This is a set of notes for personal privacy and security by a non-professional (I'm an ML engineer).
These guidelines are based on the following assumptions:
- Public services provided by any organization, for-profit or not (looking at your Mozilla), do not respsect your privacy. If you provide them data, they will store it unencrypted and will not delete it, even if explicitly asked. Only exception to this is large enough regulatory pressure (i.e. GDPR/CCPA), and only if the service is 100% compliant.
- Public services can and will be have data leaks and breaches. It's not a question of "if" but "when".