Annual Privacy Checkup: 20-Minute Audit for Your Digital Life (2026)

Privacy settings change. Apps update permissions. New data breaches occur. Services you forgot about still hold your data. An annual checkup catches privacy drift before it becomes a problem.

Set a calendar reminder and run through this checklist once a year (or quarterly if you handle sensitive data).

Check for Breaches

1. Visit haveibeenpwned.com
2. Enter ALL your email addresses
3. For any new breaches: change the password, enable 2FA

Password Manager Health

1. Open your password manager's health/audit report
2. Fix reused passwords (most critical)
3. Fix weak passwords
4. Remove accounts you no longer use

2FA Audit

1. Review which accounts have 2FA enabled
2. Enable 2FA on any accounts that support it but don't have it
3. Migrate SMS 2FA to authenticator app where possible
4. Verify backup codes are still accessible

Phone Permissions

1. iOS: Settings > Privacy & Security — review each category (Location, Camera, Microphone, Photos)
2. Android: Settings > Privacy > Permission manager
3. Revoke permissions for apps that don't need them
4. Delete apps you haven't used in 6+ months

Connected Apps

1. Google: myaccount.google.com/permissions — revoke old apps
2. Apple: Settings > [Name] > Sign-In & Security > Sign In with Apple
3. Facebook: Settings > Apps and Websites — remove everything unused
4. GitHub: Settings > Applications > Authorized OAuth Apps
5. Microsoft: account.microsoft.com/privacy

Browser Extensions

1. Review installed extensions
2. Remove anything you don't actively use
3. Target: 3-5 extensions maximum

Data brokers collect and sell your personal information. Opt out annually:

1. Google yourself — see what's publicly available
2. Common brokers to opt out of:
   • Spokeo, WhitePages, BeenVerified, Intelius, PeopleFinder
   • Use justdelete.me for direct links to account deletion pages
3. Automated services: DeleteMe ($129/year) handles opt-outs for you
4. Google Search: Request removal of personal info via Google's removal tool

VPN Check

1. Verify VPN is installed and auto-connect is enabled
2. Run a DNS leak test (dnsleaktest.com)
3. Check kill switch is active
4. Verify you're on the latest VPN app version

Device Security

1. Check OS is up to date
2. Verify disk encryption is enabled (BitLocker/FileVault)
3. Verify Find My Device is active
4. Check auto-lock is set to 2 minutes or less
5. Review Bluetooth and Wi-Fi connections — forget old networks

Router

1. Check router firmware is updated
2. Verify Wi-Fi encryption is WPA3 or WPA2-AES
3. Review connected devices — remove unknowns
4. Verify admin password isn't default

Schedule your next checkup (set a calendar reminder for 12 months).

Document any changes you made so you can track your privacy posture over time.

Related Guides

10 Secure Browsing Habits Every Remote Worker Should Build (2026)

Simple daily habits that dramatically reduce your risk. HTTPS checking, URL verification, download safety, and more.

Sarah Chen

Secure Job Searching: Protect Your Privacy While Looking for Work (2026)

Job searching exposes your personal data to recruiters, job boards, and potential scammers. How to search safely while protecting your identity.

Sarah Chen

VPN for Accountants & CPAs: Protect Financial Client Data (2026)

Accountants handle the most sensitive financial data. VPN setup for tax season security, client portal access, and IRS compliance.

Sarah Chen