What privacy actually means in 2025
Privacy is not the same as secrecy. Secrecy is keeping specific information hidden from everyone; privacy is the ability to control who gets to see what about you, in what context, and for what purpose. You share your medical history with your doctor but not with your employer, your home address with the delivery service but not with the website you are browsing, your face with the people you are talking to but not with the camera in the train station. Privacy is the set of boundaries around that sharing, and it has been under sustained pressure for two decades as more of life has moved online.
The current landscape in 2025 is mixed. On the positive side, regulation has caught up: the European Union's GDPR (in force since 2018), the California Consumer Privacy Act (in force since 2020), and similar laws in Brazil, India, and a growing list of jurisdictions give individuals legal rights to access, correct, and delete their data. On the negative side, the surveillance advertising industry is more sophisticated than ever, data brokers aggregate and sell detailed profiles of hundreds of millions of people, and the average smartphone app exfiltrates data to dozens of third-party trackers without the user's knowledge or meaningful consent.
Privacy is not a binary state. You will not achieve privacy any more than you achieve health. You make choices that move you along a spectrum, trading convenience for control at every step. The goal is to make those choices deliberately, knowing what you are giving up and what you are getting, rather than having them made for you by default settings designed to maximize someone else's revenue.
Your threat model: who's actually after your data
The first step in any privacy practice is figuring out what you are protecting and from whom. Security professionals call this a threat model. The threats fall into roughly four categories. The first is the surveillance advertising industry, which wants to know what you browse, what you buy, and where you go, so that it can sell targeted ad inventory. This threat is pervasive but usually not personally damaging; it is the slow erosion of your ability to make decisions without influence.
The second is data brokers and aggregators, who buy data from apps, websites, and public records, and sell it to anyone who pays, including employers, landlords, insurers, and law enforcement. This threat is more personal: a denied loan or a rejected job application may trace back to a data broker profile you have never seen. The third is malicious hackers, who want credentials, financial data, or leverage for extortion. This threat is acute and can be catastrophic. The fourth is intimate threats: stalkers, abusive partners, or people you know personally who want to monitor or harass you.
Your defenses should be proportional to your threats. Most people do not need to defend against state-level surveillance, which is essentially impossible to fully evade anyway. Most people do need to defend against credential theft, because that is the most common cause of identity theft and financial loss. People in specific situations — public figures, journalists, domestic abuse survivors, activists — face elevated threats and need stronger defenses, up to and including hardware isolation and operational security practices borrowed from intelligence work.
The browser as the main leak
Your web browser is the single largest source of personal data leakage in most people's digital lives. Every website you visit sees your IP address (which reveals your approximate location and internet service provider), your user agent string (which reveals your operating system and browser version), and a set of HTTP headers that together can identify you uniquely among millions of users. This is called device fingerprinting, and it works even without cookies, because the combination of screen size, fonts, timezone, language, and hardware characteristics is hard to fake and stable over time.
The defense layers, in order of effectiveness, are: use a browser with built-in anti-tracking (Firefox with Enhanced Tracking Protection, or Brave, or Safari with Intelligent Tracking Prevention, all of which block third-party cookies and known trackers by default); install the uBlock Origin extension, which blocks ads, trackers, and malicious domains at the network level; and consider the Privacy Badger extension for tracker blocking that uBlock does not catch. Avoid installing too many privacy extensions; they increase your fingerprint uniqueness and can conflict with each other.
For sensitive browsing — looking up medical information, researching a sensitive topic, logging into a financial account from an untrusted network — use a private window (called Incognito in Chrome, Private Browsing in Firefox and Safari). A private window does not make you anonymous to the websites you visit, but it does prevent the browser from saving history, cookies, and form data, which protects you from other users of the same device. For true anonymity, use the Tor Browser, which routes traffic through three relays and is the strongest practical defense against network-level surveillance. Tor is slower than a regular browser and some sites block it, but for the use cases it is designed for, it is unmatched.
