You do not need to be a hacker or go off the grid to protect your privacy online. A handful of simple habits stop the overwhelming majority of problems, and most of them take only a few minutes to set up. At Teck JB we believe privacy is about control, not paranoia, and that anyone can take charge of their digital life with the right basics. Here is the starter guide we wish everyone would follow.
Why online privacy matters for everyone
It is tempting to think privacy only matters if you have something to hide, but that misses the point entirely. Your personal data, from passwords and bank details to your location and browsing habits, is valuable to criminals, advertisers, and data brokers alike. A single leaked password can unlock dozens of accounts, and a pattern of small data leaks can build a detailed profile of your life. Protecting your privacy is really about protecting your money, your identity, and your peace of mind. The habits below are the digital equivalent of locking your front door.
1. Use strong, unique passwords
Reusing the same password everywhere is the single biggest risk most people take online. If just one website is breached, criminals will try that same password on your email, your bank, and your social accounts in a technique called credential stuffing. The fix is simple: use a password manager to create and store a long, unique password for every account. You only need to remember one strong master password, and the manager handles the rest, filling in logins automatically and warning you about reused or breached passwords.
2. Turn on two-factor authentication
Two-factor authentication, or 2FA, adds a second step when you log in, such as a code from an app or a prompt on your phone. Even if someone steals your password, they cannot get in without that second factor. Enable it on your most important accounts first: email, banking, and social media. An authenticator app is more secure than codes sent by text message, and many of the best free apps include a solid authenticator you can set up in minutes.
3. Be careful what you share
Every quiz, app, and sign-up form is hungry for your data, and once it is out there, you cannot easily take it back. Share only what is genuinely necessary, and be sceptical of services that demand far more information than they need to function. Review the privacy settings on your social accounts and limit who can see your posts, your location, and your personal details. Oversharing on social media also feeds scammers, who use the details you post to make their attacks more convincing.
4. Keep your software updated
Software updates are not just about new features; they patch the security holes that criminals exploit. Turn on automatic updates for your phone, computer, and web browser so you are always protected against the latest known threats. An out-of-date device is one of the easiest targets there is. This is also why the length of software support matters so much when choosing a phone, a point we stress in our iPhone versus Android guide.
5. Watch out for phishing
Most data theft does not begin with sophisticated hacking; it begins with a convincing fake message that tricks you into handing over your details. Never click links in unexpected emails or texts, and never enter a password on a page you reached by clicking such a link. When in doubt, type the website address yourself or use the official app. Phishing is so common and so important that we devoted an entire guide to it: learn exactly how to spot and avoid phishing scams and you will neutralise the most common threat online.
6. Use a secure browser and consider a VPN
Choose a web browser with strong privacy defaults and keep its security features switched on. On public Wi-Fi, such as in cafes, airports, and hotels, consider using a reputable VPN to encrypt your connection and shield it from snoops on the same network. Be cautious with free VPNs, though: if a service is free, your data may be the product being sold, which defeats the entire purpose. A trustworthy paid VPN or a well-reviewed free tier from a reputable company is the safer choice.
7. Review your app permissions
Apps frequently request access to your location, contacts, camera, and microphone that they do not actually need to do their job. On your phone, open the privacy settings and review what each app can access, then revoke anything that seems excessive. A flashlight app has no business reading your contacts, and a simple game does not need your precise location. Doing this once, and rechecking every few months, dramatically reduces how much of your data is quietly collected.
8. Understand how AI uses your data
Artificial intelligence is increasingly woven into the apps and services you use every day, and many AI tools learn from the data you feed them. Be thoughtful about what you type into chatbots and AI assistants, and avoid sharing sensitive personal, financial, or confidential information with them unless you understand how that data is stored and used. If you are curious about how these systems actually work, our explainer on what AI is and how it is changing technology will help you use them more wisely and safely.
9. Lock down your devices
Your privacy is only as strong as the locks on your devices. Use a strong PIN, password, or biometric lock on your phone and computer, and set them to lock automatically after a short period of inactivity. Enable device encryption, which is on by default on most modern phones, so that your data is unreadable if the device is lost or stolen. Knowing how to remotely locate, lock, or wipe a lost device is also worth setting up before you ever need it.
10. Clean up your digital footprint
Over the years you accumulate dozens of accounts you no longer use, each one a small risk if it is ever breached. Periodically delete old accounts you no longer need, unsubscribe from services you have abandoned, and remove apps you stopped using. Search for your own name occasionally to see what information about you is publicly visible, and request removal where you can. A smaller digital footprint is simply a smaller target.
Take control of your social media privacy
Social media is where most people leak the most personal information without realising it. Every platform has detailed privacy settings, yet the defaults are usually tuned for sharing as widely as possible, because that benefits the company rather than you. Set aside twenty minutes to go through each account you use and tighten the settings: limit your posts to friends or followers you actually know, turn off location tagging, restrict who can find you by phone number or email, and review which third-party apps you have connected over the years. Disconnect anything you no longer use. Be especially careful with old posts and photos, which can reveal far more about your routines, relationships, and whereabouts than you intend.
Protecting your family’s privacy
Privacy is a household matter, not just an individual one. Talk to family members, especially children and older relatives, about the basics of strong passwords, two-factor authentication, and recognising suspicious messages. Set up parental controls for younger users, and help less confident relatives configure their devices safely, since attackers often target the least protected person in a family to reach the others. Sharing a password manager family plan can make good habits effortless for everyone. A little guidance goes a long way, and it protects not just each person but the whole connected household.
What to do if your data is breached
Even careful people get caught up in data breaches when a company they use is hacked, and it is worth knowing how to respond calmly. If you learn that an account or service has been breached, change that password immediately and change it anywhere else you reused it, which is the best argument for never reusing passwords in the first place. Turn on two-factor authentication if you had not already, watch your bank and card statements for unusual activity, and be alert for phishing messages that try to exploit the breach. Many password managers and free online tools can tell you whether your email address has appeared in known breaches, so you can act before criminals do.
The bottom line
Privacy is not about hiding; it is about staying in control of your own information. Start with the first three steps today, using unique passwords, turning on two-factor authentication, and being careful what you share, and you will already be safer than most people online. Build the rest of these habits over time, and protecting your privacy becomes second nature rather than a chore. For more practical, jargon-free security advice, keep reading Teck JB.
Related reading from Teck JB
Keep going: learn how to avoid phishing scams, equip yourself with the best free apps including a password manager and authenticator, and understand how AI handles your data. For more guides like this, visit the Teck JB homepage.