Privacy Guides

16813 readers
23 users here now

In the digital age, protecting your personal information might seem like an impossible task. We’re here to help.

This is a community for sharing news about privacy, posting information about cool privacy tools and services, and getting advice about your privacy journey.


You can subscribe to this community from any Kbin or Lemmy instance:

Learn more...


Check out our website at privacyguides.org before asking your questions here. We've tried answering the common questions and recommendations there!

Want to get involved? The website is open-source on GitHub, and your help would be appreciated!


This community is the "official" Privacy Guides community on Lemmy, which can be verified here. Other "Privacy Guides" communities on other Lemmy servers are not moderated by this team or associated with the website.


Moderation Rules:

  1. We prefer posting about open-source software whenever possible.
  2. This is not the place for self-promotion if you are not listed on privacyguides.org. If you want to be listed, make a suggestion on our forum first.
  3. No soliciting engagement: Don't ask for upvotes, follows, etc.
  4. Surveys, Fundraising, and Petitions must be pre-approved by the mod team.
  5. Be civil, no violence, hate speech. Assume people here are posting in good faith.
  6. Don't repost topics which have already been covered here.
  7. News posts must be related to privacy and security, and your post title must match the article headline exactly. Do not editorialize titles, you can post your opinions in the post body or a comment.
  8. Memes/images/video posts that could be summarized as text explanations should not be posted. Infographics and conference talks from reputable sources are acceptable.
  9. No help vampires: This is not a tech support subreddit, don't abuse our community's willingness to help. Questions related to privacy, security or privacy/security related software and their configurations are acceptable.
  10. No misinformation: Extraordinary claims must be matched with evidence.
  11. Do not post about VPNs or cryptocurrencies which are not listed on privacyguides.org. See Rule 2 for info on adding new recommendations to the website.
  12. General guides or software lists are not permitted. Original sources and research about specific topics are allowed as long as they are high quality and factual. We are not providing a platform for poorly-vetted, out-of-date or conflicting recommendations.

Additional Resources:

founded 1 year ago
MODERATORS
1
2
 
 

With Reddit's encroaching IPO and their poorly planned API changes, we need a place to keep up with privacy topics that isn't tied to an anti-privacy, centralized ~~sinking ship~~ site.

Our forum running Discourse has been a great place to discuss website changes and answer questions, but it doesn't quite provide the same experience as Reddit does for things like sharing news, so we're trying something new:

!privacyguides@lemmy.one is our new ActivityPub-enabled community for sharing links and other information from the privacy and security realm. Welcome!

We're going to be trying out posting to this community for a few months to decide if we want this to replace or coexist with the r/privacyguides subreddit, so we'll see how it goes. If you want this to succeed, stay active! Our mission is to become the most inviting and friendly place to discuss privacy and security on the fediverse 😎

How do I join the Privacy Guides community on Lemmy?

You can join a few different ways:

  • On Kbin.social, a Lemmy alternative with a more Reddit-like UI and instant registrations. I didn't like Kbin from a hosting perspective because of some missing features, but for just browsing communities and joining ours it's a great option: https://kbin.social/m/privacyguides@lemmy.one
  • On Lemmy.one, this is the server which hosts the Privacy Guides community on Lemmy, and also the server that I admin myself. You are welcome to create an account, but it might take up to 24 hours for your account to be approved.
  • On another Lemmy instance: You can join the community by entering [!privacyguides@lemmy.one](/c/privacyguides@lemmy.one) in the search box on your instance. There are plenty of servers you could join, or you could host your own relatively easily if you're familiar with self-hosting.
  • On another ActivityPub instance: You can also probably join by entering @privacyguides@lemmy.one or https://lemmy.one/c/privacyguides in the search box of the ActivityPub software you use, although Mastodon does not seem to pull in posts from Lemmy communities properly in my limited testing, so YMMV.

Verification post: https://www.reddit.com/r/PrivacyGuides/comments/13x7oe3/who_wants_to_try_out_lemmy_privacyguideslemmyone/

3
 
 

cross-posted from: https://lemmy.zip/post/26286036

A guide to keeping your plans private through every step of an abortion in any state, including Florida and South Dakota

4
 
 

404 Media, along with Haaretz, Notus, and Krebs On Security recently reported on a company that captures smartphone location data from a variety of sources and collates that data into an easy-to-use tool to track devices’ (and, by proxy, individuals’) locations. The dangers that this tool presents are especially grave for those traveling to or from out-of-state reproductive health clinics, places of worship, and the border.

