The Complete Online Security Checklist: 15 Steps to Lock Down Your Digital Life
The Complete Online Security Checklist: 15 Steps to Lock Down Your Digital Life
Over 3,200 data breaches exposed 353 million records last year. Your accounts are targets. This checklist gives you 15 concrete steps to protect yourself — ordered by impact, completable in one afternoon. Print it, work through it, and you will be more secure than 95% of internet users.
This is the actionable companion to our complete digital privacy guide.
Critical (Do Today — 30 minutes)
1. Install a password manager — Bitwarden (free) or 1Password ($3/month). Generate unique passwords for every account.
2. Enable 2FA on your email — Your email is the master key. Use an authenticator app (Google Authenticator or Authy), not SMS.
3. Enable 2FA on banking — Every financial account needs 2FA. Check your bank’s security settings now.
4. Install uBlock Origin — Free browser extension. Blocks ads, trackers, and malicious scripts. 30-second install.
5. Update your OS and browser — Updates patch known security vulnerabilities. Enable auto-updates if not already on.
Important (This Week — 1 hour)
6. Migrate top 10 accounts to password manager — Email, banking, social media, Amazon, and any account with payment info. Generate unique passwords for each.
7. Enable 2FA on social media — Instagram, Twitter/X, Facebook, LinkedIn all support authenticator apps.
8. Switch default search engine to DuckDuckGo — Stops search tracking. Google is still available when you need it specifically.
9. Review app permissions on your phone — Settings → Privacy → check which apps have access to location, camera, microphone, contacts. Revoke unnecessary permissions.
10. Set up a VPN for public Wi-Fi — Essential for coffee shops, airports, hotels.
Complete (This Month — 1-2 hours)
11. Migrate all remaining accounts to password manager — Every login gets a unique password. No exceptions.
12. Print and store 2FA backup codes — Every service with 2FA provides backup codes. Print them and store in a locked drawer.
13. Encrypt sensitive cloud files — Use Cryptomator (free) on top of Google Drive or Dropbox for tax returns, legal docs, medical records.
14. Check haveibeenpwned.com — Enter your email to see if it appeared in known data breaches. Change passwords for any compromised accounts immediately.
15. Set up account recovery — Ensure recovery email and phone are current on all critical accounts. Add a trusted emergency contact to your password manager.
⭐ NordPass Password Manager
Start with step 1. Zero-knowledge encryption, free tier available.
For the detailed guide behind each step, see our complete digital privacy guide.
Ryan Nakamura is a software engineer with 12 years of experience in productivity hardware and security tools.
Last reviewed: April 2026
Disclaimer: Product recommendations are based on independent research. Prices and availability may change.
