The Best Personal Privacy and Security Tools for 2019

Bybomber bot

In today‘s digital age, protecting your personal privacy and securing your sensitive information online has never been more important. From data breaches and identity theft to mass surveillance and targeted advertising, there are numerous threats to our digital lives. As a full-stack developer who values privacy, I‘ve made it a priority to research and test various privacy tools to secure my own data and to incorporate privacy best practices into the software I build.

In this comprehensive guide, I‘ll be sharing my top recommendations for the best privacy and security tools of 2019. We‘ll cover VPNs, encrypted messaging apps, password managers, private email services, privacy-focused web browsers, encrypted cloud storage, and more. For each category, I‘ll dive into the technical details, compare popular options, and discuss privacy considerations for developers. I‘ll also explore the latest privacy trends and share some best practices for mitigating data leaks. Let‘s get started!

VPNs: Securing Your Web Traffic

A VPN is an essential privacy tool that encrypts your internet traffic and masks your true IP address by routing your traffic through a secure tunnel to a server operated by the VPN provider. This protects your online activity from snooping by your ISP, hackers, or other entities.

When evaluating VPNs, I prioritize the following features:

  • Strong encryption (256-bit AES or ChaCha20)
  • Well-vetted VPN protocols (OpenVPN, WireGuard, IKEv2)
  • Strict no-logging policy (independently audited)
  • Large server network with good geographic distribution
  • Fast connection speeds (at least 50 Mbps)
  • User-friendly apps for major platforms (Windows, macOS, Linux, iOS, Android)
  • Responsive customer support and knowledgebase

My top VPN picks for 2019 are:

  1. ExpressVPN – With 3,000+ high-speed servers in 94 countries, ExpressVPN is known for its consistently fast speeds, averaging over 80 Mbps in my tests. It uses 256-bit AES encryption and supports OpenVPN, L2TP/IPSec, and IKEv2 protocols. The easy-to-use apps offer useful features like split tunneling and a kill switch. ExpressVPN boasts a verified no-logging policy, 24/7 live chat support, and a 30-day money-back guarantee. Pricing starts at $8.32/month.

  2. NordVPN – NordVPN operates an extensive network of 5,200+ servers across 62 countries. Its newly updated apps feature a sleek UI and support OpenVPN and NordLynx (WireGuard) protocols with 256-bit AES encryption. Handy features include double VPN, Onion over VPN, and P2P servers. NordVPN follows a strict no-logging policy and has undergone multiple security audits. Plans start at $3.49/month.

  3. ProtonVPN – From the team behind the popular ProtonMail service, ProtonVPN offers a solid VPN solution with a strong focus on privacy and security. Its Secure Core architecture routes traffic through privacy-friendly countries like Switzerland and Iceland before exiting through a second VPN server for enhanced protection. ProtonVPN uses OpenVPN and IKEv2 with 256-bit AES encryption and 4096-bit RSA key exchange. It keeps no logs and has gone through security audits. Plans start at $4/month.

When integrating a VPN into your development workflow or recommending one to users, consider the following:

  • Avoid free VPNs as they often log user activity or inject ads to monetize the service. If a VPN is free, you‘re likely the product. Stick with reputable paid providers.
  • For maximum security, use the OpenVPN protocol with 256-bit AES encryption. WireGuard is a newer protocol that offers faster speeds and easier configuration.
  • Test for WebRTC and DNS leaks to ensure your VPN is properly hiding your IP address. Use tools like https://ipleak.net/ and https://dnsleaktest.com/.
  • Implement a kill switch to block all internet traffic if the VPN connection drops unexpectedly. Most VPN apps have this feature built-in.

Encrypted Messaging: Protecting Your Communications

To keep your digital communications truly private, it‘s crucial to use an end-to-end encrypted messaging app. With end-to-end encryption, only the sender and intended recipient can read the messages. Even if the messaging provider‘s servers were compromised, the encrypted messages would be indecipherable without the private keys.

Key factors to consider when choosing an encrypted messaging app include:

  • End-to-end encryption protocol (Signal Protocol, OTR, etc.)
  • Open-source code for transparency and auditing
  • Self-destructing messages and media
  • Cross-platform support (iOS, Android, Desktop)
  • Voice/video calling and file sharing capabilities

My recommended encrypted messaging apps are:

  1. Signal – Widely regarded as the gold standard for secure messaging, Signal is a free and open-source app that uses the Signal Protocol for end-to-end encryption. It offers secure messaging, voice/video calls, and file sharing. Signal stores minimal metadata and encrypts messages at rest. The app is regularly audited and endorsed by privacy experts like Edward Snowden. Available on iOS, Android, and Desktop.

  2. Wire – Wire is a sleek, cross-platform messaging app that uses the Signal Protocol for end-to-end encryption. It offers secure messaging, voice/video calls, and file sharing, along with useful features like timed messages and secure group chats. Wire is open-source, regularly audited, and stores minimal metadata. The app is free for personal use, with paid plans for businesses.

