Privacy Settings Walkthrough: Safeguarding Elderly Family Members from Online Scams & Data Breaches

As our loved ones embrace the digital world, ensuring their safety online becomes paramount. Optimising online privacy settings for elderly family members is a critical step in protecting them from the growing threats of scams, identity theft, and data breaches. While the internet offers incredible benefits for connection and information, it also presents complex risks, particularly for those less familiar with its nuances. This guide provides practical, actionable advice to help you secure their digital presence across various platforms, fostering a safer online experience for everyone.

Understanding the Unique Vulnerabilities of Elderly Individuals Online

Elderly individuals can face specific challenges that make them more susceptible to online threats. These often include a combination of factors such as less exposure to evolving digital scams, a trusting nature, and sometimes, cognitive changes that affect their ability to discern malicious content.

Globally, organisations like the Global Anti-Scam Alliance report billions lost to scams annually, with older adults often facing significant financial and emotional distress due to their trusting nature and sometimes limited digital literacy. For instance, a 2023 report from the US Federal Trade Commission (FTC) indicated that older adults reported losses exceeding $1.6 billion to fraud in 2022, underscoring a widespread vulnerability.

“Digital literacy gaps mean that what might seem obvious to a younger user, such as identifying a phishing email, can be a genuine challenge for an older person,” explains a cybersecurity expert. “Scammers deliberately target these vulnerabilities, using sophisticated tactics that exploit trust and lack of technical knowledge.”

Common vulnerabilities include: * Less familiarity with scam tactics: New forms of phishing, smishing, and vishing emerge constantly. * Difficulty recognising fake websites or messages: URLs, email addresses, and sender identities can be expertly spoofed. * Over-sharing personal information: A lack of understanding about public versus private information on social media. * Impatience or confusion with complex security measures: Strong passwords and two-factor authentication can feel cumbersome. * Reluctance to ask for help: Some elderly individuals may feel embarrassed or ashamed if they suspect they’ve been targeted.

Key Takeaway: Elderly individuals are often targeted due to varying levels of digital literacy and trust. Proactive engagement with privacy settings and ongoing education are essential to mitigate these risks.

Core Principles for Enhanced Online Safety

Before diving into specific privacy settings, establishing a foundation of general online safety principles is crucial. These apply across all platforms and devices your elderly family members use.

1. Strong, Unique Passwords: Encourage the use of long, complex passwords for every online service. A reputable password manager can simplify this, allowing them to remember only one master password.
2. Two-Factor Authentication (2FA): Where available, enable 2FA for all accounts. This adds an extra layer of security, typically requiring a code from their phone or a physical key in addition to their password.
3. Regular Software Updates: Ensure all devices (computers, tablets, smartphones) and applications have their operating systems and software kept up-to-date. Updates often include critical security patches.
4. Reputable Antivirus and Anti-Malware Software: Install and maintain comprehensive security software on all computers and devices to protect against malicious programmes.
5. Critical Thinking and Verification: Teach them to question unsolicited messages, emails, or calls. Advise them to verify requests for personal information through official channels, not through the contact details provided in the suspicious message.
6. Avoid Public Wi-Fi for Sensitive Activities: Public Wi-Fi networks can be insecure. Advise against conducting online shopping, banking, or other activities requiring personal data when connected to public networks.

Essential Privacy Settings Walkthrough: Platform-Specific Guidance

Here’s a step-by-step guide to adjusting privacy settings on common platforms. It’s often best to sit down with your family member and go through these together.

1. Social Media Platforms (e.g., Facebook, X/Twitter, Instagram)

Social media can be a significant source of personal data leakage if not managed carefully.

• Who Can See Posts/Profile:
  • Facebook: Go to Settings & Privacy > Settings > Privacy. Set “Who can see your future posts?” to Friends or Specific friends. Review “Limit The Audience For Past Posts” to restrict older posts.
  • Instagram: Go to Settings and privacy > Account privacy. Toggle “Private Account” on. This means only approved followers can see their posts.
  • X (formerly Twitter): Go to Settings and privacy > Privacy and safety > Audience and tagging. Turn on “Protect your posts”.
• Tagging and Mentions:
  • Facebook: Under Settings & Privacy > Settings > Profile and Tagging, set “Who can post on your profile?” to Only Me or Friends. Review “Who can see posts you’re tagged in on your profile?” and “Review tags people add to your posts before the tags appear on Facebook?”. Enable tag review.
  • Instagram: Under Settings and privacy > Tags and mentions, choose “Manual Approve Tags” or restrict who can tag them.
• Location Services: Disable location sharing for social media apps unless absolutely necessary. On most smartphones, this is done via the device’s main Settings app under Privacy or Location Services.
• Friend Requests/Followers:
  • Facebook: Under Settings & Privacy > Settings > Privacy, set “Who can send you friend requests?” to Friends of Friends.
  • Instagram/X: Regularly review follower lists and remove any suspicious accounts. Advise them not to accept requests from unknown individuals.

2. Email Services (e.g., Gmail, Outlook, Yahoo Mail)

Email is a primary vector for phishing scams.

