| Use briar [1] for online+offline end-to-end encrypted messaging. Use LineageOS [2] without gapps (aka without Google Play Services) and get a device that is officially supported with current LineageOS version. Don't use any XDA developer builds, because they're known to be infected with malware. Obviously don't use Meta or Google apps, because that's where the backdoors are for governments. Don't use WhatsApp, don't use Telegram, don't use Threema. They're compromised. Use AppWarden [3] to enable/disable/verify the usage of known trackers in your apps. Use NetGuard [4] as an Android firewall. Use F-Droid [5] and Fennec builds [6], with uBlock Origin to protect your smartphone from malvertisements. Never synchronize your contacts, block contacts access for all Apps; and make sure you don't use their real names. Contacts stored on or accessed by SIM cards (e.g. call history) can be downloaded via Class 0 SMS, remotely. If possible, I'd avoid MediaTek based SoCs because their rootkit was leaked a couple years ago and it works still on newer chipsets. I would recommend an "as open source as possible" device, like the Google Pixel devices or the Fairphones. On your Desktop or Laptop machines you should switch to a Linux distro of your choice. The most reasonable secure ones are Arch (not beginner friendly), Manjaro, OpenSUSE - or as a beginner friendly alternative - LinuxMint. Would advise against Debian/Ubuntu though for security reasons (which would include LinuxMint). The Arch maintainers (and therefore Manjaro, too) heavily reduced the attack surface of SUID binaries or LOL binaries that could be abused for privilege escalations and/or remote exploits/persistence etc. [7] [1] https://briarproject.org/ [2] https://wiki.lineageos.org/devices [3] https://gitlab.com/AuroraOSS/AppWarden [4] https://netguard.me [5] https://f-droid.org/ [6] https://f-droid.org/en/packages/org.mozilla.fennec_fdroid/ [7] https://gtfobins.github.io/ edit: clarification of LinuxMint |