Email, phone, and account hygiene
Your email address is the single most valuable piece of identifying information you have, because it is the recovery path for almost every other account. Whoever controls your email can reset the password on your bank, your social media, your password manager, and your cloud storage. Defending your email account is therefore the highest privacy priority. Use a strong, unique password stored in a password manager. Enable multi-factor authentication, preferably with a hardware key (YubiKey, Titan) or a TOTP app, not with SMS, which can be intercepted via SIM swap attacks.
Email aliases are a powerful privacy tool. Instead of giving every website your real email address, give them an alias that forwards to your real inbox. If the alias starts receiving spam, you disable it. If the service is breached, the attackers get an alias that does not link back to your real identity. Services like SimpleLogin, AnonAddy (now addy.io), and Apple's Hide My Email provide this for free or cheap. Firefox Relay offers email aliases and phone number masking. The cost is small; the benefit is that your real email address stays out of the databases that get breached.
Your phone number is the second most valuable piece of identifying information, because it is used for SMS-based two-factor authentication (which is worse than TOTP but better than nothing) and for account recovery. Phone numbers are also publicly linkable to identities through data brokers. Treat your phone number the way you treat your email: do not give it to websites that do not need it for a legitimate purpose. Use a secondary number (Google Voice, MySudo, a cheap prepaid SIM) for services that demand a phone number but do not need to reach you. Never use SMS for high-value accounts if a hardware key or TOTP option is available.
Phones, apps, and permissions
Your smartphone is a sensor platform that knows where you are, who you talk to, what you say, what you photograph, and how fast you are moving. Every app you install potentially has access to some subset of this data, depending on the permissions you grant. The default on both iOS and Android has improved significantly: apps now ask for permission at the time of use rather than at install, and both platforms have rolled out privacy labels and permission dashboards. But the defaults still favor the app developer over the user.
Audit your app permissions regularly. On iOS, go to Settings, Privacy & Security, and work through each permission type, revoking access from apps that do not need it. On Android, go to Settings, Privacy, Permission manager, and do the same. An app that requested location access for a feature you no longer use should have that access revoked. A flashlight app has no business requesting your contacts or microphone. The principle is least privilege: give each app the minimum set of permissions it needs to function, and nothing more.
Beware of apps from companies whose business model is advertising. Free apps that do not have an obvious revenue source are usually monetizing your data, often in ways that are not obvious from the privacy policy. A weather app that requests location, advertising identifiers, and analytics SDKs is not just showing you the weather; it is building a profile of your movements to sell to data brokers. Paid apps from independent developers are usually a better privacy bet than free apps from large ad-supported companies. When in doubt, prefer the web version of a service to the app version; the web version runs in a sandbox with limited permissions, while the app runs with whatever permissions you granted it.
What to do when something goes wrong
Despite your best efforts, you will have data breaches. Your email will appear in a leak; your credit card will be used fraudulently; an account will be compromised. The question is not whether this will happen but how you respond. The first step is detection: sign up for breach notifications at Have I Been Pwned, set up transaction alerts on your bank and credit cards, and enable login notifications on your important accounts. The sooner you know about a problem, the less damage it does.
When an account is compromised, change its password immediately (using your password manager to generate a new strong one), revoke all active sessions, and review recent activity for changes you did not make. If the compromised account is your email, treat it as a critical incident: change the password, revoke sessions, enable or reset MFA, and check the forwarding rules, because attackers often set up forwarding to maintain access after the password is changed. Then check every other account that uses the same password (you should have none, but check anyway) and change those too.
For identity theft — someone opening accounts in your name — the response is more involved. Place a fraud alert or credit freeze with the major credit bureaus (Equifax, Experian, TransUnion in the US; equivalent agencies in other countries). A credit freeze prevents new accounts from being opened in your name, which is the most effective defense. File a report with the police and with the relevant consumer protection agency (the FTC in the US, the ICO in the UK). Document everything: the more evidence you have, the easier it is to dispute fraudulent charges and accounts. Recovery from identity theft takes months; the faster you start, the sooner it ends.