Here's exactly what to fix
Android is powerful, flexible, and used by over 3 billion people worldwide. But that flexibility comes with a cost — Android is made by Google, one of the seven companies now embedded in Pentagon classified networks. Out of the box, your Android phone is configured to share your data extensively. This guide changes that.
Apple makes money selling hardware. Google makes money selling you. Android is free to phone manufacturers because Google earns billions from the data it collects through it. Every default setting on a new Android phone is optimized for Google's data collection — not your privacy. That doesn't make Android bad. It means you need to know which defaults to change. This guide tells you exactly which ones and exactly how.
These six changes give you the most protection immediately. Click each box as you complete it.
Opt out of ad personalizationSettings → Privacy → Ads → Opt out of Ads Personalization. Reset advertising ID.
Disable Google Assistant always-onSettings → Google → Account Services → Search, Assistant & Voice → Voice → turn off "Hey Google"
Switch browser to BraveDownload Brave from Play Store. Set as default browser. Switch search to DuckDuckGo inside Brave.
Audit location permissionsSettings → Location → App Permissions. Change all non-essential apps from "Allow all the time" to "Deny".
Download SignalSignal.org — your primary messenger for all contacts regardless of their phone type.
Review Google account data collectionmyaccount.google.com → Data & Privacy → turn off Web & App Activity, Location History, YouTube History.
Note: Android settings vary slightly between manufacturers (Samsung, Pixel, OnePlus etc.) and Android versions. The path shown is the general Android path — your phone may label things slightly differently.
Google Assistant is always listening for the wake word — meaning Google's microphone is always active on your device. Google has acknowledged that human reviewers listen to a sample of Assistant recordings to "improve the product." You didn't agree to have strangers listen to your conversations.
Your Android phone has a unique advertising ID — a code that connects everything you do across every app into a single profile. Thousands of companies are buying and selling this profile right now. Opting out and resetting the ID breaks the historical profile built on you and stops new tracking immediately.
Google tracks and stores everything you search, every YouTube video you watch, every place you visit, and every app you use — by default. This data is used to build a comprehensive profile used for advertising and available to government requests. Turning these off stops new data collection and lets you delete what's already stored.
Android apps frequently request "Allow all the time" location access. Most apps don't need this. Every app broadcasting your location constantly is a surveillance point — and that data is being sold. This audit takes 10 minutes and immediately stops most unauthorized tracking.
Chrome is Google's primary data collection tool on your phone. Every URL you visit, every search you make, every form you fill goes to Google. Brave browser blocks trackers and ads by default — same speed, same compatibility, zero surveillance. DuckDuckGo search engine replaces Google Search without tracking your queries.
Apps accumulate permissions over time — often more than they need. A flashlight app doesn't need your contacts. A game doesn't need your microphone. Android's Permission Manager lets you see exactly which apps have access to what and revoke anything excessive.
Android backs up your data — contacts, messages, app data, WiFi passwords — to Google's servers by default. This means Google has a copy of your digital life. When law enforcement requests Google account data, this backup is included. You can back up locally to your computer instead.
Android's hidden Developer Options menu contains a powerful "Quick Settings" tile that lets you instantly disable all sensors — camera, microphone, GPS, accelerometer — with one tap. This is your panic button for maximum privacy when needed.
Standard Android SMS and Google Messages are not encrypted. Google has access to RCS messages (the "enhanced" texting feature). Every text you send through default Android messaging is potentially visible to Google and accessible to law enforcement requests. Signal replaces this entirely — works for all contacts regardless of their phone type.
Android has a hidden feature that scans for nearby WiFi networks and Bluetooth devices even when WiFi and Bluetooth are turned off — specifically to improve location accuracy. This means turning off location doesn't fully stop location tracking. These must be disabled separately.
A 4 or 6 digit PIN can be cracked by specialized tools in minutes. A strong alphanumeric password with 8+ characters is exponentially harder to breach. Your lock screen is the last line of defense if your phone is seized or stolen.
A VPN encrypts all internet traffic between your phone and its destination — meaning your internet provider, your WiFi network operator, and anyone monitoring your connection cannot see what you're doing online. ProtonVPN has a genuinely excellent free tier with no data limits — rare for a VPN.
DNS is the system your phone uses to look up websites — like a phone book for the internet. By default your Android uses your internet provider's DNS, which logs every website you visit. Switching to a private DNS stops this logging entirely and often improves speed.
Android runs on phones from many different manufacturers — and they don't all handle privacy the same way.
Fastest security updates. Clean Android with fewest pre-installed apps. But it's Google's own device — data still flows to Google by default. If using Android, Pixel with GrapheneOS is the most private option.
Samsung adds its own apps and tracking layer on top of Android. More pre-installed apps to audit and remove. Samsung's own services (Bixby, Samsung account) add additional data collection to manage.
A privacy-focused Android version that runs on Google Pixel hardware. Removes Google services entirely. Recommended for high-risk users — journalists, activists, lawyers. Technical to set up but offers maximum protection.
Your quick reference for which Android tools to keep, which to change, and which to replace entirely.
| Tool | Privacy Level | Recommendation |
|---|---|---|
| Signal (installed) | 🟢 Strong | Gold standard. Use as default SMS app. Covers all contacts. |
| Brave Browser | 🟢 Strong | Best private browser on Android. Set as default. Use DuckDuckGo inside. |
| ProtonVPN | 🟢 Strong | Free tier excellent. Enable Always-on VPN. Use on all networks. |
| ProtonMail | 🟢 Strong | Replace Gmail for sensitive email. End-to-end encrypted. |
| Google Chrome | 🔴 Replace | Replace with Brave immediately. Chrome = Google data collection. |
| Google Search | 🔴 Replace | Switch to DuckDuckGo. Every search you make goes to Google. |
| Google Assistant | 🔴 Disable | Always-on microphone. Disable completely — see Step 1. |
| Gmail | 🟡 Caution | Google scans content. Switch sensitive email to ProtonMail. |
| Google Maps | 🟡 Caution | Comprehensive location tracking. Use OsmAnd or Organic Maps instead. |
| Google Drive | 🟡 Caution | Google has access. Use ProtonDrive for sensitive documents. |
| Android Messages / RCS | 🔴 Replace | Not encrypted. Google has access. Replace with Signal entirely. |
| Google Photos | 🟡 Caution | Google processes and stores all photos. Consider local storage only. |
| Google Play Store | 🟡 Necessary | Required for most apps. Audit every app you install for permissions. |
On Android, Signal doesn't just add encryption — it fully replaces your standard SMS app. One app handles all your messages — Signal-to-Signal conversations are fully encrypted, and standard SMS to non-Signal users is still handled cleanly in the same interface. It's free, open source, and the FBI has publicly stated they can get almost nothing from it.
Get Signal Free → Signal.orgThis guide is one part of the complete RECLAIM Digital Protection Protocol. Go back to the main site for the full 12-step guided tool, app swap table, Apple guide, and community resources.