Fairphones are a good start, however their proprietary /e/OS has numerous glaring security gaps that the company does not address. For example:

• An unlocked bootloader, which enables any attacker with physical access to your phone to extract data and even load malware onto it.
• Its ‘native IP’ scrambler is an old, unmaintained fork of TOR.
• MicroG, its answer to Google Play Services, still relies on Google servers to collect and connect data from apps to your phone.

DivestOS maintained a list of security lapses that the E Foundation had not closed, but now that DivestOS is abandoned, I can’t find the document. While Fairphone is a good answer to the centralization of the tech industry to the US and China, it’s still rough and needs improvement before its security can be trusted. Please be aware that not every alternative is a good alternative. Be discerning, with this mass-migration, people are bound to get caught by dishonest representation and marketing.