How and why I strive to maintain my privacy – a post in light of the Snooper’s Charter

GCHQ at Cheltenham, Gloucestershire

An aerial image of the Government Communications Headquarters (GCHQ) in Cheltenham, Gloucestershire.
Photographer: GCHQ/Crown Copyright. CC BY-SA 2.0

Arguing that you don't care about the right to privacy because you have nothing to hide is no different than saying you don't care about free speech because you have nothing to say.

Edward Snowden, 2015 (source)

I get asked now and then how to improve one's personal privacy, digitally speaking. It's unsurprising that such questions are directed my way given privacy is a core objective of the hi:project, and yet I seemed to have attracted more than the usual number of questions since my last post – Introducing Google Assistant, the Surveillance Interface.

You might want to stop commercial entities intruding – it's difficult to sum up in a sentence or two how egregious the state of commercial surveillance is today. You might want to help head off the realisation of a surveillance state if only because you've read somewhere that such things don't end well. You might simply want to have less data about your movements and purchases and media habits and general proclivities out there because it's not a case of if the corresponding databases are hacked but when.

Importantly, I write this post the very week the UK has passed the most extreme surveillance law ever passed in a democracy. The so-called Snoopers' Charter is disgusting, distressing and, in good part, stupid.

snoopers charter article in the Indendent

Why stupid?

Well here's some information about how I protect my privacy. It takes just a little tech savvy and a little money. I have both, as will very many of the people the surveillance state supposedly exists to fight, leaving only the masses – the innocent, technically less literate and/or poor and/or couldn't care – the subject of Orwellian intrusion and risk. The chilling impact on the vibrancy of our society effects everyone.

Virtual private network

Subscribe to a VPN now and always use it – on your phones, tablets, computers.

I use Private Internet Access. For the monthly price of a flat white (disclosing my metropolitan proclivities there), my broadband ISP and mobile phone operator can't see what I'm doing – my web browsing is invisible to them, immediately undermining one of the major thrusts of the new UK law.

It also hides my IP address so commercial surveillance cannot use that unique identifier to attribute and connect up my various activities.

Importantly, Private Internet Access logs nothing so there is nothing that might be subpoenaed. Whichever VPN service you choose, make sure this is the case.

Added bonus – if you've ever wanted to access some media but have been prevented from doing so because you're outside a specific country (eg, the BBC while abroad, or some US content while you're in the UK), you can just change the endpoint of the VPN to that country in a click and you're sorted.

Do not track

Turn on Do Not Track (DNT) in every browser on every device you use. There is no legal requirement for any company to obey your request not to be tracked, but at least the more ethically minded listen. And use Firefox – the only browser that only has your best interests at heart.

DNT instructions for:

By the way, if you're still using Internet Explorer (IE), you should know this browser is no longer maintained by Microsoft. You should stop using it immediately and chose one of the above instead.

Secure web surfing

You should make sure that your browser establishes a secure connection to the website or web service you're visiting whenever that facility is available. Use HTTPS Everywhere.

Anonymous search

Use DuckDuckGo. As good as Google and Bing 90% of the time. And seriously, do you really want to look up that sexual disease or 'not normal' thing and have the search provider add it to your profile?

In appropriate instances, just use Wikipedia and follow the links from there.


There are a variety of browser add-ons available to frustrate commercial surveillance. They stop the trackers embedded into websites from doing their thing. I use Privacy Badger. Not all blockers are created equal ... check out Better for Safari, where you'll also be able to read more on that topic.

Google Analytics

When those running a website want to understand how others use it, they configure some web analytics capability. The Google Analytics service is the market leader. Opt out here.


This one is tricky. Configuring your own email service isn't going to suit very many people. So right here I'm going to recommend gmail as the most secure / private of all the major email services. Of course, as soon as you let Google into your life, you're now relying on the services of the proprietor of the world's largest digital advertising business and therefore the most prolific tracker.

For the more adventurous: Hushmail and ProtonMail.


If you're serious about privacy, you don't text / use SMS – that's entirely unencrypted – you use a messaging service. And if you're serious about messaging privacy, you check two things:

  1. that it employs so-called end-to-end encryption, and
  2. nothing goes via or gets logged with the service provider.

Last I checked, the second of these excludes anything from Facebook, Google, and Microsoft. Recent revelations also throw doubt on Apple's services too. Without hesitation, I recommend Signal.


Calls from your landline and mobile phone are unencrypted and they are being recorded. Use Signal.


Use cash. Yes. I often find it's the payment choice for software engineers. What more validation do you need?!

Or Apple Pay ... "protects your personal information, transaction data, and credit, debit, and prepaid card information with industry-leading security."

Where you only have a choice of electronic methods, use the most niche. For example, I always use Oyster (dedicated payment method for London public transport services) rather than a bank card contactless payment.


Prevent Android apps from tracking your movements.

Stop your Apple devices from tracking your movements.


The blockers (above) will frustrate Facebook from building the most detailed digital profile of you that you might imagine. (The profile would take hundreds of pages to print.) But perhaps the best method here is too much for you ... leave Facebook.


If you think I've missed anything, or worse have anything wrong, please do leave a comment accordingly. Thanks.

More reading