Skip to content

Protecting Your Privacy with Encryption

The following offers a brief and necessarily incomplete overview of a few FOSS tools, several of which employ encryption, that you can download and install to enhance the privacy of your interactions online.

This is important. If we only use encryption when we're working with important data, then encryption signals that data's importance. If only dissidents use encryption in a country, that country's authorities have an easy way of identifying them. But if everyone uses it all of the time, encryption ceases to be a signal. No one can distinguish simple chatting from deeply private conversation. The government can't tell the dissidents from the rest of the population. Every time you use encryption, you're protecting someone who needs to use it to stay alive. Why We Encrypt by Bruce Schneier

For some background on how encryption can protect your privacy, see A Deep Dive on End-to-End Encryption: How Do Public Key Encryption Systems Work?, a Surveillance Self-Defense tutorial from your friends at the Electronic Frontier Foundation. [Donate!]

Finally, keep an eye out for anti-encryption bills such as Burr-Feinstein (also here, here and here) and be prepared to take action when they resurface to protect your rights to privacy and security.

Thank you!

The GNU Privacy Guard (GPG)

The GNU Privacy Guard (GPG) is a complete and free implementation of the OpenPGP standard also known as Pretty Good Privacy (PGP). GPG provides the capability to securely encrypt and sign your data and communications. Both sender and receiver must have GPG installed to use.

Google Workspace

Documents transferred within the GSuite including Gmail and Gdrive are encrypted in transit with Transport Layer Security (TLS) which provides sufficient security for our unclassified usage. Communications from within the CivicActons GSuite to other services, say client email addresses, are not guaranteed to be secure.


ProtonMail is a free and secure email service that provides arguably better security than GPG encrypted email sent via (say) Gmail as it not only encrypts but the service does not harvest/index/resell metadata, such as who is emailing whom and when. To obtain true end-to-end encryption, both sender and receiver must be using ProtonMail.

Private Browsing

We recommend using both of these browser add-ons that enhance privacy without encryption:

  • Privacy Badger blocks most ads and cookie collectors. Open source and free.
  • uBlock Origin is an ad content blocker. Open source and free.

For search, we recommend changing your browser "default search" to DuckDuckGo or Ecosia as they protects privacy and avoid the filter bubble.

For strong security and privacy, consider Tor, the CivicActions VPN (for CivicActions business) or a commercial VPN (for personal use) is the best route, but the services above will have less impact on your browsing experience and can go a long way to minimizing the data others collect about you.

Private Messaging and Calling

We recommend, which is free (and open source). We like that their primary "forward secrecy" algorithm, along with the rest of their code, is GPL licensed on GitHub.

This page was last updated on February 16, 2023.