How to check your privacy and security settings

Estimated reading time
 5 min

Key points

• Understanding how to manage your privacy and security settings can help you control what data apps can collect and share, which can help protect you in case of a data breach.
  
  
• Managing your security settings can be as simple as going to your app’s privacy or security settings and reviewing the permissions you’ve given for data collection.
  
  
• Enabling automatic software updates, being cautious with public Wi-Fi and reviewing security settings are essential steps to help keep your favourite apps secure.

Using apps has become an everyday habit for plenty of Australians. They’re great for communicating, staying up to date with the news, playing games, learning a new language, and so much more.

In fact, around 97% of Australians use apps for communication or personal purposes, highlighting how normal it is to use them in our daily lives.¹

With all this app usage, it’s no surprise we’re becoming more concerned about data privacy. Around 84% of Australians say they want more choice and control over the collection and use of their personal information when online. On top of that, over half (57%) say they care about their data privacy but don’t know what to do about it.²

“If you take the time to pause and look at what’s being asked of you, it can help you understand what information and data you’re giving away,” explains Abigail De Jesus, ANZ Journey Expert, Customer Security Education. “Not only does it help protect your data from being stolen by hackers, but it also gives you more control over the information the app or organisation collects from you.”

That’s why we will explain the basics of privacy and security settings to help you use your apps more safely, confidently, and as often as you like.

What are privacy and security settings?

Privacy and security settings control how your data is shared with a business, organisation or app. There are different types of security settings that can help you stay safe, including:

• Data-sharing permissions are the settings that control how an app can access and share different types of data. For example, an app might request your microphone, camera, location, files, contacts, or calendar access. If you agree to these permissions, the app can collect and potentially share specific data with other third parties. You can opt to enable these permissions at all times, only when you use the app, or not at all.
  
  
• Multi-factor authentication (MFA) involves using two or more verification methods to confirm your identity before accessing an app. This will usually be a combination of something you know (like a password or passphrase), something you have (like a unique code sent to your phone), or something you are (like a fingerprint scan). The additional security means that hackers are less likely to get into your accounts.
  
  
• A background app refresh happens when your device automatically updates the content in your apps, even when you’re not using them. For example, if background app refresh is on, a social media app might track your location without you knowing.
  
  
• End-to-end encryption is a setting available in some messaging apps. It can help protect your messages and data by keeping them private from everyone (including the app) except the person receiving the message.
  
  
• Login alerts and notifications can let you know when someone has tried logging into your account from a different device. You can turn this setting on for most social media platforms in the security settings, often alerting you if someone has attempted to login on a new device or from a different location.
  
  
• Account recovery is a setting that gives you access to your accounts after you lose your login details or are locked out for some reason.
  
  
• Data collection for personalised advertising is responsible for ads you see that are tailored to your interests or search history. Have you ever noticed that after you looked at couches on Google, you started seeing couch ads on Instagram and Facebook? You can thank personalised advertising for that. These ads are usually based on your activity (such as liking or commenting on posts, or visiting a business account), your interests (the accounts and brands you follow) and demographics (the personal information on your profile). While the ads themselves may not pose a direct security threat, the data collection process can make your personal information more vulnerable to breaches or misuse if not handled securely.

Why are security and privacy settings important?

One way to protect your personal information is to try to control what data an app collects or shares with third parties.

“If you don’t check your privacy settings and scrutinise the data the app collects, then your data might be available for the app to use,” Abigail explains. “If there’s a data breach, whatever data the app has collected will be open for hackers to steal. Unfortunately, all the data can be sold and purchased on the dark web, which can be used for other scams and fraud.”

For example, if an app tracks your location, turns on the microphone, or allows you to access the media on your phone, then all the data you’ve allowed it to collect is at risk of being exposed if the app is breached.

In addition, some apps might collect data when you’re not using them if you permit that.

“Giving an app permission to collect data all the time is an easy thing people do, but it’s not the best thing to do,” continues Abigail. “You might install a messaging app, and it’ll ask you, ‘Do you want to turn on permissions for your location?’. If you agree and have your location on all the time, the app can always see your location, without you knowing. So, it’s important to check what you’re agreeing to.”

Another reason to check and manage your privacy settings is to try to maintain confidentiality. By controlling who can see your online activity, you can help protect your personal information and prevent unauthorised access to your data.

How to manage your privacy and security settings

• Review and check app permissions. “For every app you download, check what permissions you’re giving,” advises Abigail. “Do you want all your apps to access your location? Do you want them to record phone calls or store the media you share within those apps? Ask yourself what you really want the app to know.”
  
  
• Make your social media profiles private unless you absolutely need to have them public, like if you’re an influencer.
  
  
• Turn on login alerts to stay in the loop about any unauthorised attempts to log into your accounts.
  
  
• Review your privacy settings regularly to make sure they’re up to date.
  
  
• Turn on automatic software updates to ensure your devices and apps get the latest security software.
  
  
• Use multi-factor authentication (MFA) for your apps and devices for an extra layer of security.
  
  
• Use strong, unique passwords or passphrases for your apps and don’t use the same password for everything. If you struggle to juggle multiple passwords, then use a password manager but don’t save them as auto-fills in your browser.

5 essential privacy setting tips to follow

1. Turn off app permissions that don’t make sense or make you uncomfortable. For example, a clock app doesn’t need access to your microphone. “If you’re fine with an app collecting data, make sure you choose the ‘only while using the app’ option,” Abigail explains. “If you select the ‘collect all the time’ option, some apps will collect data in the background – even if you’re not using them.”
   
   
2. Review all other security settings – not just the permissions. Things like turning off personalised ads and enabling end-to-end encryption can help protect your data and give you a safer, more seamless online experience. It’s also good to check your profile’s visibility settings. Restrict access so only specific people (like family and friends) can see your posts, tag you, and send you messages.
   
   
3. Be careful when using public Wi-Fi networks, like at airports or shopping centres. “Don’t make any important decisions or financial transactions while you’re connected to a public network,” says Abigail. “Someone might have access to your activities on that network, so avoid using them if you can.”
   
   
4. Turn on automatic software updates to ensure your apps are updated to the latest version when available. This can help address any weaknesses in the app and strengthen protections against hackers.
   
   
5. Have MFA turned on for your apps if it’s available. Taking the extra steps to log in can help ensure you’re using your apps safely.