Signal is actually good. Unlike most of this guide, we’re not here to warn you off it — just to make sure you’ve configured the few settings that matter.
Signal is an independent nonprofit. Not tied to any major tech company, and structured so it cannot be acquired by one. Development is funded by grants and donations from independent individuals. End-to-end encrypted by default for all messages, calls, and file transfers. No data sold to third parties. Open source — the code is publicly auditable. This is the one we’d actually recommend.
That said, you still need to set it up correctly.
DO / DON’T
DO:
- Set up privacy and security settings and help family do the same
- Be cautious when updating your “About me” — everyone can see it
- Change your PIN periodically — and remember it so you don’t get locked out
DON’T:
- Send anything compromising over any platform, including Signal. Encrypted in transit doesn’t mean secure at either end if a device is compromised.
- Connect with people you don’t know
Account and Linked Devices
Path: Settings > Account
- Change your PIN: Regularly update your PIN
- Advanced PIN Settings: Can disable PIN here if needed
- Enable PIN Reminders — helps you remember it before you need it
- Enable Registration Lock — prevents anyone from registering your phone number on Signal without your PIN. This is critical.
- Linked Devices: View and manage all devices where Signal is signed in — remove any you don’t recognize
- Profile / Username: Under your name, you can set a username instead of displaying your phone number — this is the key privacy enhancement. Use it to hide your phone number from contacts.
Chats Settings
Path: Settings > Chats
- Generate Link Previews: Optional — disable to reduce metadata exposure from URLs
- Share Contact with iOS: Not recommended
- Use System Contact Photos: Not recommended
Privacy Settings
Path: Settings > Privacy
- Screen Lock: Enable
- Screen Lock Timeout: Set to Instant
- Scroll to Advanced section and review as needed
Key Security Features
- End-to-end encrypted by default for all messages, calls, and file transfers
- No data sold to third parties
- Open source — code is publicly auditable
- Disappearing messages can be set per conversation — use this for sensitive conversations
Enable Registration Lock right now if you haven’t. Settings → Account → Registration Lock. That’s the setting that protects your number if someone tries to take it over.