- ✓A handful of habits cut most of your privacy risk — you don’t need to be a security expert.
- ✓Lock down accounts first: unique passwords in a manager, plus two-factor authentication.
- ✓A VPN hides your browsing from your ISP and secures public Wi-Fi — one strong layer, not the whole answer.
- ✓Cut tracking at the source with a privacy browser, tracker blocking and a private search engine.
- ✓In Ireland you have real GDPR rights, enforced by the Data Protection Commission.
The short version
Online privacy isn’t about doing a hundred things perfectly — it’s about doing a few important things and leaving them running. Secure your accounts, encrypt your connection, cut the tracking, and keep your software current. Do those and you’ve closed off the ways ordinary people actually get compromised or profiled. And in Ireland you have a genuine backstop: real GDPR rights, enforced by the Data Protection Commission. Here’s the checklist, in priority order.
Strong accounts, an encrypted connection, less tracking, up-to-date software — that’s 90% of online privacy.
The privacy checklist
Work down the list — the first two matter most:
- 1Lock down your accounts
Use a long, unique password for every account, kept in a password manager, and turn on two-factor authentication (2FA) everywhere it’s offered — especially email, banking and social media. This single step blocks the most common way people get compromised.
- 2Use a VPN for your connection
A VPN encrypts your traffic so your ISP can’t see the sites you visit, and it protects you on public Wi-Fi. It’s the most effective single tool for connection privacy — see do I need a VPN if you’re weighing it up.
- 3Cut tracking in your browser
Use a privacy-respecting browser (Firefox or Brave), add a tracker/ad blocker like uBlock Origin, and switch your default search to a private engine such as DuckDuckGo. This stops much of the cross-site profiling before it starts.
- 4Use encrypted messaging
Prefer apps with end-to-end encryption — Signal, or WhatsApp — so the contents of your messages stay between you and the recipient.
- 5Keep everything updated
Turn on automatic updates for your OS, browser and apps. Most real-world attacks exploit old, unpatched software — updating is free security.
- 6Review app permissions and ad tracking
On your phone, revoke permissions apps don’t need (location, microphone, contacts) and turn on the “ask app not to track” / limit-ad-tracking setting on iOS and Android.
- 7Be careful on public Wi-Fi
Treat café, hotel and airport networks as untrusted: keep sensitive logins for a VPN or your mobile data. Our public Wi-Fi guide covers the real risks.
- 8Think before you share
The biggest privacy leak is often us — oversharing on social media, reusing the same details everywhere. A little restraint goes a long way.
Your GDPR rights in Ireland
Privacy isn’t only about tools — the law is on your side. Under the GDPR and the Data Protection Act 2018, any organisation holding your personal data must handle it lawfully, and you can:
- Ask what they hold about you (a subject access request) — usually free.
- Have inaccurate data corrected, and in many cases have it erased.
- Object to certain uses, including direct marketing.
- Complain to the Data Protection Commission if a company won’t comply.
It’s also why Irish providers can’t freely sell your browsing data — see is your ISP tracking you — and it underpins the reforms in our guide to data retention and surveillance laws.
What a VPN does — and doesn’t
A VPN is one of the strongest single steps on this list, but it’s worth being clear about its lane. It encrypts your connection, hides your browsing from your ISP, secures public Wi-Fi and changes the location websites see. It doesn’t stop malware or phishing, block cookies, or hide you from services you log into. Treat it as one important layer alongside the others — the full picture is in do I need a VPN.
A realistic starting point
If the whole list feels like a lot, do just three things this week and you’ll be ahead of most people: turn on 2FA for your email and bank, install a password manager, and set up a VPN. Add the rest whenever you get to it. Privacy is a habit, not a project — and a few good defaults, left running, do the heavy lifting.
From here: our best VPN for privacy ranking, or are free VPNs safe if you’re tempted by a free one.


