Our Recommended VPNs
Chosen after real-world testing across speed, privacy, and streaming. Each ranking is independent — we buy every VPN at retail and test it ourselves.
Fastest speeds, audited no-logs, 6000+ servers
Unlimited devices, CleanWeb blocker, 100+ countries
Swiss privacy laws, open-source, free tier
Lifetime plans, 10 devices, ad blocker
We earn a commission when you click “Get” buttons, at no extra cost to you. Read our affiliate disclosure
Why Do an Annual Privacy Checkup?
Privacy settings change. Apps update permissions. New data breaches occur. Services you forgot about still hold your data. An annual checkup catches privacy drift before it becomes a problem.
Set a calendar reminder and run through this checklist once a year (or quarterly if you handle sensitive data).
Minute 1-5: Account Security Audit
Check for Breaches
- Visit haveibeenpwned.com
- Enter ALL your email addresses
- For any new breaches: change the password, enable 2FA
Password Manager Health
- Open your password manager's health/audit report
- Fix reused passwords (most critical)
- Fix weak passwords
- Remove accounts you no longer use
2FA Audit
- Review which accounts have 2FA enabled
- Enable 2FA on any accounts that support it but don't have it
- Migrate SMS 2FA to authenticator app where possible
- Verify backup codes are still accessible
Minute 5-10: App & Permission Audit
Phone Permissions
- iOS: Settings > Privacy & Security — review each category (Location, Camera, Microphone, Photos)
- Android: Settings > Privacy > Permission manager
- Revoke permissions for apps that don't need them
- Delete apps you haven't used in 6+ months
Connected Apps
- Google: myaccount.google.com/permissions — revoke old apps
- Apple: Settings > [Name] > Sign-In & Security > Sign In with Apple
- Facebook: Settings > Apps and Websites — remove everything unused
- GitHub: Settings > Applications > Authorized OAuth Apps
- Microsoft: account.microsoft.com/privacy
Browser Extensions
- Review installed extensions
- Remove anything you don't actively use
- Target: 3-5 extensions maximum
Minute 10-15: Data Broker Opt-Out
Data brokers collect and sell your personal information. Opt out annually:
- Google yourself — see what's publicly available
- Common brokers to opt out of:
- Spokeo, WhitePages, BeenVerified, Intelius, PeopleFinder
- Use justdelete.me for direct links to account deletion pages
- Automated services: DeleteMe ($129/year) handles opt-outs for you
- Google Search: Request removal of personal info via Google's removal tool
Minute 15-20: Network & Device Audit
VPN Check
- Verify VPN is installed and auto-connect is enabled
- Run a DNS leak test (dnsleaktest.com)
- Check kill switch is active
- Verify you're on the latest VPN app version
Device Security
- Check OS is up to date
- Verify disk encryption is enabled (BitLocker/FileVault)
- Verify Find My Device is active
- Check auto-lock is set to 2 minutes or less
- Review Bluetooth and Wi-Fi connections — forget old networks
Router
- Check router firmware is updated
- Verify Wi-Fi encryption is WPA3 or WPA2-AES
- Review connected devices — remove unknowns
- Verify admin password isn't default
After the Checkup
Schedule your next checkup (set a calendar reminder for 12 months).
Document any changes you made so you can track your privacy posture over time.
Continue learning
Related Guides
How to Share Passwords Safely: Stop Using Slack and Email (2026)
Secure methods for sharing passwords, API keys, and credentials with teammates. Password manager sharing, Bitwarden Send, and one-time links.
Sarah ChenDevice Encryption Guide: Protect Your Data If Your Laptop Is Lost (2026)
How to enable full-disk encryption on Windows, Mac, iOS, and Android. Your data stays secure even if your device is stolen.
Sarah ChenEndpoint Security for Remote Workers: Beyond Antivirus (2026)
Your devices are endpoints in the security chain. Modern endpoint protection goes beyond antivirus — here's what you need in 2026.
Sarah ChenWas this guide helpful?
What's next