the security:

- decent c/s transport encryption (yes, good https still is a noticeable point)
- functional and easy to use 2FA (and enabled by default i think)
- session management
- local passcode
- account self-destruct function
- optional "last seen"

- half-assed end-to-end encryption (that kinda works okay afaik, but it's limited to 1:1 private chats and surely could be designed cleaner and better)