← all guides
Technology

We take no money from any service. Nothing here is sponsored. We rank by public privacy policies, open-source posture, portability, surveillance incentives, accessibility, and cost.

Choosing digital services that do not own you

Digital services are not only tools; they are little governance systems. They decide where your messages live, whether your photos are portable, who can see your files, how hard it is to leave, and whether the product earns money by helping you or by profiling you.

The honest one-paragraph answer. Prefer services that minimize data collection, let you export or migrate, use open standards where possible, and make money in a way that aligns with you. You do not have to self-host everything. Start with the places where lock-in hurts most: messaging, email, cloud files, notes, calendars, passwords, search, browser, and AI. If a free service has no obvious customer other than advertisers, assume your behavior is part of the product.

Weigh what you care about

AxisWhat to look forWhy it matters
PrivacyData minimization, end-to-end encryption where appropriate, clear deletionLess collected means less leaked, sold, subpoenaed, or trained on
OpennessOpen source, open protocols, public audits, independent clientsInspectable systems are easier to trust and harder to trap you in
PortabilityExport tools, open formats, migration paths, interoperabilityThe right to leave is what makes a service behave
RespectNo surveillance ads, manipulative feeds, dark patterns, or hostage defaultsIncentives shape the product more than slogans do
AccessibilityWorks on your devices, supports family/work needs, has a sustainable priceA principled tool you abandon does not help
EconomicalHonest total cost, fair free tier, no surprise lock-in feesPaying can be good when it means the service answers to you

Harden before you migrate

The first move is often not switching services. It is making the service you already depend on less fragile while you decide whether it deserves replacement.

SituationFirst hardening moveMigration trigger
primary emailMFA, recovery codes, backup email, export testads, lock-in, weak security, or impossible export
cloud fileslocal copy, sharing review, folder ownership checkirreplaceable files cannot be exported cleanly
notes and docsexport one notebook or folder to an open formatthe archive is trapped in a proprietary system
messagingcheck encryption, backups, linked devices, group needssensitive chats or social graph depend on weak defaults
search or browserchange defaults, reduce extensions, review synctracking or lock-in conflicts with the way you use it
AI and automationsave important prompts and outputs outside the toolwork becomes dependent on a closed workflow you cannot retrieve

Hardening buys time. It lets you move deliberately instead of panic-migrating the account that quietly holds the rest of your life together.

A service audit in five questions

  1. What is the business model? Subscription, ads, data brokerage, enterprise sales, nonprofit funding, public funding, or open-source support all create different incentives.
  2. What data does it need? A maps app needs location for some features; a notes app usually does not need your social graph.
  3. Can you export in a useful format? Export should be readable, complete, and importable somewhere else.
  4. What happens if the company changes? Acquisition, shutdown, price increase, API restriction, or policy change should not destroy your archive.
  5. Does the interface respect refusal? Privacy choices, cancellation, deletion, and notification controls should not be hidden behind dark patterns.

Choose the service layer before the brand

The digital-services shelf is broad on purpose: it includes account hardening, data cleanup, incident response, private alternatives, open-source tools, and mainstream checkups. Do not compare them as if they do the same job.

NeedBetter first layerWatch out
account takeover preventionpassword manager, MFA, 2FA directory, security checkupbuying identity monitoring while the reset email is still weak
suspicious link, file, or domainURL/file scanner with a privacy-aware submission choiceuploading private files to public scanners
exposed personal datasearch-result removal, broker opt-outs, public rights toolsassuming removal from one search engine removes the source
identity theft or fraudofficial recovery/reporting channel, then monitoringtreating a paid monitor as the recovery plan
old accountsdeletion directories, export first, then closedeleting before saving data or canceling subscriptions
sensitive collaborationend-to-end encrypted or exportable servicechoosing a private tool that collaborators cannot actually use

This layer-first habit keeps the purchase honest. A good tool for one layer can be useless or even distracting in another.

Make an account-dependency map

Account or serviceWhy it mattersWhat to secure or export first
Primary emailResets many other accountsStrong MFA, recovery codes, backup email, export path
Phone carrierControls SMS, number porting, and account recoveryAccount PIN, port-out protection, recovery contacts
Cloud storageHolds documents, photos, identity scans, backupsLocal backup, export test, sharing review
Password managerHolds every other loginMaster passphrase, MFA, emergency access, recovery plan
MessagingHolds social graph and sensitive conversationsBackup settings, device links, group norms
Notes and calendarsHolds plans, health, work, and family logisticsExport format, offline copy, collaborator access

Most lock-in is invisible until something breaks. A dependency map shows which services would hurt if the company changed terms, closed your account, raised prices, or lost data. Start by securing the accounts that can reset everything else, then make exports routine for irreplaceable archives.

