Privacy Knowledge Base

Learn practical privacy habits, digital security best practices, and how to protect your information in the AI age. Educational guides for everyone.

Home / Knowledge Base

Featured Guides

🔐 Password Security Essentials

Learn how to create strong passwords, use password managers effectively, and protect your credentials from theft.

Read Guide →

🤖 AI Privacy & Safety

Understand privacy risks when using AI tools like ChatGPT, and how to share information safely.

Read Guide →

🛡️ Two-Factor Authentication (2FA)

Master 2FA setup and use it to significantly improve your account security.

Read Guide →

💬 Secure Communication

Protect your conversations using encrypted messaging and email encryption techniques.

Read Guide →

📱 Mobile Device Security

Essential security practices for smartphones, tablets, and mobile apps.

Read Guide →

🌐 Public Wi-Fi Safety

How to safely use public Wi-Fi networks with VPNs and other protective measures.

Read Guide →

🔐 Password Security Essentials

Your passwords are the keys to your digital life. Protecting them is critical for account security.

Why Strong Passwords Matter

Weak passwords are one of the most common reasons for account compromise. A strong password can withstand brute-force attacks that try millions of combinations.

Creating Strong Passwords

Step 1: Use a Password Manager

Let your password manager generate random, strong passwords. Don't rely on your memory - password managers like Bitwarden, 1Password, or KeePass create complex passwords automatically.

Step 2: Make Them Long and Complex

Aim for 12+ characters with a mix of uppercase, lowercase, numbers, and symbols. A 16-character random password is significantly stronger than an 8-character one.

Step 3: Use Unique Passwords

Never reuse passwords across sites. If one service is breached, attackers will try that password on other platforms. Unique passwords per site prevents this.

Password Best Practices

  • Use a password manager to generate and store strong passwords
  • Never write passwords down on paper or sticky notes
  • Don't share passwords via email or text
  • Change passwords immediately after any breach
  • Use passphrases (4-5 random words) if you must remember a password
  • Enable two-factor authentication alongside strong passwords
  • Avoid personal information in passwords (names, birthdays, pet names)
  • Check for compromised passwords using "Have I Been Pwned"

💡 Pro Tip

A password manager is the single best investment for password security. It removes the burden of remembering complex passwords while ensuring each account has a unique, strong password.

🤖 AI Privacy & Safety Guide

AI tools like ChatGPT, Claude, and Gemini are powerful but require careful use to protect your information.

Privacy Risks with AI Tools

When you share information with AI tools, you should assume:

  • Data may be stored for service improvement
  • Information could be used for training future AI models
  • Your queries might be viewed by company employees
  • Data breaches could expose your information
  • Privacy policies can change

What NOT to Share with AI Tools

  • Passwords or API keys
  • Credit card or financial information
  • Social Security numbers or ID numbers
  • Personal health or medical information
  • Proprietary or confidential business information
  • Client or customer information
  • Personal contact information of others
  • Legal or financial documents with sensitive data

Safe AI Usage Practices

Before Using AI: Remove Sensitive Data

Before sharing documents or information with AI, use Praivasi™ or manually remove names, addresses, email addresses, phone numbers, and financial data.

Use Privacy-Focused Services

Some AI services offer stronger privacy. Research privacy policies before choosing a tool. Consider using local AI models that run on your own computer.

Use VPN + AI Tools

Add network-level privacy by using a VPN while accessing AI tools. This hides your IP address and location.

Recommended Safe Practices

  • Use Praivasi™ to detect and redact sensitive data before sharing
  • Rephrase questions to avoid exposing private details
  • Use privacy-focused AI alternatives for sensitive tasks
  • Enable opt-out of training data features when available
  • Keep AI conversations separate from sensitive business
  • Review AI tool privacy policies before use
  • Use a VPN while accessing AI services
  • Don't rely on AI for handling truly confidential information

🛡️ Two-Factor Authentication (2FA) Setup Guide

Two-factor authentication (2FA) adds a second layer of security to your accounts. Even if your password is compromised, 2FA prevents unauthorized access.

What is 2FA?

2FA requires two forms of identification:

  1. Something you know: Your password
  2. Something you have: Your phone, security key, or authenticator app

Types of 2FA

SMS Text Messages

Codes sent via text. Easy but less secure than other methods. Better than nothing.

Authenticator Apps

Apps like Google Authenticator, Authy, or Microsoft Authenticator generate codes. More secure than SMS.

Security Keys

Physical devices like YubiKey. Most secure option, no codes needed, works via USB or NFC.

How to Enable 2FA

  • Go to account security settings on the service
  • Look for "Two-Factor Authentication" or "2FA" option
  • Choose your preferred 2FA method (app authenticator recommended)
  • Scan the QR code with your authenticator app
  • Save backup codes in a secure location
  • Test 2FA by logging out and logging back in

Priority Services for 2FA

Enable 2FA on these critical accounts first:

  • Email account (most critical - backup for other accounts)
  • Password manager
  • Financial/banking accounts
  • Cloud storage (Google Drive, OneDrive)
  • Social media accounts
  • Work accounts

⚠️ Backup Codes

Always save the backup codes when setting up 2FA. Store them securely in your password manager or encrypted cloud storage. Without them, you may be locked out if you lose access to your 2FA device.

