I’m looking into getting a flip phone with a separate number so that I can sign up for a few apps that without associating them with the complete identity profile in the data marketplace that is linked to my actual phone number.
To be clear, the apps will still be downloaded and utilized on my primary smartphone. But the phone number through which I receive verification codes during registration will be a separate device.
Has any one done this? Tips for selecting a cheapo phone and prepaid service?
Honestly, if you don’t want a separate device, I’d sign up for a VoIP number. I use voip.ms, it’s a dollar or two a month for the number, and you pay per minute and per text (about a penny each, IIRC). You can forward calls to your primary number, or set up a SIP app (I’m using one called ZoiPer). I usually load it up with $20 per year or so.
A lot of services block known voip numbers. I remember my Google voice number not working on a lot of sites
The problem I have with this is that it still links to my primary number through data profiling. Seems like a good option if I just want to keep my personal number separate from my work clients. But for data privacy, idk.
Through data profiling? Not sure what you mean.
Every person has a massive profile (table / database) built all about them. This isn’t conspiracy. This is big business. There are a few data brokerage companies focused on people:
-Acxiom (worlds biggest broker, pretty much every piece of junk mail you get drives from a company purchasing data from them)
-TransUnion (credit, such as if you pay the minimum bill or are late on payments)
-CoreLogic (all real estate purchase information)
-FourSquare Labs (location broker which i find to be particularly insidious)
There are also databases built specifically for business entities, such as Data Axle.
And companies will purchase packages from ALL of these data brokers when they want to target a specific audience.
Ah, gotcha. I kinda figured that was out there, but didn’t have names to associate with them.
I guess I’m wondering how a VoIP number would differ significantly from a burner phone. Obviously the burner is more private (assuming you pay cash, there’d be zero way to trace it anywhere). Signing up for a VoIP number with an alias seems almost as untraceable, assuming the VoIP company isn’t selling your data?
Why would we assume the VOIP company isn’t selling our data?
A bit out there, but I plan on doing this soon:
- Get a SIM
- Grab an old Android phone
- Relay SMS to Matrix via the SMS bridge
I already use Matrix bridges for Signal, Discord, IRC, etc, so this means the number is never tied to my location, but I can use it for things like banking 2FA.
You should publish a guide once you do it. That sounds pretty interesting.
I could, but honestly the guides for Matrix and then for the mautrix (not a typo) bridges are pretty good if you click through to them: https://matrix.org/ecosystem/bridges/sms/
Umm, how does this protect your privacy?
SMS messages don’t include your location. The cellphone towers know your location. Getting a transmission from sms to matrix means it’s going from old phone over the Internet to a cell tower to your real phone/or cellular enabled laptop.
The provider of the SIM on the old phone who provides the phone number, and data brokers associated with them, will never be able to associate that number with my actual location, because the old phone will be in a static location.
The provider of the SIM in my main phone will have a number that is never used, and it’s location can never be tied to the number that is actually used because the old phone relays VI’s matrix.
Is it better than avoiding SMS altogether? No. Does it obfuscate? Yes.
I also plan on having VNC on the old phone for running banking apps that GrapheneOS may not support in the future.
That’s, not defeating anything.
Your actual location is still being sold. They weren’t tracking you through sms in the first place. The phone company doesn’t need you to make phone calls to know where you are.
Data brokers share data. All that changes is that you are now worth €0.015 vs €0.010.
Your plan is a lot more effective if you just ask for paper statements from your bank and keep your cellphone at home. Or just turn off your cellphone and check for messages and VM like the ancients used to do on occasion.
Your cell phone company associates SMS with your location all the time, and sells that data to brokers who overlay it with app data associated with a phone number.
I’m not sure what you’re not following. Just because another provider has my location, doesn’t mean a broker can associate that location to a phone number on another provider (and thus connected apps).
I’m not sure what you are t following. They’re associating your location with your phone number non stop. The sms message is just you sending a message.
Another provider has you location, another broker can pay for your information. Brokers clean up all the data they receive and match it to specific individuals. That’s how they do their job.
