Just as you take care of the valuable items in your home, you should do the same for the information you’re storing virtually—whether it’s your financial records, scans of your passport, or even your address or phone number.

Even if you protect your accounts, service providers sometimes get hacked, so it’s a good idea to limit how much identifying or sensitive information about yourself you store online. In fact, all that data is on someone else’s server, not your own device, so you have less control over who can access it.

Let’s talk about tidying up what you keep online, so there are fewer valuables for someone to steal if they break into your account.

Spring clean for every season

The kinds of data that are important to erase or protect might surprise you. Flip to reveal why it’s a good idea to clean out each of the following types of information from your online accounts.

How to do a virtual clean up

There are a couple of ways to go about deleting what you don't want online while keeping what you want.

“Spot clean”: search for specific information

When considering what information is most important for you to keep private, think about the items you protect in your wallet: your ID, your bank cards, or your health insurance card, to name a few. One way to hide the virtual versions of these is to clear your email account of specific information before a takeover happens.

For starters, search your inbox for the name of your bank or credit card company—how easy would it be for someone who breaks in to find our where your money is stored? You may want to specifically search for the email address those accounts are sending from, so that you don't end up sweeping up emails which are about those accounts but not from them.

Above the check-boxes which let you select individual emails, there is usually a check-box that will let you select everything in your search. If you take this bulk action approach, you may want to give it a quick look and un-check specific emails you wish to keep before you hit “delete”.

Facebook, Instagram and other sites may also have “manage your data” and "access your data” options that let you remove contacts or tags, change how your location data is displayed or control certain information like events or pages by category.

“Deep clean”: archive, delete everything, and start over

To gain more control over what you share, consider archiving everything in an account, downloading it to your computer, and deleting the account contents. This way, you can start fresh and be more careful to download and delete new sensitive information that arrives (like bank statements) after you've read them.

Google:

• Sign in to myaccount.google.com →
• Data and Personalization →
• Download your data

On that page, they will give you an option to export different kinds of data, like your files in Drive, your Gmail, your contacts, and your Fit activity data. You can download all of it, or just take some. Because they collect so much information from you, Google will take a while to gather it up and then send you an email when the archive is ready for you to download.

For many webmail services, you can use a desktop email program like Thunderbird to download your email to your computer (and even continue to use it as your main email app). Or you can use an app like MailStore to pull down your archive.

Tip! You will want to delete a lot of junk mail before you do this, as the archive will take up a lot of room on your hard drive.

Don’t just delete — also empty your trash can!

Email accounts and other sites and apps often keep a “trash can” where they store things you've deleted for some period of time. This can help if you've deleted something accidentally.

The automatic delete times vary widely across tools. In Gmail for example, it's 30 days, but in Google Photos it’s 60 days (and in Google Drive, the trash doesn’t automatically empty at all). This might get in your way if you were trying to get rid of sensitive files.

When you delete sensitive files, always check the trash folder for a way to permanently delete everything now, without it lingering. There may be an option like “empty trash” or “delete permanently” — that's what you're looking for.

In Gmail, when you click on your “trash” folder, it gives you a link at the top of your screen which says ”empty trash now.” Check the settings for each app or site; there may also be a way to set the delete period so it's shorter, say, one day instead of 30.

Note: Some services archive contents, so be sure to also check and clear out the “archive” section of your website or app.

Support is there, if you need it

Many sites, like Facebook and Instagram, have advice on what to do and who to contact if you think your account or someone else’s account has been taken over. Ask a friend to file a report in case you can’t. The options will be explained in the ‘Account’ or ‘Help Center’ area.

A little bit of care goes a long way

Protecting your virtual valuables isn’t that much harder than protecting your wallet or keys. Even just improving your passwords can have a big effect. Don’t get overwhelmed by how much there is to do — just take a couple of steps at a time.

If you found these tips helpful, be sure to check out Lock Your Digital Door: Care for Your Account Security for more tips.