I’m not sure how it’s a flaw, if the focus is on privacy and freedom from collection (and persistence) of user data. People who gravitate towards Jitsi are usually very privacy/security conscious and frankly would likely still veer towards Jitsi if it was a slightly inferior video conferencing product. Remarkably though, the devs have devoted such an incredible amount of time (and talent) to creating a product that’s comparable - if not even superior - to the most celebrated paid products out there. When you host your own Jitsi installation, you enter a world of endless possibilities. I honestly can’ enthuse enough about it.
With Jitsi, by default, a call between 2 people happens in P2P mode, which is intrinsically encrypted. When you add a 3rd client to the call, then it uses the bridge (JVB). Jitsi has no user-data permanence in its default state, but it you want to use it on an enterprise level (or have specific needs to only allow a set group of users all the time), then you can use the JWT token or LDAP integration. Honestly, the possibilities are near-endless. But hey, here I go again sounding like the marketing director for the company.