Perhaps have a black list of countries that are know to break the privacy of communications, then make https default for logued users in these countries.
This may help because:
- It only affect a subgroup of users (the ones from these countries) - It only affect a subgroup of that subgroup, the logued users (not all) - It create a blacklist of "bad countries" where citizens are under surveillance by the governement
This perhaps is not feasible, if theres not easy way to detect the country based on the ip.