Broker 1: hey got any data on person01?
Broker 2: hey I got data on person01, how much you willing to pay?
Broker1: sweet, I’ll pay this much.
OK, let’s do this step by step. We’re going to use a prepaid SIM like op mentions:
- Buy SIM prepaid at Walmart with cash
- Activate that SIM in a phone at a static location, not your home
- This is sold to broker 1
- Buy SIM from normal provider using your CC
- This data is sold to broker 2
- Broker 2 asks broker 1 for into on person
- Broker 1 has no discrete match due to lack of payment data
- Broker 1 is stuck with cheaper data on somebody they know exists. The phone is in a static location switched on and proving location data.
- Periodically broker 1 asks other brokers for information on people who also are in the same place at the same time.
- Broker 2 says they have a match and sells it to broker 1.
- Broker 1 & 2 are able to resell much more valuable data on some privacy freak.
Data isn’t some silo locked up. They have data sharing agreements allowing them to look at each others data and pay for transfers of useful information. Their profit comes from making initial collection agreements with the phone companies/banks/stores giving them sole access to raw data.
At the end of the day OP wants to do all of this for his bank’s 2fa codes. The bank that knows who he is and where he lives due to know your customer laws.
Just disable internet banking, paper statements, stops all data from being made in first place.
Cash only phones only work from a privacy perspective if they are your single phone. As a secondary phone they’re just another number on your data broker profile.
This is standard practice for me. You don’t even need another flip phone. Most phones come with a dual sim tray. I keep the 2nd sim in my phone and keep the sim switched off in the settings. I do all signups with this number.
Got flip phone recommendations?
This is the answer I was looking for! Thank you!
The IMEI number on the phone is essentially locked to the device, swapping sims won’t change it. So a phone activated under your real name on one network could technically get traced back to you even when using a different SIM card.
Also, carrying a phone with both SIMs active is completely unprotected from correlation attacks by anyone with access to the cell tower data. It’d be blatantly obvious that the location of one SIM is the same as the other all the time.
All depends on the threat level you expect, but if you’re worried about a VOIP account being compromised to get your real number, you are talking about pretty sophisticated actors.
It’s not really compromising but that the VOIP service sells or shares my info as part of their T&C so it would mean having the same level of security as my putting my primary phone number out there, only now I have 2 entities selling & sharing my info, plus the VOIP cost.
Just be careful about the sim expiring. Each network will have its own rules. The sim I have stipulates that it needs to be topped up at least once every 6 months and a call or SMS sent every 3 months to keep it active.
Depends on country. In the United States, you might look at something like the T-Mobile Connect prepaid plan and the Nokia 225 4G. And yes, prepaid numbers absolutely do work for app registrations. I’ve been on prepaid for years and had no issues. It’s voice over IP numbers that have problems.
A way around that is to port a prepaid number to a voip service. I’ve kept old numbers that way when moving
Yes, I created an entire fake identity with it that I’m now using here so I can say what I want without worrying about loosing my job.
One thing to keep in mind is that most prepaid providers require you to use the phone every once in a while, or you loose the number (don’t ask me how I know and don’t ask me what happens if I forgot my password)
But Lemmy doesn’t require a phone number? Unless you’re saying you used the phone number to register an email, then used that email for Lemmy. I have a hard time believing your job would jump through that many hoops to track down your Lemmy comments. Seems like it wouldn’t be worth their time. Maybe the NSA.
For me it’s more of an experiment, to avoid advertisement and just to be sure when some person takes power that does care about stupid things like my political views, sexuality, etc. That has happened before. And the technology is there to scrape this data in mass quantities, so someone is going to do it at some point.
That is good advice, thank you! Is there a particular brand you’d recommend (DM me if you don’t want to share publicly). I was looking into a few major retailer flip phones but they both required the retailer to scan it for activation and I wasn’t entirely sure what that does tracking-wise, so I stopped to do some more research.
Chances are I live in a different country, sp probably not able to help you, sorry! I tried buying an anonymous sim card in Spain, but I don’t think that’s actually possible there for instance.