  3. Wickr Me – Wickr Me is a popular secure messaging app that offers self-destructing messages, screenshots, and files. It uses the Signal Protocol for end-to-end encryption and doesn‘t store metadata or user information. Wickr Me features secure voice calling, file sharing, and anonymous accounts. The app is free and available on iOS, Android, and Desktop.

For developers building messaging apps, consider the following privacy best practices:

  • Use a well-tested, open-source encryption protocol like the Signal Protocol or OTR.
  • Generate encryption keys on the client-side and never store them on your servers.
  • Minimize logging and metadata collection. Don‘t store message contents or user IP addresses.
  • Implement self-destructing messages and secure file sharing.
  • Allow users to create accounts without requiring personal information like phone numbers or email addresses.
  • Regularly audit your app‘s security and be transparent about your practices.

Password Managers: Taming Your Passwords

Using strong, unique passwords for every online account is one of the most effective ways to prevent unauthorized access and data breaches. However, creating and remembering dozens of complex passwords is a daunting task for most people. That‘s where password managers come in.

A password manager generates, stores, and encrypts all your passwords in a secure vault, which you can access with a single master password. This allows you to use strong, unique passwords for every account without having to remember them individually.

When choosing a password manager, look for the following features:

  • Strong encryption (256-bit AES or better)
  • Two-factor authentication (2FA)
  • Secure password generation and sharing
  • Automatic password capture and autofill
  • Cross-platform sync (across devices and browsers)
  • Security audits and a bug bounty program

My top picks for password managers are:

  1. 1Password – 1Password is a popular password manager with a clean, user-friendly interface. It uses 256-bit AES encryption to secure your vault and offers 2FA, secure password sharing, and a built-in TOTP authenticator. 1Password has been independently audited and offers a bug bounty program. It‘s available on all major platforms and browsers, with plans starting at $2.99/month for individuals and $7.99/month for families.

  2. LastPass – LastPass is a feature-rich password manager that offers a generous free tier and affordable paid plans. It uses 256-bit AES encryption and offers 2FA, secure password sharing, and a security challenge to audit your passwords. LastPass has been audited by third-party security firms and offers a bug bounty program. Plans start at $3/month for individuals and $4/month for families.

  3. Dashlane – Dashlane is a polished password manager with a user-friendly interface and advanced features like a built-in VPN and dark web monitoring. It uses 256-bit AES encryption and offers 2FA, secure password sharing, and an automatic password changer. Dashlane has undergone security audits and offers a bug bounty program. Plans start at $4.99/month for individuals and $7.49/month for families.

For developers building web apps, consider the following password best practices:

  • Use bcrypt, scrypt, or PBKDF2 to hash and salt passwords before storing them. Never store passwords in plaintext.
  • Implement 2FA using TOTP or U2F for an extra layer of security.
  • Follow NIST guidelines for password requirements (allow long passphrases, don‘t require regular resets, etc.)
  • Use HTTPS with HSTS to encrypt login pages and prevent MITM attacks.
  • Implement rate limiting and account lockouts to prevent brute-force attacks.

Private Email: Reclaiming Your Inbox

Many popular email providers like Gmail and Outlook scan your emails for advertising purposes and share data with third parties. Using an encrypted email service ensures that only you and your intended recipients can read your emails.

When evaluating private email providers, consider the following factors:

  • End-to-end encryption (automatic or manual)
  • Open-source code for transparency
  • Anonymous sign-up (no phone number or personal info required)
  • Custom domain support
  • Secure mobile apps
  • Self-destructing emails

Some of the best private email services are:

  1. ProtonMail – ProtonMail is a popular secure email service based in Switzerland. It offers end-to-end encryption, anonymous sign-up, self-destructing emails, and custom domain support. ProtonMail has open-source apps for web, iOS, and Android. It offers a free tier with 500 MB storage and paid plans starting at $5/month for 5 GB storage.

  2. Tutanota – Tutanota is a German-based encrypted email service with a focus on privacy and ease of use. It offers end-to-end encryption, anonymous sign-up, custom domain support, and secure mobile apps. Tutanota has open-source clients and encrypts emails and contacts at rest. Plans start at just €1/month for 1 GB storage.

  3. Posteo – Posteo is another privacy-focused email service based in Germany. It offers end-to-end encryption, anonymous sign-up, custom domain support, and ad-free webmail. Posteo also provides a secure calendar and address book. Plans start at €1/month for 2 GB storage.

For developers building web apps that send transactional or marketing emails, consider the following best practices:

  • Use an encrypted email service like Postmark or SendGrid for sending emails securely.
  • Authenticate your domain with SPF and DKIM to prevent email spoofing.
  • Set up DMARC to protect against phishing attempts.
  • Allow users to unsubscribe from marketing emails with one click and honor opt-outs promptly.
  • Don‘t track opens or clicks in emails without explicit user consent.

