Yes im aware that my search engine choice is not the best option.
Gmail - > tuta mail
Also you use way too much proton. Don’t put all your eggs in one basket
As others have said, remove all proton stuff that you can. You are just replacing one centralized service with another. Google started out good too and look where we are now. Never put too many eggs in one basket.
My answer to this is to use a custom domain with an email aliasing service.
I’ve gone through about half of the 400 accounts in my password manager and moved them over. I’ll migrate the rest over the next week or so.
So, I’m switching from Gmail to Proton for now, but if Proton starts to get worse or Tuta catches up on functionality or there’s a better provider that emerges or I decide to try to self-host, it’s one easy change at the alias provider to redirect all of my mail to a new email provider.
You should try migadu. Thats the most no-bs provider with custom Domains I could find
Just recently discovered Migadu and it’s all I ever wanted!
What does Migadu do? I’m not understanding what “consolidation” means in this context. ELI5?
Thanks. Since I’m just starting my privacy journey, I’m sticking with the mainstream options for now, but using an aliasing service will make it easy easy for me to switch in the future. I’ll check it Migadu and I appreciate the suggestion.
They have almost twice as many google apps though. Why didn’t you mention those?
There are arrows between the icons. The google ones are what they are switching away from.
Perhaps this one:
Proton Mail -> Tuta Mail
Why? I would be careful with Proton Mail b/c it presumably advocates the Swiss surveillance and security law, which allows to keep information for a longer period of time.
BTW, you can add:
GitHub -> Codeberg (or Forgejo)
Arent you using too much proton
Ecosystems which are easy to use are great for users and the reason why Google has a monopoly. If proton is a decent privacy centered alternative then more power to them.
As others have pointed out, having so many Proton might be an issue. However, that line of thought only works if you’re really concerned about having a single point of failure. Most people value convenience much more than that.
The way I see it, this setup is somewhat noob-friendly, but relying heavily on Proton makes it a lot more convenient for many people. Using a greater variety of providers would make sense, but you can’t expect everyone to be ready for a hassle like that. People seem to expect you to be a hard-core privacy warrior who is willing to make significant sacrifices for philosophical reasons.
Most people aren’t like that. Just switching to DDG is hard enough for them, but at least it’s a step in the right direction.
If you take only 1/10th of this diagram, you get the simplified newbie version. Take all of it, and it’s for a person who is clearly interested in security and privacy. Modify a few things here and there, and you get a version for a serious security enthusiast. Different versions for different audiences.
Using Proton Mail, Calendar and Docs is a lot, lot better than using the Google suite. We shouldnt put people off changing, as you said the convenience is important and often forgotton as the major reason people stick with Google.
Just use tutamail - better track record and hosted in Germany
That would have been my recommendation as well. It also diversifies the setup a bit.
However, I can also appreciate Proton as a convenient gateway drug that leads people away from Google.
What track record? They are both the same.
Proton is just more user-friendly.
tuta hasnt sponsored a single far right influencer to my knowledge
Maps is the hardest thing to replace. I like comaps but it’s hard to find any businesses on it. They should probably start scrapping google maps because there no way to get ahead at this point.
I use Mapy (EU)
Murena Workspace and kDrive instead of Gmail/Gdrive
AlterSend (P2P) instead of DropBox
vgy.me (UK) instead of Google Photos
Search - Mojeek, Startpage, MetaGer
AI - Andisearch
Vivaldi Browser, it’s Calendar, Mail and Mail Client, Feed, Notes
Zen Browser
Mandatory Portmaster on Desktop (Windows/Linux) and InViziblePro (Mobile)
Mapy uses OSM data outside the Czech Republic, and the extra features there compared to FOSS apps are only marginally useful. However, I am in the Czech Republic so I use the year-old 9.55.2 (9550200) Android app (last version before Premium enshittification).
Correct, but there isn’t any good FOSS map out there, all rely on OSM, and Mapy certainly isn’t the worst. Another good free and independent map is HERE. With maps it always depends for what you use it. It’s sad that there isn’t any real alternative to Google Maps and Street View (HERE map at least has a 3D view on street level, but only graphically, not real images). Really private are Maps in paper, which you can buy in Tourist offices (there often free) and Gas Stations, old School
Have you tried Magic Earth Navigation. I tend to switch between Magic Earth and CoMaps but tend to use MAgic Earth more
Its not on fdroid?
