Digital Privacy for Community Safety

By now you've probably implemented a lot of the more general security and privacy practices. For many people, that will provide enough privacy and security. However, a higher threat model might be warranted in the following cases (as well as many others):

• if you are a journalist or whistleblower
• if people accessing your data without your permission will put you in danger or cause significant problems for you
• if you are at risk of persecution or repression from a government, governmental agency, or other powerful group

As fascism continues to rise globally, more and more people fall into these categories. We believe that taking the steps below would be reasonable for most immigrants and trans people who currently live in the US (as well as many other groups globally).

The modern internet is a massive surveillance tool, and using it without any protection is not recommended for at-risk groups. This section is currently purely for reference. (We may choose to expand the site at a later time.) Taking any of the steps below will require you to learn new skills and truly understand the technology you are using. This sounds daunting, but is becoming increasingly important in today's world where technology is being used by governments to surveil, track, and persecute individuals they wish to harm. This is happening even in supposedly "democratic" places like the US and EU.

It is probably wise to take all or most of the steps in the previous section before considering the steps below.

• Tor Browser
• If you need to be truly anonymous on the internet, neither private browsing mode nor a VPN will help you. Tor Browser is essentially the only way to be somewhat anonymous on the internet. There are some newer products like NymVPN, but they are far less vetted and deserve additional scrutiny.
• NOTE: This is a more advanced step to take, so make sure you understand the info on their website about how to use the browser.
• NOTE: If you need to be anonymous while using accounts you log into, you must create the accounts while using Tor Browser and only ever use the accounts within Tor Browser. There are various ways you can be de-anonymized, including your writing style, so if your safety relies on anonymity please research this in depth.
• Consider switching to GrapheneOS for your phone OS. This will currently require a Pixel phone. You can buy a new phone on sale or even buy a used Pixel. It is relatively easy to install and use GrapheneOS and it is by far the most private and secure mobile OS.
• If you have a high threat model, it is probably worth buying a Pixel to install GrapheneOS (you can buy used on eBay). It is more secure than almost any other mobile or computer operating system. Some people consider it to be the most secure OS available, period.
• Yes, the Pixel phone is a Google product, but installing GrapheneOS gives you the ability to essentially kick Google out of the phone. When used properly, GrapheneOS can be very, very private and secure.
• NOTE: If you install GrapheneOS and then reinstall Google products and social media apps, you will lose a lot (potentially most) of the benefit of GrapheneOS. High levels of privacy really come down to your use habits, which products you choose to use, and how you use them.
• ICE currently has software that allows them access to location data collected from cell phones. This is already being utilized and is how they are locating most of the immigrants they are kidnapping. It is a violation of the Fourth Amendment, but courts (and congress and the executive branch) have so far refused to reign in this out of control behavior of the US government. If being located by the government will put your safety at risk, there are only a couple options for staying safe:
1. All people with a threat level this high should not be using Apple or Android phones. Use only GrapheneOS if your risk is this high.
2. Remove the SIM card from your phone and also delete all eSIMs from the phone. Leave the phone permanently in Airplane Mode and only connect to the internet using WiFi. This will require using a VOIP number to receive traditional calls and texts. The service provided by JMP (JMP: Your phone number on every device) works well in the US and can be paid with Monero.
3. In certain cases, the government may still be able to locate a phone in Airplane Mode. If your threat is this high, you need to purchase a new phone anonymously that has never been linked to you. You can have a friend purchase a phone and send it to their address. If you want the benefit of this you should never install a SIM or an eSIM on this phone. Please do more research about the OPSEC required to maintain this system.
4. Stop carrying a cell phone. There are mobile devices with no cellular (3G, 4G, or 5G) connection which can be used over Wi-Fi only.
• If you have a computer with a compatible processor (almost all Windows computers, and some limited Mac computers), consider switching your OS to Linux.
• Note: This is becoming a more nuanced decision as AI tools accelerate the pace new OS vulnerabilities are discovered. These tools are also detecting vulnerabilities in Windows and macOS, however those operating systems are arguably more secure than Linux to begin with. Some of the authors of this site have chosen to discontinue use of desktop and laptop computers for all sensitive activities and to instead use desktop mode on GrapheneOS.
• Windows, macOS, and ChromeOS are harvesting your data for their own profit. In today’s world where the companies who own those operating systems are openly collaborating with the Trump regime, we should not trust them with our data.
• Fedora Workstation is currently a good Linux option. The GNOME (Workstation) Edition is preferred, but the KDE edition is also great and more like Windows.
• For an even more beginner-friendly option, many people use Ubuntu or Mint, although these have weaker security than Fedora.
• If you have high privacy and security needs, research TAILS (research this only in the Tor Browser) and learn how to use it for sensitive tasks.
• Note: If you want accounts to remain anonymous, you must create them within TAILS or Tor Browser and never ever ever use them outside of TAILS or Tor Browser. You must also ensure the accounts don't contain or reveal any personal identifying information. Basic things like mentioning what region you live in can help to de-anonymize you. This is a more advanced practice, and there is documentation on the TAILS website explaining it.
• If you're already using Tor Browser, you can visit the guides at https://www.anarsec.guide/. They have fairly comprehensive guides about how to use certain technologies privately and securely. Visit this site only in the Tor Browser, this site is almost certainly going to get you on a list otherwise.
• Only use Bluetooth when you don’t have another option, as this is an insecure protocol that has frequent vulnerabilities.
• An example of one recent, widespread Bluetooth vulnerability: Bluetooth Exploit Leaves Hundreds of Millions of Accessories Vulnerable to Full Takeover
• Consider disabling automated tasks, such as automatically connecting to WiFi. The more tasks your electronics do automatically without your approval, the more at risk you are to security vulnerabilities. If you have to manually approve or initiate each action, this can provide you with additional security.

This is not an exhaustive document of all the options available for improving your privacy and security on the internet. If you’ve reached this point and desire even more safety, there are many more resources available on the internet. Stay safe, take care of each other, and love each other deeply. <3