awesome-privacy/README.md
Nathanael Dalliard 84806d65c6
Update README.md
2021-02-20 11:24:24 +01:00

30 KiB
Raw Blame History

List of free,open source and privacy respecting services and alternatives to privative services.

About

Search Engines

Avoid

  • Google Search
  • Yahoo Search
  • Bing
  • Yandex

Instead use:

  • Whoogle Search - A self-hosted, ad-free, privacy-respecting Google metasearch engine.
  • Qwant - A privacy oriented search engine made in France with no tracking.
  • SearX - Privacy-respecting metasearch engine.

Web Browser

Android / iOS

Desktop

Controversial yet a good option: Brave - Android/iOS

Browser Sync

  • xBrowserSync - Browser syncing as it should be: secure, anonymous and free!

Photo storage

Avoid

  • Google Photos
  • Amazon Photos

Instead use:

  • Stingle Photos - Open source solution that provides strong security, privacy and encryption to backup your photos.
  • Crypt.ee - A private and encrypted place for all your photos, documents, notes and more.
  • Photoprism - Feature rich server-based application for browsing, organizing and sharing your personal photo collection. The most similar to Google Photos.
  • Photostructure - Self-hosted photo library that makes browsing and sharing a lifetime of memories delightful.
  • LibrePhotos - Active OwnPhotos fork. Self hosted alternative to Google Photos.
  • Nextcloud - The open source self-hosted productivity platform that keeps you in control. It has a Photos plugin to help you organize and visualize your photos.

Photo management

Avoid:

  • Adobe Photoshop / Illustrator / Lightroom
  • VSCO

Instead use:

Desktop:

  • GIMP - The Free & Open Source Image Editor.
  • Krita - Krita is a free and open source digital painting application

Android:

  • PocketPaint - The standard image manipulation app for Catroid.
  • Scrambled Exif - Remove Exif data from pictures before sharing them.
  • ImagePipe - Reduces image size and removes exif-tags when sharing images on android devices.

Encryption

Remember: Without strong encryption, you will be spied on systematically by lots of people.

  • Veracrypt - VeraCrypt is a free open source disk encryption software for Windows, Mac OSX and Linux.
  • Hat.sh - A Free, Fast, Secure and Serverless File Encryption.
  • Cryptomator - Cryptomator encrypts your data quickly and easily. Afterwards you upload them protected to your favorite cloud servic
  • Stegcloak - Hide secrets with invisible characters in plain text securely using passwords.

File Sharing

Avoid:

  • WeTransfer
  • SendAnywhere

Instead Use:

  • Blaze - A fast, p2p and radically different way to transfer files.
  • Lufi - Let's Upload that FIle — File sharing software.
  • Croc - Easily and securely send things from one computer to another.
  • Dat-cp - Copy files between hosts on a network using the peer-to-peer Dat network.
  • QRcp - Transfer files over wifi from your computer to your mobile device by scanning a QR code without leaving the terminal.
  • Snapdrop - A Progressive Web App for local file sharing inspired by Apple's Airdrop.
  • Paperless - Scan, index, and archive all of your paper documents.

Cloud Storage

Avoid

  • Google Drive
  • Dropbox
  • OneDrive

Instead use:

  • Nextcloud - The open source self-hosted productivity platform that keeps you in control.
  • Seafile - High performance file syncing and sharing. It includes a Wiki, WYSIWYG editing and other knowledge management features.

Other useful tools:

  • Cryptomator - Cryptomator encrypts your data quickly and easily. Afterwards you upload them protected to your favorite cloud service.
  • Syncthing - Continuous file synchronization program. It synchronizes files between two or more computers in real time, safely protected from prying eyes.
  • Rclone - Rclone is a command line program to manage files on cloud storage. It is a feature rich alternative to cloud vendors' web storage interfaces and like the tools listed above enables encryption for encrypting files in the cloud.

Maps / Navigation

Avoid:

  • Google Maps
  • Apple Maps
  • Yandex Maps
  • Bing Maps
  • Waze
  • Sygic
  • HERE WeGo

Instead Use:

  • Open Street Map (OSM) - OpenStreetMap is built by a community of mappers that contribute and maintain data about roads, trails, cafés, railway stations, and much more, all over the world.
    • OSMAnd - Android/iOS Navigation app using OSM. It is a feature-rich app with all you expect.

Translation

Avoid:

  • Google Translate
  • DeepL
  • Bing Translator

Instead Use:

  • Libretranslate - Open Source Machine Translation - 100% Self-Hosted. No Limits. No Ties to Proprietary Services.
  • Apertium - A free/open-source machine translation platform.
  • Softcatala - Open Source Translation tool - Only Catalan/Spanish/English/French.

