I mean, sure, if somebody wants to take a guess on whether I have my private key with me (or even still have access to it at all), that's on them.

But if an email provider purportedly bringing email encryption to the non-GPG-trained masses does, it's a different story.