My philosophy and practice with regard to my personal data security is:
- My home computers and devices are protected as much as humanly and automatically possible, by strong passwords, multi-factor authentication (MFA/2FA), active malware scanning, and near-paranoid situational awareness of websites, email, text messages, and phone calls.
- No critical data leaves my computer without first being encrypted with strong keys that only I possess. I started that practice in the mid-90s with PGP and switched to GnuPG in 2000. That practice makes "end-to-end encryption" largely unnecessary (although it's still a nice feature).
I've been intensely active on the internet for over 30 years, and have yet to have my personal data compromised.
The price of internet communication is eternal vigilance.
Yep, all good safeguards for sure. I have been fortunate also. I have never had mine compromised either. Like you say, just prudent practices. :)