Hello everyone! I have been currently debating switching email providers. I have been with Proton for a few years now (free user), but I have become increasingly disappointed. Firstly, I am not exactly a fan of the “we have apps for everything” model, particularly the integration of a password manager is just strange and the crypto wallet feels a bit nauseating, as I have my reservations about cryptocurrency. Consolidating all of my services in a company such as Proton feels misguided if the goal is to avoid walled gardens from the tech giants. There are also some other more recent things that have come up in relation to Proton that just make me question the legitimacy of Proton's “guiding moral imperative” as a privacy focussed company.

Moving on from that, I have mostly settled on two options due to their

• low cost
• generally adequate security (I understand email's limitations on this front, I just want something to be secure enough)
• transparency reports
• location of operation

The main thing I am struggling with here are the pros and cons between the two platforms.

Posteo seems to be less ideal of an email provider because they do not support ARC and lack a good DMARC policy. BUT they claim to support encryption with their calendars, but does this even matter if you are accessing the calendars with CalDAV (which I do not beliece is an E2EE connection)?

I think I trust Mailbox.org more when it comes to security, but I think their contacts / calendar situation is somewhat worse, and their French translation seems … lacking in spots (not that it matters to me much, but still is somewhat jarring for me).

I could just ignore the contacts/calendar problem, and use something like EteSync, but that would become just another thing to pay for, and another app to operate (if I need to use the WebDav bridge).

Any feedback on this would be greatly appreciated, I am really hoping this inspires some interesting conversations! And of course, feel free to tell me about better options if I have overlooked something. Have a lovely day :)

This is a topic I keep revisiting. It's constantly evolving, with new laws in different parts of the world happening pretty often. And also there's a lot of grey area with vague or incomprehensive language that hasn't yet been tested in courts.

I recognize that it's a bit of a niche topic, but I think there are a lot of us at Tildes who have to think about it. After all it potentially impacts anyone maintaining or building a non-platform web presence. It also applies to less obvious things like running an advertising campaign that involves media requested from a server you control (which can therefore potentially log requests).

For my part, I've needed to research laws relating to PII in order to come up with policies and practices in various contexts. In broad strokes it's pretty simple but as you get into details what I continue to find is that there are a lot of conflicting opinions both from professionals and lawyers. A lot of it is still open to interpretation.

I'm wondering what kinds of experience other tildenauts have around data protection and PII? Have you implemented solutions? Do you wonder about it for your own websites? Have you been involved with it at companies where you've worked? Do you have questions about it?

I've gone down the rabbit hole of self-hosting, and I'm wondering if I should try self-hosting my blog. The blog is currently on Netlify. I've left it there because I figure their infrastructure is much better than mine... but part of that is a CDN, and, despite the performance benefits, I'm not thrilled about the privacy implications of subjecting my users to that. I'm torn on that point.

That said, I'm on cable internet, so my upstream is abysmal. My site is mostly text and the site is low traffic, so maybe it's not a problem. What do you think? What are some of the implications of self-hosting the blog that I'm not considering?

Edit: Wanted to clarify a couple of things I realize weren't clear in my original posting. I'm already self-hosting a few dozen services from home on my own hardware. Port 80 and 443 both work, and I'm already running a Caddy reverse proxy to proxy to the other services. My question is less about whether self-hosting is a good idea and whether I should be keeping my blog on Netlify for the reasons above. My biggest concerns are the privacy implications of keeping with Netlify and their CDN vs. the performance implications of losing the CDN and serving via a ~30Mbps upstream connection.

Thank you for all the comments so far!

Hey all!

So I was thinking of how when looking at privacy, having a platform being a walled garden (i.e. data not being found on search engines) can feel like a worse experience for what is regarded as the open internet.

I don't have a solid solution for this. So my question to you is,

How do you respect privacy while sharing content for search engines on a platform?

Good evening, everyone. I was wondering if any of my fellow Tilders had experience with using Android's Private DNS feature on unconventional android devices e.g. WearOS, Android TVs etc.

It was quite easy to figure out exactly how to set up an alternative DNS server on these devices. By default, Google has hidden the private DNS setting on them, but it is still accessible from ADB. In both of my examples it is likely easiest to enable “Wireless Debugging”, pair the devices successfully, and then run the commands.

settings put global private_dns_specifier one.one.one.one (replace this with the pertinent server!!)
settings put global private_dns_mode hostname

The issue I have been running into, however, is if there is seemingly any form of content filtering enabled on the DNS server of your choice, the WearOS device seems to think internet is unavailable when first connecting. If you open the Settings app and leave it open for long enough on the Wi-Fi page, it will switch from “Internet not available” to “Connected”. Contrary to this, if you open an app like Samsung Internet for, it does not take this time and just refuses to use any configured Wi-Fi network.

To go into my specific situation in a little more detail, I use NextDNS configured with Hagezi Multi PRO++ block list. I have no issues on my S24+ with regard to internet being deemed unavailable by the OS (sure the occasional public Wi-Fi network blocks DoT—I just use mobile data then). I have also yet to try it on my Smart TV, which is frankly the more important target device than my watch (I will get around to it in the new year once the holidays are over).

This is all a potentially very convoluted way to ask what people's experiences are with this, and if they have faced similar problems to me when using providers like NextDNS, AdGuard etc. that provide content filtering options on their encrypted DNS connections.

Merci beaucoup !

I've been researching internet privacy and fell down the rabbit hole of...well, internet privacy. I started with deleting Facebook/Instagram and switching to fire fox + plugins. I would like to make more improvements but I really have no idea how, it started with deleting socials and next thing you know I'm looking at LineageOS and de-googling.

If anyone has any suggestions on where to go next while staying realistic/not going crazy, i would love to hear them. I am not really sure where to set my expectations, basically I would like to have more control of my data. The other day Google photos gave me a memory recap which kind of creeped me out! I am suddenly not fond of whatever is going on under the surface of Google photos that's making collages and trying to sell my photo books. Also g-board giving me a pop up in the text prediction row asking me to rate the app??? Ew.

I am a fan of self hosting and run a small NAS (open media vault) but this too quickly turns into the privacy spiral and leaves me thinking I should throw my phone into a river and live in the forest. Would love to hear your thoughts/advice/opinions!

after the comments in my previous topic, I proceeded to try Notesnook and Joplin after having issues with Nextcloud Notes (that I have already documented in my previous post)

Notesnook ain't bad if it's your jam. I found it easy to use and quite nice U.I. the only dings against it (obviously subjective) is that it really isn't supportive of markdown in an easy way, you have to pay for it cause there's no self-hosting option and you have to pay for the ability to have more than 5 tags.

Joplin's only ding imo is just that it has no web browser interface, but beyond that, there's nothing else fuctionality-wise I can really count against it, the U.I. is rather dated but the functionality is so stable that I am more than willing to deal with a dated UI. and I can self-host using my nextcloud instance so that's a great plus in avoiding additional charge.

So I personally recommend Joplin if you don't care about a dated UI in order to avoid having to pay a subscription if you are willing to self-host.

In other news, by the time I finally imported all my Nextcloud notes to Joplin, the nextcloud Notes App had managed to wipe 60 of my notes empty. I love nextcloud and its let me do wonderful things but the notes app they have is incredibly buggy when combined with their android app and how they are trying to implement markdown support.