How to protect your data on a mobile device: 7 essential tips

Every day it seems, new stories come out about large data breaches, scams that drained victims’ life savings, and new app features that raise privacy concerns (Instagram Maps comes to mind). If you’re on a mission to safeguard your data, especially on your phone, then here are seven tips to follow to keep your online data safe and secure. 

1. Use strong passwords and biometrics 

First, make sure your physical data is protected. A lost or stolen phone can pose a serious threat to your data, especially sensitive accounts like banking, email, etc. Enable the auto-lock feature and set up a strong PIN or password (don't use anything easily guessed like a birthday or family name) as well as biometrics — either facial or fingerprint recognition.

2. Enable two-factor authentication (2FA) on sensitive accounts  

Sensitive accounts like banking, email, cloud storage, even your messaging (if you’re using a free texting app, for example) should get the strongest protection on your phone. Those accounts should be set up with two-factor authentication, making it impossible to sign in with a password alone (which could be leaked or compromised). 2FAs can be set up using a phone number or email, where a code to complete the log-in process is sent to that number or email inbox. But we recommend using an authenticator app, in case your email account is hacked or your phone number compromised, such as through a SIM swap scam. You can take advantage of free authenticator apps, such as Google Authenticator or Microsoft Authenticator.  

3. Install apps only from trusted sources  

An easy way to avoid malware that could compromise your personal data is to install apps only from either the official App Store (if you’re on an iPhone) or the official Google Play Store (if you’re on an Android phone). Do not install apps that come from third-party marketplaces or websites that don’t lead you to an official app store. And regularly delete apps you no longer use.

4. Keep your operating system updated  

We know that mobile storage can be a touchy subject, and operating system updates can take up more of that limited space — but it’s worth it. Hackers often target older versions of iOS and Android, so a proactive way to keep your phone safe is to accept system updates when you're notified there's a new OS.  

5. Review app permissions  

Every app will ask for permission to use certain functions on your phone. For example, social media apps like Instagram and TikTok will ask for permission to use your camera (so you can take pictures and record videos through the app), your microphone, and your storage to access photos/videos. You can choose to disable those, of course, but then the functionality of those apps will be limited. As a rule of thumb, it’s best to regularly review all your apps’ permissions to ensure that nothing seems out of place, like a weather app that has permission to use your camera or microphone. (And for personal safety, limit what apps can discover and use your location.)

6. Back up your data 

Should your phone be stolen, or your data wiped, recovery will be easier if you have it backed up. Photos, videos, and other files can easily be held in a cloud storage account. While most free versions will have a usage cap and require paid upgrades for more storage, you can try to split up files between different cloud accounts or regularly audit and delete files that are not necessary (like old screenshots) to save some space.

It's also a great idea to set up Find My Device so you're able to locate, lock, or even erase your phone's data if it's lost.

7. Limit your activity on public Wi-Fi  

Public Wi-Fi (like at a coffee shop or McDonald’s) are notorious for not being secure. While using them to scroll through your feed or look something up on a browser is perfectly fine, avoid using them to access banking apps or any other sensitive accounts, as your activity could be easily hacked. Turn off Wi-Fi and Bluetooth when not using them to avoid unauthorized connections. 

In addition to these tips, you should also educate yourself about common phishing (or smishing) scams, so you’re better prepared to avoid them should you get that random text or email. These are also commonly used for SIM swap scams, which could compromise your accounts, privacy, and two-factor authentication. Always make sure any links you receive are legitimate before clicking on them.

>> Read more: Some private texting apps can help you limit collection and sharing of your data.

Frequently asked questions about mobile safety