Privacy hygiene basics: 8 steps in 10 minutes

1. Password manager

Stop reusing passwords and ditch weak combinations. Install a password manager (Bitwarden, 1Password), enable long random passwords, and pair critical services with a hardware key or TOTP.

2. Two-factor authentication (2FA)

Prefer code generator apps (TOTP) or hardware keys (FIDO2/U2F) over SMS. Keep recovery codes offline.

3. Browser hygiene

• Disable third-party cookies.
• Install tracker blockers (uBlock Origin).
• Use isolated profiles for work and personal tasks.
• Enable DNS over HTTPS/DoT.

4. App permissions

Review access to location, camera, and microphone on your phone. Grant permissions “while in use” only.

5. Backups and updates

Turn on automatic updates for OS and apps. Keep at least one offline backup of critical data and test restores occasionally.

6. Phishing defense

Skip unexpected attachments and never enter passwords via links from suspicious emails. If in doubt, open the site manually.

7. Minimize your digital footprint

Delete dormant accounts and review the public visibility of your social profiles.

8. VPN

Use a VPN to cut tracking and bypass restrictions, but don’t treat it as a magic bullet. Combined with the other steps, the VPN becomes part of a reliable protection stack.