Great article and important information. I followed most of your pointers immediately (like the 2-step authentication for gmail account). But the very next day I had to leave my android phone at the lab to fix my earplug connection, only to realize that you cannot sign out of gmail account on an android. There’s always the gmail-app to enter directly. The only way to “sign out” is to remove the account from the phone. And before you do it Google stretches a dreadful announcement about all that is going to happen to your phone and services, and what you’re about to lose.
I recalled then that even though the Chinese built a thousands-km wall against the northern empires, the latter came through the gates in the worse of invasions.
So I was left helpless allowing my opened phone to be handled to some anonymous lab technician to do as he wants. Do you have a tip for that?
Another thing is, that while Google Account seems to front itself as pro-privacy pro-security service with all their options to protect it, they make it so hard to really do so. Lets take the 2-step authentication as an example:
I sometimes log my account through the computer work. Even though it’s not a shared computer, it is still at work and so I like to use the 2-step auth. But each and every log in the “Trust this computer” checkbox is checked! (in Android phones it is so tiny and hard to uncheck as well). So if for once I forget to uncheck it I have to enter the setting in my account and remove ALL the trusted machines (there’s no way to remove only “this machine”). The contrary should be the default, because I will have to check only once for a trusted machine, and then I will never see this screen again.