Privacy Statistics

Here are some relevant statistics that highlight the importance of online privacy:

  • According to a 2019 Pew Research Center survey, 79% of Americans are concerned about how companies use their data, and 81% feel they have little or no control over the data collected about them.

  • A 2018 study by Comparitech found that the average American has their personal information exposed in 4 data breaches per year.

  • In 2018, there were 1,244 data breaches reported in the U.S., exposing over 446 million records (Identity Theft Resource Center).

  • A 2019 Varonis report found that the average cost of a data breach is $3.9 million, and it takes an average of 206 days to identify a breach.

  • According to a 2019 ExpressVPN survey, 71% of Americans are concerned about being monitored online by companies, the government, or hackers.

Year Data Breaches (U.S.) Records Exposed (U.S.)
2018 1,244 446.5 million
2017 1,632 197.6 million
2016 1,093 36.6 million
2015 781 169.1 million
2014 783 85.6 million

Source: Identity Theft Resource Center

These statistics underscore the need for individuals and businesses to take proactive steps to protect their privacy and secure their data.

Conclusion

In this guide, we‘ve explored some of the best privacy tools across various categories, including VPNs, encrypted messaging apps, password managers, and private email services. We‘ve also discussed some privacy best practices for developers and shared some eye-opening privacy statistics.

As a full-stack developer, I believe that privacy should be a fundamental human right in the digital age. We should all have control over our personal data and be able to communicate and browse the web without fear of surveillance or exploitation. By using privacy-focused tools and services, and by building software with privacy in mind, we can work towards a more secure and privacy-respecting internet.

However, it‘s important to remember that no single tool or tactic can guarantee perfect privacy. We must use a combination of tools and strategies, and remain vigilant about new threats and best practices. We should also support organizations and initiatives that fight for digital privacy rights, such as the Electronic Frontier Foundation and the Privacy Rights Clearinghouse.

Ultimately, online privacy starts with awareness and education. By staying informed about privacy issues and tools, and by spreading awareness to others, we can all make a difference in the fight for digital privacy. As developers, we have a unique opportunity to lead by example and build software that respects user privacy by default. Let‘s work together to create a more private and secure internet for all.

Further Reading:

  • PrivacyTools.io – A comprehensive resource for privacy tools and best practices
  • Electronic Frontier Foundation – A leading nonprofit defending digital privacy, free speech, and innovation
  • Open Source Security Foundation – A cross-industry collaboration that brings together leaders to improve the security of open source software
  • OWASP Top Ten – The ten most critical web application security risks
  • NIST Privacy Framework – A voluntary tool developed in collaboration with stakeholders intended to help organizations identify and manage privacy risk

Similar Posts

Airline websites don‘t care about your privacy follow-up: Emirates responds to my article with dubious arguments

Bybomber bot

Last Friday, I published an exposé on the privacy failings of airline websites, using Emirates as a case study. On Monday, The Register reported on my findings, and managed to get a response from Emirates. As the researcher who uncovered these issues, I feel compelled to address Emirates‘ vague and factually flawed statement. Let‘s break…

How to Stop Email Tracking in Gmail – Disable Images by Default

Bybomber bot

Email tracking is one of those things most people have experienced, even if they didn‘t realize it was happening. You know those marketing emails that seem to know exactly when you opened them and whether you clicked through? That‘s email tracking in action. As a full-stack developer who has worked on email marketing campaigns, I‘ve…

I‘ll never bring my phone on an international flight again. Neither should you.

Bybomber bot

As a software developer, my phone and laptop are the tools of my trade. They contain sensitive data, proprietary code, and access to critical infrastructure. So when I was recently detained at the border and forced to unlock my phone, I felt not only violated but fearful for my company‘s security. It was a wake-up…

Web Tracking: What You Should Know About Your Privacy Online

Bybomber bot

Web tracking, the practice of websites identifying users and collecting data about their browsing behavior, has become ubiquitous in the modern Internet age. Nearly every site you visit is tracking your activity in some way. While this enables beneficial features like personalized recommendations and targeted advertising, it has also led to growing concerns about online…

Airline Websites Still Put Your Privacy at Risk: An In-Depth Technical Analysis

Bybomber bot

As a full-stack developer with extensive experience in web security and data privacy, I was disturbed but not entirely surprised by the rampant issues I found in my 2018 investigation into Emirates.com and their careless exposure of sensitive customer data. From leaking passport numbers to dozens of unnecessary third-party trackers to storing critical info unencrypted,…

How to Turn Off Universal Clipboard Handoff on your Mac and iPhone (and why you should disable this)

Bybomber bot

If you‘re embedded in the Apple ecosystem, you‘ve likely benefited from the tight integration between your devices. Two standout Continuity features – Universal Clipboard and Handoff – create a seamless flow for copying data and switching tasks from one device to another. But have you considered the security implications of this constant synchronization? In this…

Leave a Reply

Your email address will not be published. Required fields are marked *