't disable it anymore. (Plain text channels need be created as such)
End to end encryption should also be possible on unsupported servers e.g. discord.com. (through special formatted messages)
Based on the concept that the server cannot be trusted and could be compromised.
more coming soon