use FOSS software whenever you can try https://github.com/MuntashirAkon/AppManager it lets you see every known tracking library that apps have and you can even block those, while maintaining functionality. set fingerprint and don’t lend your phone to anyone scan all downloads with virustotal use a hosts file based ad and malware blocker (you need root for it) like AdAway use Invizible Pro, where you can configure Tor, i2pd, dnscrypt run at the same time. Use Cromite or Tor browser or Vanadium update your software as soon as possible use a password manager, like any maintained keepassxc fork or bitwarden, with a foss authenticator app (i use Aegis) change email provider: protonmail, tutanota use Termux for everything that you don’t need a gui for or don’t have a gui for (like low-level operations, getting system info, compiling, converting and compressing niche formats, http server, network analysis and so on)