• Spam Filters: Ensure spam filters are enabled and regularly review the spam folder for legitimate emails that might have been miscategorised. Teach them not to click links or open attachments from unknown senders in the spam folder.
• Phishing Protection: Most email providers offer built-in phishing detection. Ensure these are active. Gmail, for example, often warns about suspicious emails.
• Two-Factor Authentication (2FA): Enable 2FA for their email account immediately. This is often the most critical account to secure.
• Review Connected Apps: Periodically check which third-party applications have access to their email account. Revoke access for anything unfamiliar or unused. This is usually found in Security Settings or Connected Apps within their email provider’s settings.

3. Messaging Applications (e.g., WhatsApp, Telegram)

Messaging apps are popular for communication but can also be used for scams.

• Profile Picture Visibility:
  • WhatsApp: Go to Settings > Privacy > Profile photo and set to My Contacts or Nobody.
  • Telegram: Go to Settings > Privacy and Security > Profile photos and set to My Contacts.
• Last Seen/Online Status:
  • WhatsApp: Go to Settings > Privacy > Last seen & online and set to My Contacts or Nobody.
• Group Invitations:
  • WhatsApp: Go to Settings > Privacy > Groups and set to My Contacts to prevent unknown individuals from adding them to unwanted groups.
• End-to-End Encryption: Most reputable messaging apps offer end-to-end encryption by default. Ensure they are using an app that provides this for secure conversations.

4. Web Browsers (e.g., Chrome, Firefox, Safari)

Browser settings can control tracking and unwanted pop-ups.

• Cookie Settings: In browser settings, choose to block third-party cookies or delete cookies upon closing the browser. This limits tracking.
• Tracking Protection: Enable “Do Not Track” requests (though not all websites honour this) and use browser extensions that block trackers and ads (e.g., uBlock Origin, Privacy Badger – ensure they are reputable).
• Pop-up Blocker: Ensure the browser’s built-in pop-up blocker is enabled.
• Security Warnings: Ensure browser security warnings for unsafe sites are active.
• [INTERNAL: Browser Security Tips for Families]

5. Operating Systems (e.g., Windows, macOS, iOS, Android)

Device-level settings are fundamental to overall privacy.

• Location Services: Review app permissions for location access. Only grant access to apps that genuinely need it (e.g., maps). On smartphones, this is typically under Settings > Privacy > Location Services.
• App Permissions: Regularly review permissions granted to installed applications. Restrict access to contacts, microphone, camera, and photos for apps that don’t require them.
• Software Updates: Enable automatic updates for the operating system and installed applications.
• Privacy Dashboard: Many modern operating systems offer a privacy dashboard where you can see which apps have accessed certain data. Regularly review this.

Recognising and Reporting Online Scams

Even with robust privacy settings, vigilance is key. Educate your elderly family members on common scam types:

• Phishing/Smishing/Vishing: Emails, texts, or calls pretending to be from legitimate organisations (banks, government, tech support) asking for personal details or urgent action.
• Tech Support Scams: Pop-ups or callers claiming to be from a major tech company (e.g., Microsoft) stating their computer has a virus and demanding remote access or payment.
• Romance Scams: Scammers build emotional relationships online to solicit money.
• Investment Scams: Promises of high returns on fake investments.
• Grandparent Scams: Callers pretending to be a grandchild in distress, needing money urgently.

Actionable Advice: Teach them to STOP, THINK, CHECK. * STOP: Don’t react immediately. Take a moment to calm down and think. * THINK: Does this make sense? Is it unusual? Is it trying to create urgency? * CHECK: Verify the sender/caller using official, independently found contact details (not those provided in the suspicious message). [INTERNAL: How to Identify Common Online Scams]

If they suspect a scam, they should immediately stop all contact and report it to local law enforcement or a national cybersecurity body.

Building Digital Resilience Through Ongoing Education

Digital safety is an ongoing process. Regular, gentle conversations can reinforce good habits.

• Family Check-ins: Schedule regular “digital safety check-ins” to review settings, discuss new online experiences, and address any concerns.
• Shared Learning: Explore reputable online resources together, such as those from organisations like UNICEF or national consumer protection agencies, which often provide guides for digital literacy.
• Open Communication: Create an environment where they feel comfortable admitting if they’ve made a mistake or encountered something suspicious, without fear of judgment.
• Practical Demonstrations: Show them how to identify a secure website (look for ‘https://’ and a padlock icon), how to check an email sender’s address, and how to verify information.

What to Do Next

1. Conduct a Privacy Audit: Sit down with your elderly family member and systematically review all their online accounts and device settings using this guide.
2. Enable Two-Factor Authentication (2FA): Prioritise enabling 2FA on their email, social media, and other critical accounts.
3. Install Essential Software: Ensure their devices have up-to-date antivirus software and consider a reputable password manager.
4. Establish a Communication Plan: Agree on how they will contact you if they encounter anything suspicious online, ensuring they know you are a safe and non-judgmental resource.
5. Schedule Regular Reviews: Plan to revisit these settings and discuss online safety every few months, especially as new threats and platform updates emerge.

Sources and Further Reading

• Global Anti-Scam Alliance: www.gasa.org
• US Federal Trade Commission (FTC): www.ftc.gov
• National Cyber Security Centre (NCSC) - UK: www.ncsc.gov.uk
• Age UK: www.ageuk.org.uk
• UNICEF: www.unicef.org