My Digital Privacy & Security Checklist
Accounts
- Password manager used for all accounts
- No reused passwords
- 2FA enabled on important accounts
- Recovery codes saved safely
- Old accounts deleted or secured
- Main email has strong password
- 2FA enabled
- Recovery options checked
- Forwarding rules checked
- Login history checked
Phone
- Unused apps removed
- App permissions reviewed
- Location access limited
- Camera/microphone access limited
- Device updated
- Lock screen enabled
Browser
- uBlock Origin installed
- Unused extensions removed
- Third-party cookies blocked
- Separate profiles used
- Privacy-friendly search engine tested
Home Lab
- SSH key login used
- Root SSH disabled
- Admin tools private through Tailscale
- Public services reviewed
- Backups tested
- Secrets not stored in wiki
- Docker ports checked
Social Media
- No private addresses posted
- No real-time travel details posted
- No work screenshots posted
- No logs with tokens/IPs posted
- Mastodon admin account protected
Involvement
- Follow Privacy Guides
- Follow EFF Surveillance Self-Defense
- Follow EDRi
- Join one privacy/security community
- Help one person improve security