Android Keyboard

Avoid:

  • GBoard (Google)
  • SwiftKey

Instead Use:

  • OpenBoard - 100% FOSS keyboard, based on AOSP.
  • FlorisBoard - An open-source keyboard for Android. Currently in alpha/early-beta stage.
  • AnySoftKeyboard - The only Android keyboard you'll ever need. Free as in speech and Free as in beer.

Mail Services

Avoid:

  • Gmail
  • Outlook
  • Yandex Mail
  • Yahoo! Mail

Instead Use:

  • Tutanota - Secure email for everybody. Open Source.

[LIST INCOMPLETE -]

Operating Systems

Android

Try to avoid using Google Android or any Android that has been modified and tuned by any manufacturer such as Xiaomi, Huawei, Samsung, etc. Android is an Open Source project - AOSP - Android Open Source Project - and it has many versions that will respect the user privacy and data and won't share it with private servers from manufacturers or service providers.

Instead Use:

Android app compatibility

  • GrapheneOS - GrapheneOS is an open source privacy and security focused mobile OS with Android app compatibility.
  • CalyxOS - CalyxOS lets you have your cake and eat it too, with "Privacy by Design".
  • LineageOS - A free and open-source operating system for various devices, based on the Android mobile platform.
  • Replicant - A free software mobile operating system putting the emphasis on freedom and privacy/security.

Based on Linux

  • UBPorts - Ubuntu Touch is the touch-friendly mobile version of Ubuntu.
  • postmarketOS - Touch optimised and pre-configured version of Alpine Linux.
  • PureOS - Operating system developed by purism for the Librem 5.
  • Plasma Mobile - Plasma, in your pocket. Privacy-respecting, open source and secure phone ecosystem.
  • mobian - Debian for mobile.

Smart TV

Don't use Android TV, LG WebOS or any other privacy-invasive common TV OS that comes preinstalled with your TV.

Instead Use:

  • Kodi - It is an entertainment hub that brings all your digital media together into a beautiful and user friendly package. It is 100% free and open source, very customisable and runs on a wide variety of devices.
  • Jellyfin - Jellyfin is the volunteer-built media solution that puts you in control of your media. Stream to any device from your own server, with no strings attached.
  • OSMC - OSMC is a free and open source media center built for the people, by the people.
  • RaspberryCast - Transform your Raspberry Pi into a streaming device. Cast videos from mobile devices or computers to your TV.

PC

Don't use MS Windows.

Instead Use:

  • GNU/Linux - GNU/Linux is a family of mostly free and open source Operating Systems mostly developed by the community. If you don't know where to start, Linux-Mint(Cinnamon) is a beginner friendly Distribution. If you want to try it out without installing it to your computer, you can use a Live USB Stick. If you want to install Linux but keep your current operating System, you can set up dual boot.

Social Networks

Instagram

Don't use instagram (or at least the official client). Instagram is a very privacy-invasive app with biased results and feeds based on user profiles, it is also used as a manipulation tool and has a lot of censorship going against free speech. Lastly, it has an addictive and toxic ui-design.

Instead Use:

Alternatives to Instagram:

  • Pixelfed - Decentralized, federated and Open Source alternative to Instagram with posts, videos, stories, tags, etc.

Alternative Instagram clients:

  • Barinsta - The beautiful, open source, and privacy-friendly alternative Instagram client for Android.
  • Bibliogram - Watch Instagram's public profile in a friendlier page that loads faster, gives downloadable images, eliminates ads and doesn't urge you to sign up.

Youtube

Don't use YouTube (or at least the official client). Youtube is very privacy invasive, it generates a very accurate profile based on your interests. Also it is a radicalization tool which shows biased content to users in order to get more engadgement and to get them to watch more and more content creating an adiction. It never shows you alternative opinions to your ideology/bias. Youtube censors a lot. Youtube collects a LOT of your data: interesnts, free time, ideology, likes, dislikes, music taste, etc...

Instead Use:

  • Peertube - A free, open and decentralized alternative to video platforms.
  • LBRY - LBRY is a secure, open, and community-run digital marketplace. Enjoy the latest content from your favorite creators - as a user, not a product.
  • Odysee - Odysee is a video platform backed by the creators of lbry and uses the lbry blockchain protocol.
  • DTube - A full-featured video sharing website, decentralized.

Privacy respecting Youtube clients:

  • Yotter - Youtube and Twitter with privacy. Never share any of your data to Youtube, yet be able to watch Youtube videos.
  • Invidious - Alternative and privacy respecting Youtube frontend.
  • FreeTube - FreeTube is an open source desktop YouTube player built with privacy in mind. (Uses Local RSS API or Invidious for backend)
  • NewPipe - Alternative android Youtube app. No account needed, privacy respecting. Shares IP with Youtube

Worth mentioning:

  • Piped - Work in progress.

