One thing that might help is switching to free/libre system
distributions for phones[1], there is Replicant in that list currently.
There are somethings that it doesn't protect from, but for that you
should ask them.

Besides, install GNU Icecat to have various other security and software
freedom improvements, besides LibreJS to avoid the JavaScript trap[2] or
have JS entirely disabled and a paranoid browser as default.

Even with that, be careful with ultrasound cross device tracking[3] and
other nasty stuff that autoexecuted JS brings[4] both to browsers and
applications which only download webapage from specific provider to
brand the application as their own (while most of the stuff is really in
the webpage).


# References


[1]: https://www.gnu.org/distros/free-non-gnu-distros.html

[2]: https://www.gnu.org/philosophy/javascript-trap.html

[3]:
https://media.libreplanet.org/u/libreplanet/m/the-surreptitious-assault-on-privacy-security-and-freedom/

[4]:
https://www.fsfla.org/ikiwiki/blogs/lxo/pub/who-is-afraid-of-spectre-and-meltdown

-- 
* Ativista do software livre
	* https://libreplanet.org/wiki/User:Adfeno
	* Membro dos grupos avaliadores de
		* Software (Free Software Directory)
		* Distribuições de sistemas (FreedSoftware)
		* Sites (Free JavaScript Action Team)
	* Não sou advogado e não fomento os não livres
* Sempre veja o spam/lixo eletrônico do teu e-mail
	* Ou coloque todos os recebidos na caixa de entrada
* Sempre assino e-mails com OpenPGP
	* Chave pública: vide endereço anterior
	* Qualquer outro pode ser fraude
	* Se não tens OpenPGP, ignore o anexo "signature.asc"
* Ao enviar anexos
	* Docs., planilhas e apresentações: use OpenDocument
	* Outros tipos: vide endereço anterior
* Use protocolos de comunicação federadas
	* Vide endereço anterior
* Mensagens secretas somente via
	* XMPP com OMEMO
	* E-mail criptografado e assinado com OpenPGP