It’s unfortunately not truly FOSS, it’s still closed source. But literally every map app with traffic data is so, I just use it to avoid Google… Use Aurora store to get it.
I prefer Comaps over OSMand.
OSMAnd has a lot more features that I personally use
different purpose in my opinion
How so? Isn’t it a fork after a dispute about direction?
You’re thinking of Organic Maps
Comaps is not a fork of OSMAnd… OSMAnd is a high powered offline maps and trip planning toolkit with many layer options, custom layers, multiple map views, and a range of plugins.
Comaps is… Well an offline compatible Google mapsish clone. It doesnt have anywhere near the capability of OSMAnd. Its more “general user” focused.
The difference is a navigation app vs a maps app
Proton Pass. For privacy, either self host or use offline password managers.
Obsidian is closed source or not fully open source iirc. Try Notesnook if you need sync.
Logseq is a good alternative to Obsidian
I love Logseq and I’ve been using it for many years. But TBH it’s not an alternative to Obsidian. At all. It’s a differrent app with a differrent approach.
My boss uses Obsidian, and me and a colleague use Lagseq. They seem to do the same job for our needs. I’m curious to know what features of Obsidian is Logseq lacking for your usecase?
They might do the same job. They just do it in a different way. They look differently, they work differently, their key concepts are a bit different, their workspaces and workflows are differently organized. Plus, Logseq is fully open source while Obsidian is not.
It’s not about features. Almost every notetaking app has pretty similar feature set today. I’m talking about the approach in general.
Apparently Emacs is on F-Droid so you could use org-mode as well, although IDK how well it works
Orgzly is what you use for org-mode on Android. Haven’t seen anything beat it.
Sweet, I’ll try it out
My preference was Joplin synced through self hosted Nextcloud
Yeah or standard notes if they like the proton products
Standard Notes was written by a different company (largely just one developer) and is not like other proton products.
Proton simply bought it so they didn’t have to write their own.
Yeah good call out. I just meant that there are many people that don’t trust/dislike proton. OP though seems cool with proton so then they might be cool with standard notes.
In my honest opinion? Nothing. There is nothing worth changing here, all the other advice is just different kinds of extreme.
based on your selection and the fact that you asked this question is good a indicator that any other alternative people would suggest won’t do you that much benefit while carrying a much higher chance of being highly inconvenient.
If I’m being very picky and perfectionist, Obsidian.
It’s closed source, and there are open-source alternatives, be it Trilium, Zettlr or whatever strikes your fancy
Mullvad Browser, SearX or StartPage search, SimpleX or Briar messenger, Fossify Suite(Files, Camera, Gallery, Calendar, Notes, Keyboard, etc), Filen Cloud, Aegis 2FA, SimpleLogin or Addy as mask to email account, FlorisBoard keyboard
First off: you’ve come a long way. Great setup, keep it up!
As others have said, I’d reduce your reliance on Proton. I’d particularly ditch their password manager in favour of something like KeepassXC and combine it with Syncthing (which you’re already using) in order to keep your passwords out of the cloud, but synced between your devices. Always think in terms of blast radius: if an attacker gets access to your Proton account (either because you fuck up or they do), they will have access to anything that’s in there. Having your e-mail + pw manager there increases blast radius dramatically and allows not only for access to, but full takeover of your accounts in case of a breach.
I don’t trust proton.
Get a 5$/ month Nextcloud instance on Hertzner or selfhost it. You’ll get 1 tb drive, calendar, notes, office suite, sync with phone, and much much more.
Or Tutamail
You got great choices, actually. I’d only recommend to be as little dependent on multiple fronts on one company. So I’d change a few of Proton to something else. As long as Proton doesn’t replace their CEO with an explicitly antifascist one, I don’t know if they re a good spot.
Depending on how private communications must be, Threema might be better than Signal.
If you don’t need to synchronise with others and your threat model is not physical attacks/theft, then agendas can be just on paper. Same for the calendar.
As for distro…
Mint is great (and honestly what I’d rec for people brand new to Linux). If you want to harden privacy/security more though, the following Linux distros might be better:
- Fedora (any of them). It’s an international upstream distro from Red Hat (American company, parent company is IBM). In other words, it’s developed by the community, which is gathered in the Fedora Project. Their headquarters is in NC, USA. Red Hat then uses the community distro to make their own distro, and in return, finances Fedora. Linus Torvalds, the creator of Linux, uses it. If he trusts it, I trust it.
