Dependency removed: Third-party custody of your personal data, behavioral tracking, and centralized identity systems - your information is yours.
Privacy is not about having something to hide. It is about maintaining control over your own information and identity. In the context of digital resilience, privacy also means that surveillance infrastructure cannot be used as a lever to disrupt your operations or target you for your activities.
Privacy and resilience intersect: a self-hosted stack that leaks behavioral data to cloud providers has removed the service dependency but not the surveillance dependency.
- Privacy fundamentals - what data is collected, by whom, and how it is used against you; the surveillance business model
- Metadata reduction - what metadata reveals (who you talk to, when, how often) and how to reduce it
- Data minimization - collecting and storing only what is necessary; purging data on schedule
- Compartmentalization - separating identities, accounts, and devices by context and threat model
- Encryption concepts - symmetric vs. asymmetric; at-rest vs. in-transit; what encryption does and does not protect
- Secure communications - Signal, Matrix with E2EE; when to use which; key verification
- Secure storage - full-disk encryption (LUKS, VeraCrypt); encrypted archives; key management
- Key management - secure key generation; offline backup of private keys; hardware security keys (YubiKey, Nitrokey)
- Threat models - who is your adversary and what can they do? Individual threat models differ significantly
- Anonymous publishing - Tor hidden services; I2P; publishing without revealing identity or location
- Privacy-focused workflows - browser configuration (Firefox + uBlock Origin); DNS-over-HTTPS; VPN selection criteria; Tails OS for high-sensitivity work
| Tool |
Purpose |
Removes Dependency On |
| Signal |
Encrypted messaging |
Platform surveillance |
| Bitwarden / Vaultwarden |
Password management |
Reused passwords |
| Firefox + uBlock Origin |
Private browsing |
Ad-tracker surveillance |
| LUKS / VeraCrypt |
Disk encryption |
Physical data exposure |
| Tor Browser |
Anonymous browsing |
Network-level surveillance |
| Aegis |
2FA without cloud |
Google Authenticator cloud sync |