Twitter

Avoid using Twitter official app / website. It tracks users and creates user profiles based on what they follow, retweet and like. Twitter harms and vulnerates users privacy with their policies.

Alternatives to Twitter:

Federated social networks: A federated social network isnt a single website like Twitter or Facebook, it's a network of thousands of communities operated by different organizations and individuals that provide a seamless social media experience.

  • Pleroma - Pleroma is a free, federated social networking server built on open protocols.
    • Soapbox - A frontend for Pleroma with a focus on custom branding and ease of use.
  • Mastodon - Free, federated microblogging social network built on open protocols.

Alternative Twitter Frontends:

  • Nitter - Nitter is a free and open source alternative Twitter front-end focused on privacy.
  • Yotter - Twitter with privacy with a simple yet beautiful UI.

Reddit

Try to avoid using Reddit or at least avoid their official clients as they are plenty of trackers, ads and share unnecessary user data with their servers.

Reddit alternatives:

  • Lemmy - A federated and open alternative to reddit in rust.
  • Aether - Peer-to-peer ephemeral public communities.
  • SaidIt - Open source Reddit clone.
  • Ruqqus - Open source Reddit alternative without censorship.

Privacy respecting Reddit clients:

  • Libreddit - Private Reddit front-end written in Rust
  • Teddit - Alternative Reddit front-end focused on privacy
  • Infinity - A beautiful Reddit client for Android.
  • Slide - Slide is an open sourced, ad free Reddit browser for Android and iOS.

Streaming Platforms (Twitch)

Avoid using platforms as Twitch, Patreon, Youtube as they are very privacy-invasive with your viewers (and you!). Instead, you can try using some self-hosted platforms that do take care of everyone's privacy.

Alternatives:

  • Owncast - Take control over your live stream video by running it yourself. Streaming + chat out of the box.

Teamworking Tools

Avoid:

  • Slack
  • Google Hangouts
  • Microsoft Teams
  • Discord

Instead use:

  • Zulip - Chat for distributed teams.
  • Twake - Work in a team faster. Twake covers all of your organizational needs through a single platform.
  • RocketChat - Control your communication, manage your data, and have your own collaboration platform to improve team productivity.
  • Nextcloud Talk - Keep conversations private with Nextcloud Talk.
  • Mattermost - Open-source Slack alternative.

Instant Messaging

*Check out this site for comparisons

Avoid:

  • Whatsapp
  • Instagram DM
  • Facebook Messenger
  • Skype
  • Zoom
  • Google Hangouts / Chat

Instead use:

Decentralized:

No single point of control or failure. A decentralized network operated by different servers from different volunteers arount the globe. You choose where your data stays or you can self-host your own server. Somewhat more complex protocols (because of federation between servers) and some extra metadata is added to the messages (without compromising privacy).

  • Matrix (Protocol) - An open network for secure, decentralized communication.
    • Element - All-in-one secure chat app for teams, friends and organisations. Keeps conversations in your control, safe from data-mining and ads. End-to-end encryption.
  • Jabber / XMPP (Protocol) - The universal and open messaging standard. Tried and tested. Independent. Privacy-focused. E2E encrypted.
    • Conversations - Jabber/XMPP client for Android 4.0+ smartphones that has been optimized to provide a unique mobile experience
    • AstraChat - Another XMPP client.
  • DeltaChat - Chat over encrypted e-mail.
  • Session - Extreme focus on privacy. Blockchain technology.

Centralized:

The service is in charge of running the servers that allow users to communicate. Single point of failure and control, but still 100% safe and trustworthy if the protocols and code are open and audited.

  • Threema - The messenger that puts security and privacy first. Pay once, chat forever. No collection of user data. Open Source client.
  • Signal - Extreme focus on privacy, combined with all of the features you expect. Strong encryption by design. 100% Open Source.
    • Molly - Signal-compatible fork client with some security enhancements.
  • Status - Status is a secure messaging app, crypto wallet, and Web3 browser built with state of the art technology.

P2P:

No servers involved. Everything goes directly from one peer to the other peer. No point of failure or control. The features are reduced because of the lack of server, messaging can be slower. Best option for critical chats.

  • Tox - Tox is easy-to-use software that connects you with friends and family without anyone else listening in.
  • Briar - Peer-to-peer encrypted messaging and forums.
  • Tinfoil Chat - Onion-routed, endpoint secure messaging system.

Worth mentioning

  • Berty - Not released yet. The privacy-first messaging app that works with or without internet access, cellular data or trust in the network.
  • Telegram - Not fully open source. No E2E encryption by default on chats.

