A list of privacy-respecting alternatives to apps and services that track you around.
First and foremost, understand that the point of this list is to improve your privacy, and not to make you "disappear" online. If you're exposed to a higher threat model, you should look elsewhere, like: privacytools.io or /r/privacy to name a few.
Anyway, as you're likely aware, tech giants like Google, Facebook, Amazon and many others follow you around the web and use your data to profile, lock you into a "Filter Bubble", and worst of all, sell all your moves to advertisers and other third-parties.
In the following list, you'll find a few privacy-respecting alternatives to services, apps and devices I use the most. Most of them are open source, or at the very least companies that have my personal trust.
It's worth reminding: Choose whatever suits you better and consider your options, because there’s no warranty here. If it breaks, you get to keep both parts. ?
1.1. Mozilla Firefox
1.2. Brave
7.1. Clients
7.2. Alternatives
With a few tweaks and extensions, Firefox is known as one of the most secure web browsers.
Brave automatically block ads and trackers, has built-in support for HTTPS Everywhere and fingerprinting protection.
Brave is built on top of Chromium, so it supports extensions too. You should be able to find some of the extensions—or at least good alternatives to the ones I listed in the Mozilla Firefox section.
This is something I really recommend you invest your money and time on. Why? Because it will protect all your devices on your network, especially those you cannot install extensions or tweaks, like your Smart TV, Streaming Boxes, Smart Speakers, Smart Fridges (lol), etc.
There are mainly 2 options I recommend:
Buy a Raspberry Pi if you don't have one already laying around, and install Pi-Hole on it. It only requires a few commands to get it running.
If you want to save the trouble from messing around with code and maintaining everything up-to-date, subscribe to NextDNS. It's basically a Pi-hole in the Cloud, with a ton more of features — that's what I use BUT it goes without saying you'll be trusting a third-party here.
From Pi-hole's documentation:
Recently, more and more small (and not so small) DNS upstream providers have appeared on the market, advertising free and private DNS service, but how can you know that they keep their promises? Right, you can't.
Furthermore, from the point of an attacker, the DNS servers of larger providers are very worthwhile targets, as they only need to poison one DNS server, but millions of users might be affected. Instead of your bank's actual IP address, you could be sent to a phishing site hosted on some island. This scenario has already happened and it isn't unlikely to happen again...
When you operate your own (tiny) recursive DNS server, then the likeliness of getting affected by such an attack is greatly reduced.
Basically, when you type a URL in your browser (e.g. example.com
) and then hit return, your DNS resolver will essentially try to figure out a few things:
.com
?
.com
..com
and ask: Who is handling example.com
?
example.com
.All of this happens in just a fraction of a second.
With Unbound, you can run your own validating, recursive, and caching DNS resolver locally in your Raspberry Pi, and alongside Pi-Hole. It's a great alternative to your ISP or a third-party resolver like Cloudflare's 1.1.1.1
.
Even after setting up some ad blockers, extensions and taking the other privacy measures, companies and your own ISP can still snoop on your traffic.
Though, about your ISP, they might very well be your worst enemy depending on where you live: They know all yours steps and many also sell your stuff to advertisers and who knows what else. For instance, this is a common and regulated practice in the U.S. Go figure…
And that's where a good VPN comes in for help. VPNs are mainly used to circumvent geo-restrictions and censorship, but another benefit of using them is that you'll be assigned a shared IP, so the websites you visit cannot see your real and private IP. By doing that, profiling you becomes significantly harder.
Choosing a good VPN is all about trust. Although some of them are audited, you cannot be 100% sure that they will not log your activity, even if they explicitly say they won't. And at the end of the day, you'll be basically trading a party (your ISP) by another (a VPN service)—it's up to you to decide who you trust the most and what you're trying to protect yourself from.
One very valuable advice: DO NEVER use a free VPN service. The chances they will mine your data the way it pleases is higher than you can imagine. In fact, if you were to use a free VPN, I'd just say you'd be better off not using anything.
The following are considered respectable services that have a solid reputation:
For a comprehensive list of other VPN services, take a good look at That One Privacy Site.
There are many alternatives out there but my two favorites are:
Youtube is a tricky one to be replaced, and its alternatives are not great. Still, there's a way to a improve things a bit by using a third-party client.
~Invidio.us is an open source front-end to YouTube with playlists support, ability to download videos, and no ads or trackers (mostly). I say mostly because Google will still log your IP address while you watch a video, since they will still come from their server.~ **edit: Deprecated, you may find some instances live but this project is slowly phasing out :(
If you asked me a few years back, I'd blindly suggest Fastmail as it's the most user friendly email provider you can find while compared to Gmail but… Australia approved this bill that allows the government to demand tech companies to create a back door to users’ data, so yeah… No-no.
Thankfully, there are many alternatives but I'm not going through each of the following services because it really depends on what exactly you need feature-wise and the level of security you're looking for (as secure as an email can be anyway). Comparing features and limitations is my best advice here. E.g. Some providers support the IMAP protocol, others you have to stick to their own apps for enhanced security; Some you have to stick to their domain names, and others you can use your own.
This is a complicated topic depending on what you do for a living, as your company may require you to use Dropbox. So I'll split this section in two:
I know it's too tempting to use any of these services as a way to consume your news, but they're generally aggressive at building a profile based on what you click and interact to. Aside from that, these apps are pretty good at keeping you on a "Filter Bubble" by sorting entries by whatever the machine learning thinks you'll like better. A good old-fashioned RSS service is usually a fantastic antidote to that.