The encryption is fine - but I think we need client app “per kind publish controls” (can an event of kind X be signed or leave my device). Likely general across all relays, but even perhaps per relay.

And per kind can be grouped kinds to make it easier (like 1+42).

There is still client app trust that they follow the settings, but that’s life for now without remote signing being easy.