Smartphone, don't spy!
A checklist for your mobile security

You care about your safety
You think about your threat situation
You share this knowledge with others
You check this list from time to time
You have already taken part in a cryptoparty
You know your most important contacts and logins by heart
Switch off your phone before sensitive meetings
You are not using a dumbphone
You have removed your SIM card number
You have set up a screen lock
Notifications on your lock screen are deactivated
Your smartphones are encrypted
You can switch off your devices quickly
You are using a privacy film
Your SIM card is protected with a PIN
You do without memory cards
Do not use biometric unlocking
You have deactivated USB debugging
You bought and set up your devices yourself
You assess your risk before looking for spyware yourself
You contact help centers about a new second device
You only use your own charging cable
Your operating system has verified boot
The bootloader of your device is locked
Your device does not display red or yellow warning messages at startup
You have sealed your device
You have noted the unique numbers of your device
You make regular backups
Your backups are encrypted
Your backups are stored decentrally
You practise restoring your backups
You do not store unused appliances in your home
You do not unlock your smartphone on demand
You don't share your passwords with other people
You have overwritten your phone once
Deactivate Wi-Fi if you don't need it
Deactivate Bluetooth if you don't need it
Avoid Bluetooth devices such as earbuds if possible
Deactivate positioning if you don't need it
Deactivate NFC if you don't need it
Cameras that are not in use are covered
You use a burner phone
You use data-saving telephone tariffs
You have objected to the marketing of your transaction data
You have not activated your mobile data connection continuously
Refrain from taking photos and videos at demonstrations
You don't take your cell phone to the demo
You don't use apps like "SnoopSnitch"
You use anonymous SIM cards
You use your smartphone exclusively for one SIM card
You often use other SIM cards and a proxy phone
Deactivate your sim card when traveling with a group
Do not use your anonymous SIM card at the same time as a non-anonymous card
You deactivate your SIM card when traveling in modern cars
Switch off all electronic devices when crossing fortified border installations
You don't give out your phone number
You don't make calls with your anonymous card
You have purchased SIM cards and phones anonymously
You get your phone credit anonymously
You suppress your phone number when you make calls
Deactivate your voicemail
Dial emergency numbers such as 110 and 112 carefully
You have set up a block for third-party providers
You don't give your name immediately when you answer the phone
You are using a free operating system
You are using GrapheneOS on a compatible device
You have freed your phone from bloatware
You have deactivated or deleted your advertising ID
Are your apps and system up to date?
Use a password manager
You only install apps from trustworthy sources
You check access rights carefully
You check which app has access to the Accessibility Services
Do not take screenshots of personal or sensitive data
You use alternative app stores
You do not share your Google or Apple account with other people
You do without Google Play services and Apple services
You have set up fake accounts with Apple, Google or Microsoft
You use privacy-friendly apps
You waive root rights
You use secure messengers
Activate two-step verification in your messengers
You use disappearing messages
You do without voice messages
You know all participants in sensitive chat groups
Do not share your Apple ID and deactivate iMessage
You do without Apple devices
You have activated lockdown mode on your iPhone
You restart your phone often
You have reset your device to factory settings
You use the "NO STALK" app (unfortunately this app is no longer available)
You are not transmitting your screen to a smart TV
You are careful when scanning QR codes
You clean up links before you share them with others
You do not carry your bank card directly next to your smartphone
You use privacy-friendly payment options
You are careful with your personal data
Use alternative frontends
You use decentralized open source alternatives to common social media platforms
You use passkeys
You secure your accounts with two-factor authentication
Your second factor is on a separate device
You are using an ad blocker
You use different pseudonyms and email addresses
You do not use your pseudonyms at the same time
You use Tor or the Tor browser
You use privacy-friendly search engines
You only use encrypted cloud storage
You use VPNs wisely
You delete metadata from your images
You do not publish images with shadows and time
You consistently refuse your consent on websites
You read through data protection declarations
You encrypt your emails or do without them
Avoid logins via Google, Apple or Microsoft
Delete unused accounts
You check whether you are affected by data leaks
You check the authenticity of important messages
You do not reply to spam messages
You have agreed a secret password with your family
You support this project