Don’t trust the server to remove the metadata, do it yourself on the client side.
That’d be the most secure approach and wouldn’t be too hard for clients to support. Clients can remove the metadata.
Discussion
You can’t verify what software the relay is running, so they could be keeping your meta-data secretly…
But you can verify the code of the client you’re running. This is why clients should remove the metadata, rather than relays.