Frequently Asked Questions
🙋 Get answers to some of the most common questions!
- Device support
- What are the goals of CalyxOS?
- How do you accomplish encrypting the content of communications?
- What countermeasures do you take against metadata collection?
- How do you deal with the issue of geolocation tracking?
- How do you handle location services in a more private way?
- What does ‘de-googled’ Android mean?
- How is CalyxOS funded?
- How can I back up and restore the software and data on my phone?
For questions about device support, both for existing and new devices, as well as support timeframe, see Device Support.
What are the goals of CalyxOS?
We aspire to accomplish 3 major goals 1) encrypt the content of communications as much as possible 2) take countermeasures against metadata collection 3) take countermeasures against geolocation tracking
How do you accomplish encrypting the content of communications?
We bundle network encryption applications such as Signal for voice and text messaging, Tor Browser for web browsing, Orbot for using Tor as a VPN, two VPN applications, OpenKeychain for OpenPGP support, Conversations, and Briar.
What countermeasures do you take against metadata collection?
We encourage the use of the free VPN applications, of Orbot and Tor Browser for hiding the IP address of the phone. We have a feature to optionally disable bluetooth and Wi-Fi when they haven’t been used in a while to avoid proximity tracking. We randomize the Wi-Fi MAC address (on a per network basis) to keep the use of Wi-Fi more anonymous.
How do you deal with the issue of geolocation tracking?
This is one of the hardest issues to address because of the nature of the cellular phone network. It is an ongoing problem that we hope to have better solutions for in the future, however we partially address it in several ways now: by including VPN services to cloak your IP address, by including Tor services to cloak your IP address, and by including functionality to turn off bluetooth or Wi-Fi after a user-configurable period of inactivity to prevent tracking, such as by bluetooth beacons. We also randomize the Wi-Fi MAC address (on a per network basis) as a countermeasure against tracking by unique MAC addresses. Additionally we include utilities such as LocationPrivacy by the Guardian Project.
How do you handle location services in a more private way?
Normally on stock Android, location services are built into the Google Play Services. Since CalyxOS doesn’t include Google Play Services, location services are instead handled by Unified Network Location Provider (UnifiedNLP) bundled with MicroG. By default, we use the Déjà Vu location service which uses locally acquired Wi-Fi AP and cell tower data to resolve location as well as Mozilla location service.
What does ‘de-googled’ Android mean?
Stock Android is a combination of the underlying Android Open Source Project (AOSP) which is free software, plus a number of proprietary layers including the Google Play Services and many proprietary Google applications ( Gmail, Google Maps, Google Drive, Duo, Google Meet, Google Fi etc ). Because CalyxOS is a free software and privacy focused Android, we don’t include the proprietary, closed-source Google parts. This has benefits and drawbacks. Many application developers rely on Google’s play services in order to have basic functionality such as push notifications, mapping and others. If you simply remove Google’s proprietary layers many applications no longer work properly and some crash. To remedy this, we decided to include a free software project called MicroG whose intention is to make an open source implementation of some of Google’s services but with more enhanced privacy.
How is CalyxOS funded?
The majority of development on CalyxOS is funded by the charitable donations of Calyx Institute members! We give out free mobile internet hotspots with unlimited data plans (no throttling, no data cap, US only) to donors at ‘contributor’ level or higher: see https://calyxinstitute.org/membership for info. Additional funding for some parts of CalyxOS and/or some of the apps included with it has been generously been provided by private foundations including the NLnet Foundation, Internews, and the European Union. We have also recieved support from DuckDuckGo in the past and we continue to receive in-kind donations of free advertising from Google, as part of their “Google for nonprofits” program.
How can I back up and restore the software and data on my phone?
We developed a privacy focused backup and restore application called SeedVault which is built into CalyxOS. SeedVault uses encryption to protect your data before it ever leaves the phone. Currently there are two options for backing up: USB storage and cloud storage using NextCloud. SeedVault can be accessed from Settings -> System -> Backup. The first time you run it, SeedVault will generate an encryption passphrase made up of 12 words. You must keep these words in a safe place in order to be able to restore your backups.