Maximizing privacy on Android without custom ROMs?
Maximizing privacy on Android without custom ROMs?
I've had a Galaxy S22+ for 2 years and still want to use it. When I look up how to maximize privacy on Android, many results say to install custom ROMs which I can't since its a US model and the bootloader is locked. I just want to minimize tracking and sharing of personal information. I could use a firewall app like RethinkDNS to block trackers, but could I completely block tracking from Google and Samsung? Are there any lists of packages to uninstall to improve privacy? (I've used ADB to remove a bunch of bloatware. Ex: pm uninstall -k --user 0 com.samsung.android.arzone)
Use this tool.
That one is old and unmaintained. Use this newer version of it instead: https://github.com/Universal-Debloater-Alliance/universal-android-debloater-next-generation/
Can also use Canta directly on the phone without needing a PC.
disable Google Play Services and the Google Play Store. And that will help a lot. And if you still need apps from the Google Store, you can use the Aurora Store from f-droid
Edit: you may also want to look into controld.com since their free dns blocks known malware, ads, and trackers. They have several options including standard DNS, DNS over HTTPS, and DNS over TLS, and Android supports DNS over TLS. So you can use it directly.
I've found disabling play services on Samsung causes weird errors.
You can try, it may work.
Thanks for the DNS link!
Every time I think about running custom roms or degoogled stuff, I remember that NFC payments will no longer work and then I get sad.
Wdym? Google Wallet won't work, that's correct, but if your banking app works and has a built-in nfc payments support, then you'll be alright.
Yes I mean google wallet. I've never heard of a banking app supporting NFC payments by itself, I was not aware that was even a thing... googling suggests that might be an EU-only thing.
What I did on my old Oneplus 7t (from a fresh install) was using Shelter to create a work profile and keep anything google related there. On the main profile I didn't sign in to google or installed any google apps. I also disabled all OEM bloatware and apps I didn't use. Not ideal, but better than nothing and all I could do before getting a new phone without unlocking the bootloader.
The reverse may be a better option(?), as you can completely remove / disable ALL google services (google play, google play services, google framework, etc.) within the work profile
I use insular, which is a fork of shelter/island.
I limit as much as I can through a combination of privacy-respecting apps and fewer apps (if I can reliably use the web browser for something, I will) and then use custom DNS filters (NextDNS) to minimise further leakage. I also disable any pre-installed applications I don't need (you can remove them with Universal Android Debloater but I don't need the extra storage space). I also use a VPN at all times.
many results say to install custom ROMs which I can’t since its a US model and the bootloader is locked.
Are you sure it can't be unlocked?
Many phones that don't officially support unlocking can be exploited to do so anyway. Some will lose relatively minor functionality in the process (camera enhancements were lost on mine, but the camera still works fine) but the tradeoff is often worth it.
He is right, because usa samsungs coming snapdragon exclusive and most of them not unlockable nowdays. Exynos version is fine.
You can "increase" your privacy but there's some limit, you can't block the manufacturer integrated trackers, the best you can is using something like rethink to block foreign app's trackers. Nothing more.
Cutoff internet access on all apps that expressly do not need it. Install Netguard or the likes if you don't used a VPN and see what apps are calling home.
I thought you needed root for app-level firewalls?
Straight from their site.
NetGuard provides simple and advanced ways to block access to the internet - no root required. Applications and addresses can individually be allowed or denied access to your Wi-Fi and/or mobile connection.
Blocking access to the internet can help:
reduce your data usage save your battery increase your privacy
Edit: Uses the same slot as VPN on a phone. Thus you have one or the other. Not both. PC is different.
The biggest hurdles are unavoidable under stock Android, but it really depends on your needs. What are you trying to protect against?
I would strongly recommend getting something with Lineage OS support at least. You can get a old phone for reasonably cheap
Just buy a new phone. Don't waste your life micro-managing malware. Spend your time on making money to buy a new phone.
Downvoted by broke bois but they ain't finding privacy anytime soon
Good advice but people have to suffer to learn these lessons.
Example: i spent years fighting windows but linux "too complicated" ... instead of wasting years learning linux i was running scripts and editing registry which always broke the OS eventually... rinse repeat...
This is the thing that gets me about that level of user. I understand basic users who dont care prefering windows, but I always kind of found it amusing to watch people "Linux too hard booo CLI.........now excuse me while I learn to manipulate the registry, and run scripts/disable certain things via the checks notes CLI."
I'm not micromanage it, that may be a privacy tradeoff i make for convenience. I want to see what I can do without constant maintenance.
Like the other guy said, some only learn the hard way.