Personal Security Checklist

A comprehensive guide to securing your digital life. Track your progress as you go.

This checklist covers the essential security practices everyone should implement. Work through it at your own pace - you don't need to complete everything at once. Your progress is saved automatically in your browser.

Tip: Prioritize the Essentials

Items marked with a star are the most critical. If you're short on time, focus on those first.

Password Security

Strong, unique passwords are your first line of defense against unauthorized access.

  • Use a password manager

    Install a reputable password manager like Bitwarden, 1Password, or Dashlane. This is the foundation of good password hygiene.

  • Create a strong master password

    Use a passphrase of 4+ random words or 16+ characters. This is the one password you'll need to memorize.

  • Enable 2FA on your email account

    Your email is the key to all your other accounts. Protect it with two-factor authentication.

  • Enable 2FA on financial accounts

    Banking, investment, and payment accounts should all have two-factor authentication enabled.

  • Change reused passwords

    If you've used the same password on multiple sites, generate unique passwords for each one.

  • Check for compromised passwords

    Use haveibeenpwned.com or your password manager's breach checker to see if any passwords have been exposed.

  • Save backup codes securely

    Store your 2FA backup codes in a safe place (not on your phone or in your email).

Learn more about password security

Device Security

Secure the devices you use every day to access your accounts and personal information.

  • Enable automatic updates

    Turn on automatic updates for your operating system, browsers, and apps to get security patches promptly.

  • Use a screen lock on all devices

    Set up PIN, password, fingerprint, or face recognition to lock your phone, tablet, and computer.

  • Enable device encryption

    Most modern devices have encryption built in. Make sure it's enabled in your security settings.

  • Enable Find My Device

    Turn on Find My iPhone/iPad or Find My Device for Android so you can locate or wipe a lost device.

  • Review installed apps

    Remove apps you no longer use. Each app is a potential security risk.

  • Review app permissions

    Check which apps have access to your camera, microphone, location, and contacts. Revoke unnecessary permissions.

  • Back up your devices regularly

    Set up automatic backups to protect your data from device loss, theft, or ransomware.

Read more about device security

Network Security

Protect your home network and stay safe when using public WiFi.

  • Change your router's default password

    The default admin password is usually publicly known. Change it to something strong and unique.

  • Use WPA3 or WPA2 encryption

    Check your router settings to ensure you're using the strongest available wireless encryption.

  • Create a strong WiFi password

    Use a unique, complex password for your wireless network that you don't use elsewhere.

  • Update your router firmware

    Check for and install router updates, which often include security patches.

  • Set up a guest network

    Use a separate network for visitors and smart home devices to isolate them from your main network.

  • Be cautious on public WiFi

    Avoid accessing sensitive accounts on public networks, or use a VPN for protection.

Privacy Protection

Control what information you share and who can access it.

  • Review social media privacy settings

    Check who can see your posts, photos, and personal information on each platform you use.

  • Limit ad tracking

    Disable personalized ads in your device settings and major platforms like Google and Facebook.

  • Review location sharing

    Check which apps have access to your location and disable it for apps that don't need it.

  • Audit connected apps and services

    Review apps connected to your Google, Facebook, and other accounts. Revoke access for ones you don't use.

  • Use private browsing for sensitive searches

    Use incognito/private mode when searching for sensitive topics you don't want in your history.

  • Consider a privacy-focused browser

    Browsers like Firefox or Brave offer stronger privacy protections than some alternatives.

Get step-by-step privacy walkthroughs

Scam Awareness

Protect yourself from phishing, scams, and social engineering attacks.

  • Learn to identify phishing emails

    Know the red flags: urgency, suspicious sender addresses, generic greetings, and unexpected attachments.

  • Verify before clicking links

    Hover over links to see the actual URL. Go directly to websites rather than clicking email links.

  • Be skeptical of unexpected requests

    Legitimate companies won't ask for passwords or sensitive information via email or phone.

  • Know how to report phishing

    Learn how to report suspicious emails to your email provider and the FTC.

  • Educate family members

    Share scam awareness tips with family, especially elderly relatives who may be targeted.

Learn more about identifying phishing

Emergency Preparedness

Know what to do if something goes wrong.

  • Know your account recovery options

    Make sure your recovery email and phone number are up to date on important accounts.

  • Document important account information

    Keep a secure record of critical account information (stored in your password manager).

  • Know how to freeze your credit

    Learn the process for freezing credit with the three major bureaus in case of identity theft.

  • Have an emergency contact plan

    Know how to quickly contact your bank and credit card companies if you suspect fraud.

Continue Learning

Security is an ongoing process. Keep improving with our resources.

Read Our Blog More Resources