- OpenSUSE Tumbleweed -, developed by the OpenSUSE community, backed by OpenSUSE from Germany. Pretty good all-arounder.
- Arch Linux, developed internationally, but most devs are spread across Europe. Has an extensive wiki (that also is good for other distros), though it’s not exactly “plug and play” and I’d rec it only if you know what you’re doing.
- Debian is another option if privacy is less of a concern for you, than it being FOSS. It’s one of the most FOSS distros out there, and also highly independent and international.
I assume you want to use your distro as daily driver, and that your threat model isn’t too severe. So the above ones should suffice.
If the threat model calls for it, or you’re willing to sacrifice some usability for slightly more security, you could try QubesOS (arguably one of the most secure distros since it sandboxes everything as if they were a separate computer). Tails is another alternative, that’s on a USB and forgets itself after usage.
For search engines…
… go for Qwant (French) or Ecosia (German). Both are European-owned and are busy constructing their own indexes (currently they still use Bing and Google). There’s Mojeek (UK-based) which is independent.
I don’t know how to block specific sites from popping up on them though, since I notice a certain trillionnaire’s personal ““wiki”” pops up a LOT. Probably he’s cheating and search bumping to spread his desinformation. It should be blocked.
Presearch also exists, which is decentralised and uses its own indexes. If you want OSS, there’s SearXNG and YaCy which have metasearch options. Be careful in which instance you pick, though.
Arch Linux
You can break anything quite easily on arch if you don’t know what you’re doing, including security.
Lol very true, Ive been using Mint for maybe 7 years now, Ive tried Arch 3 times or more, broke evey single time ive used it. And that’s with me not doing anything out of the ordinary. (No hate to Arch btw, I just can’t figure it out)
Network effect is the biggest problem for messaging services, and so I would still push for Signal over the alternatives that are technically better. This guide seems like it is focussed on users who are new to the space
I agree with the Linux recommendation, but I’d offer CachyOS over pure Arch for newcomers. The limine bootloader gives a lot of peace of mind, since you can tell the user “if you get a bad update, reboot and pick an older option on the first screen”.
There is exactly zero privacy upside to be gained by moving from Mint to Debian, Fedora, OpenSUSE or Arch.
Qubes and Tails may give you an edge, but add quite dramatic convenience costs. Unless you have a very specific threat model, this is overkill.
Ecosia has a terrible privacy policy, I analysed it in the past. They are likely in violation of the GDPR, I’m currently considering to file a complaint, they’re still a lot better than Google though, but DDG is privacy-wise superior.
Last time I tried qwant they don’t serve Taiwan, which is one of the points I VPN to that I cycle
I haven’t tried many other countries.
So just a head’s up to anybody reading.
SecureBlue also looks decent and brings some of the security hardening used in GrapheneOS
Why is Threema better than Signal?
See here - secure messaging apps
another thing is that the Trumpist US regime allegedly got access to Signal through Israeli spyware (Paragon), or is trying to do so. (The Guardian)
The Swiss military also has publicly shifted away from Signal, as they deemed it unsafe for communications. Signal’s still subject to the CLOUD Act, while Threema is not. (Bleeping Computer).
See here why the link you shared isn’t a good source:
https://soatok.blog/2025/07/07/checklists-are-the-thief-of-joy/
And learn more about Threema vs. Signal:
https://soatok.blog/2021/11/05/threema-three-strikes-youre-out/
The signal one suggests it’s a phone OS hack that can open apps so could probably do threema too.
The article you shared suggested it’s likely the result of lobbying by the company so they use a company inside the country.
Adding my personal notes on search engines here for anyone’s interest. I personally use Qwant on Desktop and DuckDuckGo on mobile. I like Qwant because they are at least working on their own index and are EU-based. On the other hand, DuckDuckGo is faster and has a more comprehensive privacy policy. I’m really trying to use Mojeek on mobile but the search results are much worse than DuckDuckGo and Qwant in my repeated experience.
Qwant DuckDuckGo Mojeek xPrivo Kagi IP collection Yes No No No temporary Hosting FRA USA UK EU USA Index ~40% own index + ~60% Bing 100% Bing Own Own Own Direct monthly cost 0 0 0 4-7€ 5€ Passing data to third parties Search data and IP go to Microsoft separately No No No No Quality (subjective) +++ +++ + ++ ? AI summary / chat unclear optional no optional ? Speed + ++ +++ ++ ? Yeah looking at it I had the same thought. Il look into Threema, thanks!
