Given how common email is unencrypted by design, I can't see how they can do much more than what we do ourselves. That is, you wouldn't send your bank login and password in an email so while the service could be watching for that, and then they could sell it as a service I can't see how they can do more than what we do ourselves.

Can I be very blunt and write that any email is about as private as a post card in the mail? Actually less private as you know our governments get a copy.
Bob