Password Managers

Avoid:

  • Lastpass
  • Dashlane

Instead use:

  • Bitwarden - An open source cloud based password manager
  • KeepassXC - Securely store passwords using industry standard encryption, no sync just storage.
  • Padloc - The last password manager you'll ever want to use.

Video Conferencing

Avoid:

  • ZOOM
  • Skype
  • Google Meet
  • Whatsapp
  • Instagram
  • Discord

Instead use:

  • Jitsi Meet - More secure, more flexible, and completely free video conferencing. No account needed, no installation needed
  • Jami - P2P audio and video conferences.
  • BigBlueButton - BigBlueButton is a web conferencing system designed for online learning.
  • PeerCalls - Group peer to peer video calls for everyone written in Go and TypeScript.

Fitness and Health

Your health is a very important piece of your private data and you should care a lot about it. Also, health related data is one of the most greeded. Please don't use apps from Google, Fitbit, Huawei, Xiaomi or any company that seeks the gathering of your personal data.

If you need an app for menstrual cycle tracking please don't use any apps like Clue, Period Tracker, etc. Those cute pink apps are greedy for your menstrual cycle and intimate life data and will sell it for sure, protect your private life. Check the list below and you will find nice alternatives.

Instead use:

  • wger - A free, open source, self-hosted web application that manages your exercises, workouts and nutrition.
  • Fitotrack - A privacy oriented fitness tracker for Android.
  • OpenFoodFacts - Open Food Facts is a food products database made by everyone, for everyone. You can use it to make better food choices.
  • Drip - Menstrual cycle and fertility tracking. Everything you enter stays on your device.
  • log28 - a (very) simple no-frills period tracker for Android.

Media Streaming Platforms

Avoid:

  • Amazon Prime Video
  • Netflix
  • Disney+
  • Plex
  • Spotify
  • Soundcloud

Instead use:

Video/Audio:

  • Jellyfin - Jellyfin is the volunteer-built media solution that puts you in control of your media. Stream to any device from your own server, with no strings attached.
  • Streamio - Stremio is a modern media center that's a one-stop solution for your video entertainment.

Audio:

  • Funkwhale - A social platform to enjoy and share music (Soundcloud alternative)
  • Subsonic - Your complete, personal music streamer.
  • Ampache - A web based audio/video streaming application and file manager.
  • Koel - a personal music streaming server that works.
  • Nuclear - Modern music player focused on streaming from free sources.
  • Navidrome - Lightweight, fast and self-contained personal music streamer.

Spotify Alternative clients:

These clients, although will have less tracking, still DO NOT protect your privacy at all as you will still be streaming from Spotify servers from you own premium (paid, identified) account.

* Premium required.

  • Spot - Native Spotify client built in GTK and Rust.
  • psst - Fast and multi-platform Spotify client with native GUI.
  • ncspot - Cross-platform ncurses Spotify client written in Rust, inspired by ncmpc and the likes.

Other music streaming projects:

Podcasts

Analytics

Avoid any analytics service that comes from Google, Facebook, Microsoft or any privative service. These kind of analytics hurt the users privacy.

Instead use:

  • Matomo - Google Analytics alternative that protects your data and your customers' privacy.
  • Plausible - Simple and privacy-friendly alternative to Google Analytics

Cloaking

Images

Text

  • Stegcloak - Hide secrets with invisible characters in plain text securely using passwords (repo).

Office

Avoid

  • Microsoft Office
  • Google Docs

Instead use:

  • LibreOffice - Free and open source offline office
  • OnlyOffice - Free and open source online office for collaboration
  • Cryptpad - Collaboration suite, encrypted and open-source.

Payments

Avoid

  • Visa / Mastercard
  • Paypal
  • WeChat
  • _insertBigTechHere_Pay
  • Bank payments (wire, sepa, etc)

Instead use:

  • Monero - Monero is cash for a connected world. Its fast, private, untraceable and secure.
  • Cash - Use person-to-person payments using physical notes and coins.

USE WITH CAUTION:

  • Bitcoin - Bitcoin is not anonymous nor private. Bitcoin is traceable, transparent and pseudonymous. You need to be really careful when using Bitcoin so you don't leave any traces that can later be used against you to harm your privacy. See aantonop's video.

Databases

  • CondensationDB - Condensation is an open-source zero trust, distributed database enabling to build modern applications while ensuring data ownership and security.

Utilities

  • Deskreen - Turn any device into a secondary screen for your computer.

Uncategorized

  • Skymap - Open online planetarium program.
  • CrowdSec - An open-source, modernized and collaborative fail2ban
  • Hetty - Hetty is an HTTP toolkit for security research. It aims to be an open-source alternative to Burp Suite Pro.