The tool, called Locate X, is run by a company called Babel Street. Locate X is designed for law enforcement, but an investigator working with Atlas Privacy, a data removal service, was able to gain access to Locate X by simply asserting that they planned to work with law enforcement in the future.

With an incoming administration adversarial to those most at risk from location tracking using tools like Locate X, the time is ripe to bolster our digital defenses. Now more than ever, attorneys general in states hostile to reproductive choice will be emboldened to use every tool at their disposal to incriminate those exerting their bodily autonomy. Locate X is a powerful tool they can use to do this. So here are some timely tips to help protect your location privacy.

5
 
 
  • PayPal to Share Shopping Details
  • LinkedIn Opts You In for AI Data Sharing
  • 23andMe May Sell Your DNA Data
6
 
 

I didn't know where else to go, so if this is not the place, please let me know and I'll delete this.

I'm ready to port over to JMP.chat, and was wondering if anyone could share a referral link/code for me to avoid the 15 dollars activation of the number. I would really appreciate it.

7
 
 

First and foremost, I'll get this out of the way: I abhor all commercial social media. I don't trust them, I know users are the product, and - ultimately, I feel they're nothing but a cancer on society.

But, I also have to acknowledge that, for one or two use cases at least, they seem pretty unavoidable.

For me, that one use case is Facebook Marketplace. Here in Australia, there's simply no better alternative if you want to reach a large number of potentially interested buyers (or even buy some stuff yourself). The supermarket noticeboard is no more; the Trading Post was bought long ago and died on the vine; and Gumtree has devolved into a cesspool of nothing but scammers and fuckwits.

So, I use FB Marketplace. My FB account isn't in my name, uses a throwaway email address, and has no followers or friends. It's only a member of the local buy/sell groups that I'm interested in, and it performs no "social" activities (posts, likes, etc) at all.

Until now, I generally only use FB marketplace with a "clean", dedicated browser on my computer, running in private mode and via a VPN. But, it means I frequently miss messages from interested parties when I'm away from my computer.

I also sometimes use the mbasic.facebook.com site from a private Firefox tab on my iPhone, but FB has just started telling me I need to use Chrome (no. fucking. way.) or Safari (maaaaaybeeeee?) after October 28th.

When I was on Android, there were a few wrapper apps that I was able to use but, so far, my searches for an equivalent on iOS have turned up nothing.

So, knowing full well this may lead to nowhere, I thought I'd ask this community: does anyone have a good, privacy-friendly way to use FB on iOS?

Thanks in advance for any useful tips or suggestions.

8
 
 

With the looming presidential election, a United States Supreme Court majority that is hostile to civil rights, and a conservative effort to rollback AI safeguards, strong state privacy laws have never been more important.

But late last month, efforts to pass a federal comprehensive privacy law died in committee, leaving the future of privacy in the US unclear. Who that future serves largely rests on one crucial issue: the preemption of state law.

On one side, the biggest names in technology are trying to use their might to force Congress to override crucial state-level privacy laws that have protected people for years.

On the other side is the American Civil Liberties Union and 55 other organizations. We explained in our own letter to Congress how a federal bill that preempts state law would leave millions with fewer rights than they had before. It would also forbid state legislatures from passing stronger protections in the future, smothering progress for generations to come.

Preemption has long been the tech industry’s holy grail. But few know its history. It turns out, Big Tech is pulling straight from the toxic strategy that Big Tobacco used in the 1990s. Back then, Big Tobacco invented the “Accommodation Program,” a national campaign ultimately aimed at federal preemption of indoor smoking laws.

Phillip Morris and others in the tobacco industry implemented a three-step strategy which is only known through documents made public in litigation years later. Those documents reveal the inner workings of a nefarious corporate influence machine designed to quietly snuff out a democratic movement that threatened their profits. And now Big Tech is trying to do the same.

But it’s not too late. We can ensure our civil rights and civil liberties are protected in the digital age. But to defeat Big Tech’s strategy, first we must understand it.

9
 
 

Since it looks like Firefox might not be a good option for the long haul due to some disappointing decisions from its management, I'm on the lookout for privacy-friendly alternatives. I came across Cromite, which is based on Chromium and has an ad blocker. Has anyone tried it? From what I've seen, the built-in ad blocker seems pretty basic and not very customizable. Still, I think any alternative we choose should be based on Chromium, especially if we don’t want to wait ages for Ladybird.

10
 
 

cross-posted from: https://links.hackliberty.org/post/2932106

Image Transcription:

WHAT WILL A CASHLESS SOCIETY MEAN?