Run the exit test before committing

Before moving your life into a service, pretend you are leaving it next year. Can you export your files, messages, contacts, calendars, photos, notes, purchases, or model outputs in a format another tool can use? Can collaborators keep access? Does the account close cleanly, or does it leave subscriptions, shared links, device backups, and identity hooks behind?

Service areaExit questionBetter sign
email and contactscan another provider import the archive?standard formats and forwarding plan
cloud filesdo folders, metadata, and sharing survive export?local sync plus clear ownership
notes and docsare exports readable without the app?Markdown, PDF, plain text, or open document formats
photosdo dates, albums, and originals survive?original files plus metadata export
AI or automationcan prompts, outputs, and workflows be saved?export, API access, or local copy

A service that passes the exit test has to keep earning your trust. A service that fails may still be worth using, but only with less irreplaceable data inside.

The data-minimization habit

Before adding a new service, ask what you are about to centralize there. Documents, photos, voice notes, location trails, contacts, health details, identity scans, passwords, and AI chats have different risk levels. The goal is not to hide from every tool; it is to stop putting every part of yourself in one vendor by default.

Use separate tools when separation reduces blast radius: one email for finance, one cloud folder for shared family logistics, one low-data messenger for sensitive chats, one password manager for secrets, and offline or local copies for archives you cannot lose. The best privacy tool is sometimes a boundary, not a product.

When something has already gone wrong

If there is active harm, use the narrowest serious response path before shopping for a general privacy bundle.

SituationStart hereWhy
scam, impersonation, or fraudofficial fraud or cybercrime reporting portalsreports create a record and can feed law-enforcement patterns
identity theftidentity-theft recovery workflowthe useful output is a report, letters, and specific next steps
intimate image abusehash-based image-abuse tools and victim-support resourcesgeneral search removal is too weak for urgent image spread
exposed phone, address, or emailsearch-result removal, broker removal, deletion requestsreduce exposure at both the search layer and source layer
compromised accountpassword reset, revoke sessions, MFA, recovery-code refreshcleanup fails if the attacker can still get back in

The official route is not always satisfying, and it may not solve everything. But it gives the problem the right shape. After that, monitoring, data removal, legal help, platform reports, or support organizations can be chosen more clearly.

The traps

  • Free without alignment. Free can mean nonprofit, open-source, public-interest, or ad-funded surveillance. The difference matters.
  • Export that technically exists. A download nobody can import is not real portability.
  • "Private mode" as a privacy strategy. Browser private windows do not stop services, sites, or networks from collecting many kinds of data.
  • Ecosystem gravity. Convenience becomes coercion when leaving means losing contacts, files, purchases, or identity.
  • Dark patterns. The FTC has documented design tricks that steer people into privacy loss, charges, or unwanted choices.
  • One login to rule them all. Single sign-on is convenient, but it can make one account failure cascade through your life.
  • Collaboration lock-in. A tool can be easy for you and impossible for collaborators to leave, which changes the ethics of choosing it for a group.
  • Archive hostage-taking. Photos, notes, files, and messages feel portable until the export is partial, proprietary, or too large to use.
  • Settings as scavenger hunt. If deletion, cancellation, privacy, or notification controls are hard to find, that is part of the product design.

A reasonable default

Do one migration at a time. Start with the service holding the most sensitive or irreplaceable data. For messages, use end-to-end encrypted tools where both sender and recipient benefit. For files and notes, pick exportable formats. For cloud accounts, turn on multifactor authentication, trim old data, and know how to download your archive. Keep a short list of accounts that would be painful to lose, then make those boringly secure.

A migration order that does not break your life

Start with backups and exports before switching tools. Then move the lowest-social-friction service first: browser, search, notes, password manager, cloud backup, or email aliases. Save social services, messaging, calendars, and family/work collaboration for later because they involve other people. A clean exit plan is part of a humane tool choice.

Useful anchors: FTC Bringing Dark Patterns to Light, the NIST Privacy Framework, CISA Secure Our World, FTC ReportFraud.gov, FTC IdentityTheft.gov, NCMEC Take It Down, StopNCII.org, Signal's privacy and security overview, the Matrix project's open network explanation, the Data Transfer Project, and EFF Surveillance Self-Defense.


Compare digital tools on privacy, openness, portability, respect, accessibility and cost in the digital-services explorer.

Read next
A healthier relationship with technology

Most of the technology in your life was designed by people whose job was to capture as much of your attention, data, and money as possible. That is not a conspiracy. It is a busine…

Buying a laptop you can repair, upgrade, and keep

A laptop is a long-term tool pretending to be a seasonal product. The spec sheet makes you compare processors, screens, and thinness; the values sheet asks whether the battery can …

Choosing a phone you can keep longer

A phone is small enough to feel like a gadget and important enough to be infrastructure. It carries your location, messages, photos, accounts, payments, health details, and attenti…