💬 Secure Communication Guide

Learn how to have private conversations using encrypted messaging and email.

Encrypted Messaging Apps

Use these apps for private conversations:

  • Signal: Best for general messaging, calls, and groups
  • ProtonMail: For encrypted email with non-technical users
  • Wire: Good for team collaboration with encryption
  • Briar: For maximum privacy, works over Tor and offline

Email Encryption Basics

Option 1: Encrypted Email Services

Use ProtonMail or Tutanota. Emails are encrypted by default, and you can send encrypted messages to non-users via password-protected links.

Option 2: GPG/PGP Encryption

For advanced users: Use GPG to encrypt emails in your existing email provider. Requires recipient to also understand GPG.

Best Practices

  • Use end-to-end encrypted messaging for sensitive conversations
  • Verify contacts by comparing usernames or fingerprints
  • Enable disappearing messages for temporary conversations
  • Never share sensitive information in unencrypted messages
  • Avoid SMS for sensitive information (use encrypted apps instead)
  • Check that encryption is enabled before sending sensitive data
  • Use separate accounts for business vs. personal communication

📱 Mobile Device Security

Your smartphone contains sensitive personal information. Protect it with these practices.

Essential Mobile Security Steps

  • Use a strong PIN or biometric lock (fingerprint/face)
  • Enable automatic screen lock (1-2 minutes)
  • Keep OS and apps updated to latest versions
  • Only install apps from official stores (Apple App Store, Google Play)
  • Review app permissions - disable unnecessary ones
  • Use mobile antivirus app (optional but helpful)
  • Enable remote find/wipe features (Find My iPhone, Find My Device)
  • Don't use public Wi-Fi without a VPN

App Permissions to Watch

Camera & Microphone

Only grant to apps that need them. Others don't need access.

Location

Consider setting to "While Using App" instead of "Always" for most apps.

Contacts & Calendar

Only grant to apps that genuinely need them.

Recommended Mobile Apps

  • Password Manager: Bitwarden, 1Password, or LastPass
  • VPN: ProtonVPN, NordVPN, or Mullvad
  • Messaging: Signal for encrypted messaging
  • Email: ProtonMail for encrypted email
  • File Encryption: Encrypted cloud storage app

🌐 Public Wi-Fi Safety Guide

Public Wi-Fi networks (coffee shops, airports, hotels) are convenient but risky. Here's how to stay safe.

Risks on Public Wi-Fi

  • Network traffic can be intercepted and read
  • Fake Wi-Fi networks impersonate legitimate ones
  • Other users on the network can access your files
  • Attackers can intercept passwords and login information
  • Malware can spread across the network

How to Stay Safe on Public Wi-Fi

1. Always Use a VPN

Connect to a VPN before joining public Wi-Fi. The VPN encrypts all your traffic, protecting it from snoopers.

2. Enable Two-Factor Authentication

2FA protects accounts even if a password is captured on public Wi-Fi.

3. Verify the Network Name

Confirm the Wi-Fi name with staff. Attackers create fake networks with similar names.

4. Avoid Sensitive Transactions

Don't access banking, sensitive email, or make purchases on public Wi-Fi without a VPN.

What NOT to Do on Public Wi-Fi

  • Don't access banking sites without VPN protection
  • Don't enter credit card information
  • Don't log into sensitive accounts
  • Don't turn off security features or firewalls
  • Don't enable file sharing
  • Don't ignore security warnings from your browser
  • Don't browse without HTTPS (look for 🔒 in URL bar)

Safe Activities on Public Wi-Fi

  • Browsing news websites
  • Using social media (with VPN)
  • Reading emails (with VPN, especially encrypted mail)
  • Using messaging apps with encryption enabled
  • Video streaming
  • General web searches

📋 General Privacy Best Practices

Daily Privacy Habits

  • Review app permissions monthly and disable unnecessary access
  • Clear browser cookies and history regularly
  • Check online accounts for suspicious login activity
  • Be suspicious of unsolicited emails and links
  • Use strong, unique passwords for each account
  • Keep all software and OS updated to latest versions
  • Monitor credit reports for fraud
  • Use encrypted messaging for sensitive conversations

Monthly Privacy Checks

  • Review recent login activity on important accounts
  • Check password manager for weak or compromised passwords
  • Update passwords for critical accounts (email, banking)
  • Review app permissions on all devices
  • Check "Have I Been Pwned" for your email
  • Review account recovery options are up to date
  • Verify 2FA is still enabled on important accounts

Quarterly Privacy Audit

  • Review privacy policies of services you use
  • Check data sharing settings in social media accounts
  • Audit cloud storage for sensitive files
  • Review browser extensions and remove unused ones
  • Check location sharing settings
  • Review old accounts you no longer use and delete them
  • Update emergency contacts and recovery options

Ready to improve your privacy?

Start by reviewing the guides above and implementing one practice at a time. Small steps compound into strong privacy.

View Privacy Tools →