THE PROS

CONVENIENCE — THERE WILL NO LONGER BE ANY NEED TO CARRY CASH AROUND

THE CONS

EVERY TRANSACTION YOU MAKE WILL BE TRACKED YOUR SPENDING HABITS CAN BE LINKED TO YOUR CARBON FOOTPRINT

YOU WILL ONLY BE PERMITTED TO SPEND ON THINGS THE GOVERNMENT APPROVES OF. THINGS THAT ARE DEEMED TO BE LUXURIES — MEAT, FUEL, TRAVEL — CAN BE RESTRICTED

YOUR MONEY CAN BE PROGRAMMED WITH AN EXPIRY DATE — IF YOU DON’T SPEND IT BY A CERTAIN DATE, YOU'LL LOSE IT

THERE WILL BE NO ‘BLACK’ ECONOMY. IT WILL NOT BE POSSIBLE TO AVOID TAX, BUT THEN YOU WILL NOT BE ABLE TO GIVE POCKET MONEY TO CHILDREN OR GRANDCHILDREN AND NEITHER WILL YOU BE ABLE TO BORROW OR LEND MONEY TO FRIENDS WITHOUT THAT BEING TAXED BY THE GOVERNMENT

PARKING AND SPEEDING FINES WILL BE TAKEN AT SOURCE, WITHOUT THE POSSIBILITY OF CHALLENGE AND POSSIBLY EVEN WITHOUT YOUR KNOWLEDGE

IF YOU PROTEST THE ACTIONS OF THE GOVERNMENT, YOUR MONEY CAN BE SWITCHED OFF. IF YOU THINK THAT’S UNLIKELY, IT’S ALREADY HAPPENED TO TENS OF THOUSANDS OF CANADIANS WHEN THEY PROTESTED AND IT ALSO HAPPENED TO A BRITISH JOURNALIST

A CASHLESS SOCIETY MEANS THE END OF HUMAN FREEDOM

IF YOU WANT THAT, DO NOTHING

IF YOU DON'T, THE FIRST THING YOU MUST DO IS RESPOND TO THE GOVERNMENT'S PROPOSAL ON DIGITAL ID, UPON WHICH A CASHLESS SOCIETY MUST BE BASED

https://www.gov.uk/government/consultations/draft-legislation-to-help-more-people-prove-their- identity-online/consultation-on-draft-legislation-to-support-identity-verificat

Image Credit: Brett Scott

11
 
 

Another month, another attempt: Even though Hungary had to cancel the latest EU Council's vote on the Child Sexual Abuse (CSA) Regulation in June 2024 because there was no majority among member states, it tried again this Wednesday - without success. The tipping point was that the Dutch secret service clearly issued their opinion on the enormous threat to everybody's security should end-to-end encryption be weakened. Encryption is paramount for the digital resilience in Europe.

12
 
 

Mozilla Firefox itself and all Mozilla Firefox forks should be updated accordingly once a new build is released.

13
 
 

Depending on where you're based, you'll find PayPal's new data-sharing option under a different name. Remember, you may not see this at all if you're based in a country that doesn't allow it.

If you're in the US, you should head to your profile Settings and tap on Data & privacy. Under Manage shared info, click on Personalized shopping. You should see the option enabled by default. Toggle off the button at the right to opt-out.

If you are in the UK like me, you'll see something different after you head to your profile Settings and tap on Data & privacy.

Under Manage your privacy settings, here you'll see an Interest-based marketing tab – click on it. At this point, two options will appear: Interest-based marketing on PayPal and Internet-based marketing on your accounts. You have to tap on each of these and toggle off the button at the right to opt-out. These instructions can also apply if you're based in the EU.

14
 
 

@privacyguides collaborators, it’s time to review the recommendation of Firefox as a good browser option…

From: @sarahjamielewis
https://mastodon.social/@sarahjamielewis/113245689258934184

15
 
 

cross-posted from: https://lemmy.zip/post/23512234

A new Federal Trade Commission (FTC) report confirms what EFF has been warning about for years: tech giants are widely harvesting and sharing your personal information to fuel their online behavioral advertising businesses.

Report: https://www.ftc.gov/news-events/news/press-releases/2024/09/ftc-staff-report-finds-large-social-media-video-streaming-companies-have-engaged-vast-surveillance

16
 
 

Tails will be incorporated “into the Tor Project’s structure,” which will allow for “easier collaboration, better sustainability, reduced overhead, and expanded training and outreach programs to counter a larger number of digital threats,” according to a blog post published today by the Tor Project

17
 
 

LinkedIn users in the U.S. — but not the EU, EEA, or Switzerland, likely due to those regions’ data privacy rules — have an opt-out toggle in their settings screen disclosing that LinkedIn scrapes personal data to train “content creation AI models.” The toggle isn’t new. But, as first reported by 404 Media, LinkedIn initially didn’t refresh its privacy policy to reflect the data use.

