Most privacy lists tell you what to avoid. This one names the companies that built privacy into the product. None of them are perfect. Every one has limits. Here is what holds up and where it breaks down.
Search
DuckDuckGo
No tracking, no search profiles, no filter bubble. US-based and subject to US law. Collects some non-personal data. Had a Microsoft tracker controversy they have since fixed. The browser is stronger than the search engine for privacy.
Browsers
Brave
Built-in ad blocking, fingerprint randomization, Tor integration. Strongest mainstream browser for out-of-the-box privacy. The Brave Ads replacement program remains controversial. US-based. Crypto wallet integration is polarizing.
Firefox
Open source, nonprofit-backed, solid Enhanced Tracking Protection. Defaults are not maximally private. You have to configure it. Telemetry ships enabled. US-based.
Tor Browser
Gold standard for anonymous browsing. Multi-relay routing defeats fingerprinting. Slow. Many sites block exit nodes. Logging into accounts while using it defeats the purpose.
Proton Mail
E2E encryption between Proton users, zero-knowledge storage, Swiss jurisdiction, open source. Email sent to Gmail travels unencrypted. Proton has complied with Swiss court orders, including handing payment data to the FBI in one documented case.
Tuta (formerly Tutanota)
German jurisdiction, E2E encryption including subject lines, open source. Smaller ecosystem than Proton. Has complied with German court orders. Subject to EU law.
VPN
Proton VPN
Swiss jurisdiction, audited no-logs policy, open source, free tier. A VPN moves trust from your ISP to the provider. Proton can still see traffic metadata. Not a silver bullet.
Mullvad
Swedish provider. Cash and crypto accepted. No email required. Account numbers only. Audited no-logs. Swedish police raided their servers in 2023. Mullvad says nothing was obtained because nothing existed to take.
Password Management
Bitwarden
Open source, audited, self-hosting option, zero-knowledge encryption. US-based. Cloud-hosted means Bitwarden holds your encrypted vault. A server breach exposes the vault. Your master password strength is the last wall.
AI
Claude (Anthropic)
Declined government surveillance contracts. Turned down a Pentagon mass surveillance deal. Publishes a data request policy limited to valid legal process. Cloud AI is not zero-knowledge. Conversations can be compelled. Do not discuss truly sensitive matters with any cloud AI.
DuckDuckGo AI Chat / Duck.ai
Anonymizes AI queries and proxies them to underlying models without tying them to your identity. The underlying models still process your input. The anonymization layer is valuable but not absolute.
Devices & Ecosystems
Apple
On-device processing, strong encryption defaults, App Tracking Transparency, Private Relay. Has resisted some government backdoor requests. US-based trillion-dollar company with its own data interests. iCloud is not E2E encrypted by default. Advanced Data Protection is opt-in. Has complied with government requests for iCloud data.
The Layer None of These Touch
You can run every tool on this list and your name, address, phone number, relatives, income estimate, and physical description will still be for sale on BeenVerified, Spokeo, WhitePages, and dozens of other sites.
That data does not come from your apps. It comes from public records, loyalty programs, credit headers, voter registrations. Privacy tools protect your communications. They do not touch the data broker layer. That is the gap Dark Scrub fills.
Your data is their product. We take it back.
View Service Tiers— J. Daniel, Dark Scrub