Last updated: 18 Mar 24 22:35:29 (UTC)

MPTPRO's Security & Privacy Protocol

  1. Use a VPN for all internet connections (mobile, laptop, servers). I use ProtonVPN.

  2. Use a private DNS service, such as Quad9. Enable it in your routers, VPNs, computers and phones.

  3. Using a unique email alias, username, and password for every account provides the ultimate defense against data breaches and strong privacy protection. In other words, each login should use a username, email and password that you don’t use anywhere else. (Some websites use your email as your username - same rules apply.)

  4. Store passwords, usernames, 2FA codes and other sensitive data in Bitwarden. Let Bitwarden generate long and unique passwords and usernames for you (never make your own passwords nor reuse old ones). Use SimpleLogin to generate unique email addresses (see below).

  5. Turn on Two-Factor Authentication (2FA) for all websites and apps that offer it. Use Bitwarden to store the codes/seeds. And/or use Aegis on your Android phone.

  6. Use a secure email service, such as ProtonMail, for important and sensitive emails. For every other account use an email anonymizer, such as SimpleLogin. It allows you to use a unique email address for each online account.

  7. Get a free voice-over-internet-protocol (VOIP) phone number, such as Google Voice, to use for txt/SMS messages from companies/loyalty programs, and for 2FA security codes (only if they don’t support an Authentication app). Your ‘real’ phone number should only be used for friends, family, business associates or when absolutely necessary. Otherwise, present your VOIP number as your ‘real’ phone number to companies. Since most firms and loyalty programs sell your data this will dramatically reduce the amount of spam calls/SMS you get on your real phone. Also, using a VOIP for 2FA will make ‘man-in-the-middle’ hacks more difficult.

  8. Use a secure messenger, such as Telegram or Signal.

  9. For online storage use a fully encrypted service, such as ProtonDrive. Use the Brave browser. It is based on Chromium and is 90% similar to Chrome. Do NOT store passwords in Brave (or any browser).

  10. Use a non-tracking search engine, such as Brave Search or DuckDuckGo.

  11. Use Cryptomator to create an encrypted folder on your computer to store your really sensitive information and then store it in an encrypted cloud storage.

  12. If you need a domain registrar consider using a privacy and security focused one, such as CloudFlare.

  13. Consider switching to Linux for your laptops/desktop/server (I use System76 running Pop! OS). Microsoft, Mac and Google don’t have the best track record regarding privacy and security.