Securing Mobile: Settings

See my criteria for this page here.

• Apple ID: Password & Security: Two-Factor Authentication: On
• Apple ID: iCloud: Disable everything
• Wi-Fi: Wi-Fi should be disabled when you are not actively connected to a network.
• Wi-Fi: Ask to Join Networks: Off
• Wi-Fi: Auto-Join Hotspot: Off
• Bluetooth: Off unless needed.
• Cellular: SIM PIN: Create a custom PIN
• Cellular: Disable Cellular Data for any apps you don't need 24/7 access to.
• Notifications: Scheduled Summary: Off
• Notifications: Show Previews: Never
• Notifications: Screen Sharing: Off
• Notifications: Siri Suggestions: Allow Notifications: Off
• General: Software Update: Automatic Updates: On
• General: AirPlay & Handoff: Disable all
• General: Background App Refresh: Off
• Display & Brightness: Auto-Lock: the shortest option you can reasonably put up with. Do not set it to leave the screen turned on.
• Display & Brightness: Raise to Wake: Off
• Wallpaper: It is encouraged to pick a lock screen that does not contain any sensitive images, like pictures of your family.
• Siri & Search: Disable everything completely
• Touch ID & Passcode: Turn Passcode On: Try to set a password if possible, otherwise use a six-digit PIN
• Touch ID & Passcode: Require Passcode: Immediately
• Touch ID & Passcode: Allow Access When Locked: the fewer the better
• Touch ID & Passcode: Erase Data: Enabled (Beware of this setting, make sure you understand it).
• Exposure Notifications: Using these is discouraged unless required by law, but it is ultimately up to you.
• Privacy: Location Services: Disable for everything except navigation apps, and set those to "While Using"
• Privacy: Location Services: System Services: Disable all (trust me, it won't cause any problems)
• Privacy: Location Services: Significant Locations: Disable and Clear History
• Privacy: Tracking: Allow Apps to Request to Track: Off
• Privacy: review all the other app settings and make sure apps only have access to the settings they actually need. Otherwise, disable them. Disable as many as you can without breaking the app functionality.
• Privacy: Analytics & Improvements: Share iPhone Analytics: Off
• Privacy: Apple Advertising: Personalized Ads: Off
• Finally, scroll back to Screen Time: Content & Privacy Restrictions: Enable, and set every setting to "Don't Allow." This will ensure that Apple doesn't make any changes to your privacy settings automatically when updating the OS.
• App Store: App Udpates: On
• App Store: Personalized Recommendations: Clear App Usage Data
• Wall & Apple Pay: Turn everything off. You should not use this feature if possible. Passwords: Clear this section out and turn everything off. Use a password manager instead.
• Phone: Notifications: off (if you plan to use Voice-over-IP)
• Phone: Silence unknown callers: on
• Messages: Notifications: off (if you plan to use Voice-over-IP)
• Messages: iMessage: off (if you plan to use Voice-over-IP)
• Messages: Keep Messages: 30 Days
• Maps: Share ETA: Off
• Health: Medical ID: I actually encourage you to set this up in case of emergency. Saving a life should always be prioritized over privacy.
• Photos: Disable all
• Game Center: Disable
• Now scroll back up to Screen Time: Content & Privacy Restrictions: Allowed Apps: Disable all (except maybe Camera if you use that, you should not be using any other apps).
• Screen Time: Content & Privacy Restrictions: Privacy & Allowed Changes: Set all to "Don't Allow." This will prevent changes from being made on your behalf next time you update.
• Any settings not covered are personal preference and are unlikely to cause any issues no matter how you set them.

• Network & internet: Advanced: Private DNS: Private DNS provider hostname: Any provider from this list
• Connected devices: Connection preferences: Bluetooth: Disabled (unless you frequently use a wearable or similar)
• Connected devices: Connection preferences: Printing: Default Print Service: Disabled
• Apps & notifications: App info: Disable or uninstall any apps you don't use.
• Apps & notifications: Advanced: Permissions manager: evaluate each app and their permissions
• Display: Screen timeout: the shortest option you can reasonably put up with. Do not set it to leave the screen turned on.
• Privacy: Advanced: Activity controls: Web & App Activity: Disabled
• Privacy: Advanced: Activity controls: Location History: Disabled
• Privacy: Advanced: Activity controls: YouTube History: Disabled
• Privacy: Advanced: Activity controls: Ad personalizaton: Disabled
• Privacy: Advanced: Ads: Opt out of Ads Personalization: Enabled
• Privacy: Advanced: Usage & diagnostics: Off
• Location: Use Location: Off for everything except navigation apps
• Location: Advanced: All off (emergency services will still be able to locate you if needed, I promise)
• Security: Screen lock: Try to set a password if possible, otherwise use a six-digit PIN (when prompted, set lock screen to "Show sensitive content only when unlocked")
• Google: Ads: Opt out of personalized advertising
• Google: Backup: Backup to Google Drive: Off (see Backups for more information)
• Google: Devices & sharing: Cast options: Use network informaton: Disabled
• Google: Devices & sharing: Nearby Share: Off
• Google: Personalize using shared data: All disabled
• Google: Settings for Google apps: Connected apps: Review currently connected apps
• Google: Settings for Google apps: Contacts sync: disable all
• Google: Settings for Google apps: Search, Assistant, & Voice: General: Disable all
• Google: Settings for Google apps: Search, Assistant, & Voice: Notifications: Disable all
• Google: Settings for Google apps: Search, Assistant, & Voice: Voice: "Ok Google" detection: Disable all

By enabling all of these settings, you are significantly reducing the amount of tracking and data collection these devices perform, but keep in mind that you are not completely eliminating it.