instead of changing banks, change the phone and try grapheneos's google sandbox thing. i myself already gave up, have lineage and gapps installed, but i do block most of analitics with blokada. i also try to use foss as much as possible, but sometimes theres simply no alternative. in the end of the day, you need to reconsider if you really want to go with the full front assault, or just block most of the stuff.
Privacy
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
Chat rooms
-
[Matrix/Element]Dead
much thanks to @gary_host_laptop for the logo design :)
It seems like a lot of things you want to do on your phone are unnecessary. Why not just use the banking websites in your browser at home? Why not just keep a paper calendar?
Everyone is giving solid advice.
It is a trade off as google controls so much.
I posted this before when another user posted a similar problem. Obviously yours is particular with google so some parts may not apply, but the gist is that you need to figure out your threat model.
You need to step back and review your threat model, then figure out the balance point between privacy and convenience/QoL. There is no such thing as complete privacy unless you go completely offline and live like a hermit. So something has to give, and your threat model will help you identify that. Figure out first what exactly you’re protecting, and from who. Then you can assess which ones you will deem non-negotiable when it comes to privacy, some where you can relax a bit in exchange for covenience (and this has levels as well), and lastly the ones where you have no choice because blocking something will make it cease to function. Having this threat model will also help you figure out what extent you would want to expose yourself depending on the service. Don’t put everything into the same tier because that will be impossible. Good luck.
Then don't. It's that simple. It is impossible to live a 100% private life, you have to value your own time and enjoyment.
The level of comfort, or rather lack thereof, you're fine with dictates how you'll use your devices. Privacy is mandatory to me, so every app that refuses to work with my setup gets the boot. Banking is done in the browser with a separate PIN device. The moment the device gets discontinued I'll go back to paper or phone like an old person. FOSS apps are FOSS and will break because they don't have millions of ad money to fund development. I know that and learned to accept that fixing setups is part of my digital life. That's just one end of the spectrum though. Everyone needs to find their balance with privacy to avoid getting fed up by it.
I'm using GrapheneOS, and suprising amount of apps (including my bank app) works without Google Services. And if there's something I need for work that doesn't work without them, I have another profile with sandboxed Google play (which isn't enabled on my main profile), and use the app there, where it's separated from all of my data. No need to root my phone, and so far it worked great.
As for sharing your Nextcloud stuff, what I did was for services that need to be public, I just got a cheap (like, few dollars per year) domain and use Cloudflare Tunnel (Cloudflared). It handles all port forwarding for you, and you don't have to make anything public on your router - just install cloudflared on the server and have it forward the port you want to your domain. You can also set up geoblocking and ACL pretty easily, so it's perfect for that.
I've however recently moved to using ZeroTier, because it has a nice mobile VPN app, so I just run zerotier (it's literally two commands to install and join a network) on my server, and if I need to access something there I just launch it on my phone and connect through ZeroTier. This, however, won't help if you want to share stuff from your server with others, since they'd have to install a ZeroTier client and also join your network. For Jellyfin, Nextcloud and Sunshine, though, it's amazing.
And if that still feels like too much hassle for you, I'd recommend looking into Proton Drive. I'd consider that one of the best hassle-free alternatives to GDrive, which launched recently.
Do what your comfortable with that doesn't impede on your life. i.e. you don't need to dig a moat and put up barbed wire around your house, you can just close the curtains at night as a starting point.
FWIW Banking apps have always worked for me on grapheneos without any extra work.
Make a list of what data is important to you, and who has access to it, and if your comfortable with it. If not use privacy guides to select a new provider
- Emails - Gmail -> something else?
- Location - Google, Cell phone company -> (your degoogled so google shouldn't have this)
- Search - Google -> ddg?
- Photos ?
etc, just do things that arn't too much trouble and increase your privacy