Choosing secure technology and developing careful practices to defend yourself from surveillance.

Secure your email

Choosing the right email provider is mandatory. Minimun requirements are built-in end-to-end encryption and no-log policy.


All emails are secured automatically with end-to-end encryption. This means even we cannot decrypt and read your emails. As a result, your encrypted emails cannot be shared with third parties.


Automatically encrypts all your data on your device. Your mails as well as your contacts stay private. You can easily communicate with any of your friends end-to-end encrypted. Even subject and attachments as well as all your contacts are encrypted.


Criptext is an encrypted email service that guarantees security, privacy and control over all your email communications. Doesn't store any emails in its servers. All your emails are stored on your device alone, which means you're in control of your data at all times.

Encrypt your messages

Switch to a mobile secure messaging system. Even is true that no system is perfect, those are the best available alternatives or choose yourself from SecureMessagingApps, which is a good, independent source of recommendations for that.


Session is an end-to-end encrypted messenger that minimises sensitive metadata, designed and built for people who want absolute privacy and freedom from any form of surveillance.


Signal is made for you. As an Open Source project supported by grants and donations, Signal can put users first. There are no ads, no affiliate marketers, no creepy tracking. Just open technology for a fast, simple, and secure messaging experience. The way it should be.


Keybase aims to provide public keys that can be trusted without any backchannel communication. If you need someone's public key, you should be able to get it, and know it's the right one, without talking to them in person.

Keep your searches private

Get away from Google to avoid your online searches being tracked and being served with targeted ads.


The search engine that doesn't track you. Some of DuckDuckGo's code is free software hosted at GitHub, but the core is proprietary. The company is based in the USA.


StartPage, and its sister search engine Ixquick, are the only third-party certified search engines in the world that do not record your IP address or track your searches.


An open source metasearch engine that gathers results from other search engines while also respecting user privacy. One unique feature is that you can run your own instance.

Password manager and 2FA

Just remember a single password to rule them all.
Whenever possible, use two factor authentication (2FA) to access your online accounts.


Helps you create and manage unique passwords so you can strengthen your privacy and boost productivity online from any device or location.
It integrate directly into your favorite browser for a seamless browsing experience and allow self-hosted solution aiming at even better security.


KeePass is a free open source password manager, which helps you to manage your passwords in a secure way. You can put all your passwords in one database, which is locked with one master key or a key file. So you only have to remember one single master password or select the key file to unlock the whole database.


Go beyond the password and protect yourself from hackers and account takeovers. It works also offline so you can still access secured websites without internet access on your phone.

List of websites and whether or not they support 2FA

Use SSL on your site

Serve your pages securely with an SSL cerificate deployed in minutes.

Let's Encrypt

Let’s Encrypt is a free, automated, and open certificate authority (CA), run for the public’s benefit. We give people the digital certificates they need in order to enable HTTPS (SSL/TLS) for websites, for free, in the most user-friendly way we can. We do this because we want to create a more secure and privacy-respecting Web.


Certbot is an easy-to-use automatic client that fetches and deploys SSL/TLS certificates for your webserver. Certbot will also work with any other CAs that support the ACME protocol.

Qualys SSL test

This free online service performs a deep analysis of the configuration of any SSL web server on the public Internet.

Other tools

Some other useful tools that respect your privacy.

Standard Notes

AES-256 encryption. No one but you can read your notes. Easy to use apps on Mac, Windows, iOS, Android, and Linux. Automatic sync with no limit on data capacity. Web access. Offline access.


Encrypted cloud storage service. Similar functionally to the widely used Dropbox, with the difference being that Nextcloud is free and open-source, and thereby allowing anyone to install and operate it without charge on a private server, with no limits on storage space or the number of connected clients.


PrivateBin is a minimalist, open source online pastebin where the server has zero knowledge of pasted data. Data is encrypted / decrypted in the browser using 256bit AES in Galois Counter mode.

© ONO sendai 2019