The terms of service have now been updated, but ordinarily that occurs well before a big change like using user data for a new purpose like this. The idea is it gives users an option to make account changes or leave the platform if they don’t like the changes. Not this time, it seems.

To opt out of LinkedIn’s data scraping, head to the “Data Privacy” section of the LinkedIn settings menu on desktop, click “Data for Generative AI improvement,” then toggle off the “Use my data for training content creation AI models” option. You can also attempt to opt out more comprehensively via this form, but LinkedIn notes that any opt-out won’t affect training that’s already taken place.

The nonprofit Open Rights Group (ORG) has called on the Information Commissioner’s Office (ICO), the U.K.’s independent regulator for data protection rights, to investigate LinkedIn and other social networks that train on user data by default.

“LinkedIn is the latest social media company found to be processing our data without asking for consent,” Mariano delli Santi, ORG’s legal and policy officer, said in a statement. “The opt-out model proves once again to be wholly inadequate to protect our rights: the public cannot be expected to monitor and chase every single online company that decides to use our data to train AI. Opt-in consent isn’t only legally mandated, but a common-sense requirement.”

18
 
 

This is straightforward with browser addons like uBlock Origin where you can add and choose blocklists, but I did searches for doing so system wide and using a VPN but didn’t find clear answers. I could use a DNS service that provides blocklists but isn’t it best practice to leave DNS to the VPN provider? I looked up blocklists and VPNs but didn’t find relevant results.

On Android, I didn’t find any apps that let you filter blocklists and using your own VPN other than Rethink, but the blocklists feature requires using Rethink’s DNS.

So what’s the best way to filter ads and trackers on both 3rd party apps and on OS’s like Android (specific Samsung phones) while still using a VPN?

19
 
 

I've had a Galaxy S22+ for 2 years and still want to use it. When I look up how to maximize privacy on Android, many results say to install custom ROMs which I can't since its a US model and the bootloader is locked. I just want to minimize tracking and sharing of personal information. I could use a firewall app like RethinkDNS to block trackers, but could I completely block tracking from Google and Samsung? Are there any lists of packages to uninstall to improve privacy? (I've used ADB to remove a bunch of bloatware. Ex: pm uninstall -k --user 0 com.samsung.android.arzone)

20
 
 

Hi, my wife decided to create a new email for our newborn daughter which my wife would use to send updates to our relatives about what is going on in our daughter life. My wife is using gmail, I do use proton. She has created a new gmail account but I have asked her to reconsider and to create a new account on proton privacy wise. What arguments would you use for my case? Thanks.

21
26
submitted 2 months ago* (last edited 2 months ago) by BrikoX@lemmy.zip to c/privacyguides@lemmy.one
 
 

A privacy flaw in WhatsApp, an instant messenger with over 2 billion users worldwide, is being exploited by attackers to bypass the app's "View once" feature and view messages again.

22
23
24
 
 

publication croisée depuis : https://lemmy.pierre-couy.fr/post/653426

This is a guide I wrote for Immich's documentation. It features some Immich specific parts, but should be quite easy to adapt to other use cases.

It is also possible (and not technically hard) to self-host a protomaps release, but this would require 100GB+ of disk space (which I can't spare right now). The main advantages of this guide over hosting a full tile server are :

  • it's a single nginx config file to deploy
  • it saves you some storage space since you're only hosting tiles you've previously viewed. You can also tweak the maximum cache size to your needs
  • it is easy to configure a trade-off between map freshness and privacy by tweaking the cache expiration delay

If you try to follow it, please send me some feedback on the content and the wording, so I can improve it

25
 
 

For Android users seeking a privacy-focused browser, Privacy Guides recommends Mull:

Mull is a privacy oriented and deblobbed Android browser based on Firefox. Compared to Firefox, it offers much greater fingerprinting protection out of the box, and disables JavaScript Just-in-Time (JIT) compilation for enhanced security. It also removes all proprietary elements from Firefox, such as replacing Google Play Services references.

Mull enables many features upstreamed by the Tor uplift project using preferences from Arkenfox. Proprietary blobs are removed from Mozilla's code using the scripts developed for Fennec F-Droid.

view more: next ›