Despite the growing influence of applications of Chinese origin such as TikTok or DeepSeek, American software programs such as WhatsApp or Gmail star in the menus of most European mobile phones. This monopoly from US companies such as Google or Meta could put the cybersecurity of its users at risksince they act under regulations other than those established by the European Union. Therefore, it is advisable to know other alternative messaging and email applications.
This danger has been warned by cybersecurity expert and digital analyst, Ben van der Burg, who has described this practice as a strategic vulnerability for both users and companies who daily and exclusively use applications managed by American companies. Its popularity and usefulness make it individuals do not stop to read the conditions of use nor to think about the consequences that these may have on your security and privacy.
Many of the free applications rely, in addition to ads, on the collection of data from its users. This data, seemingly harmless, has great value for companies with which they collaborate. Beyond improving their functionality and creating advertising campaigns that increase the reach and sales of advertisers, these applications could be collecting more personal data such as contacts or private emails.
By concentrating the data in a few companies, they will have absolute control
That is why the European Union wanted to increase the security and protection of its citizens’ data through the General Data Protection Regulation (GDPR) and the Digital Markets Act (DMA). Both measures were approved to force large platforms to reinforce the protocols for processing the data of its users and avoid malicious use of these. Because of this, some apps have taken a little longer to reach member countries.
However, Ben van der Burg wanted to emphasize the importance of diversifying installed applicationsWell, otherwise, all the information ends up on the servers of a few companies, such as Google or Meta. It is not due to an ideological issue, but rather a matter of pragmatism. Well, if the data is concentrated in certain companies, they will have absolute control of it, leaving individuals at the mercy of those who manage them and their possible interests.
Furthermore, the expert remembers that sensitive and private information is usually handled in these applications. In the workplace, email software programs could collect confidential keys and figures from companies who manage it; while on a personal level, messaging applications are usually used to have conversations with loved ones which may even include medical data. Therefore, it is important to take into account the risks to which they are exposed and know other safer options.
Other options for Gmail and WhatsApp of European origin
Van der Burg explains that in Europe different equally or more complete software systems than those created in the United States and subject to the measures of the European Union. Some of the most popular alternatives are:
- Browser options: Startpage, which operates from the Netherlands; Ecosia, characterized by planting trees with the benefits they obtain from their users; or Qwant, of French origin and characterized by its neutrality in the results.
- Alternatives to Gmail: Proton Mail, of Swiss origin and with encrypted storage; Tuta, characterized by using 100% renewable energy; and Mailbox.org, which offers storage, video calls and email services from one euro per month.
- Storage applications: Internxt, of Spanish origin and with lifelong plans; pCloud, which hosts data in the EU; and Nextcloud, which operates from Germany and grants absolute control of the data.
- WhatsApp Alternatives: Forget, certified by the ANSSI and does not require a SIM card; Wire, which is capable of connecting with other applications such as Slack; and Ginlo, whose encryption and automatic message deletion guarantee the security of its users.
Zero Trust methodology to improve company security
In addition to avoiding using only applications originating in the United States, the National Cybersecurity Institute recommends using the Zero Trust methodology. This strategy not only increases the protection of users’ personal data, but also allows us to act quickly and effectively in the event of cyber attacks or threats. As its name indicates, it consists of maintain an attitude of constant distrust before applications and logins.
For this, it is necessary carry out a registry and know who has access to what resourceswhich allows any risk to be detected quickly; increase verification processes in access requests, including information such as the user’s identity, the device, its location and the application being requested; reduce the access points to the network, being advisable a flat network that limits access to users; create independent networks limited to certain authorized individuals; continually verify the identity and authorization of those accessing the network; and termination of all connections, allowing the proxy architecture to inspect traffic in real time.