The official GrapheneOS Twitter account states the complete opposite on several occasions:
https://nitter.net/GrapheneOS/status/1692002070650335259#m
Many people have the misconception that they’re defeating the purpose of GrapheneOS by using privacy invasive apps but in fact the opposite is true. If you want to use those apps, then using GrapheneOS allows you to protect your privacy from them far better than another OS.
https://nitter.net/GrapheneOS/status/1728630943886270827#m
GrapheneOS arguably makes the biggest difference for someone who is going to be using a bunch of mainstream apps including very privacy invasive ones. They need features like Storage Scopes and Contact Scopes more.
https://nitter.net/GrapheneOS/status/1745532453215781151#m
You’ll substantially benefit from our privacy and security features without making significant changes to your apps. In fact, you’ll benefit more from features like Storage Scopes, Contact Scopes, Sensors toggle, etc. if you use a bunch of very privacy invasive apps.
What RSS is recommended?
To add on to the video transcript that @jet@hackertalks.com posted, here is Jonah’s post from the Privacy Guides forum that more or less summarizes the video: https://discuss.privacyguides.net/t/clarify-tors-weaknesses-with-respect-to-observability/3676/14
It also includes links to useful resources and noteworthy articles referenced in the video, like the case regarding the deanonymized Tor user and the Harvard network admins. You can also toggle dark mode on the forum website, which is useful for those using anti-fingerprinting browsers such as Tor Browser or Mullvad Browser.
2FAS which seems recommended for data privacy.
By whom?
There is a discussion in the Privacy Guides forum on 2FAS that you might want to read.
Also, you don’t specify which platform you’re using. As @I_Am_Jacks_____@lemmings.world mentioned, Aegis for Android is great. For iOS, the pull request to include ente Auth in the Privacy Guides recommendation page for authenticator apps is already merged. It will reflect on the live website once the Privacy Guides team decides to release v3.17 of the site.
I re-upped my Mullvad VPN account for another 6 months.
I subscribed to the MySudo plan that gives you 3 virtual phone numbers.
I created a free Privacy.com account and made a purchase with a virtual card.
There is one crucial detail that the article doesn’t mention: Find My iPhone must be enabled to enable SDP. That is to say, enabling Find My (along with biometric authentication) is a prerequisite for SDP.