ICYMI, from Reuters:

@mattblaze @briankrebs @ai6yr @mousey There are ways to regain control of your own data. For Android, @GrapheneOS is recommended, for example. For a private keyboard, you can find several options on F-Droid, such as FlorisBoard, which does not send any data to the internet. You can check this (and restrict all other apps as you wish) with @rdns. Once everything is configured, it works great. But sure, there's no 100%.

@mattblaze @briankrebs @mousey @ai6yr Fair point: Signal also collects metadata to a small extent (when messages are sent allows conclusions to be drawn about lifestyle habits). Even more problematic is that Google can also evaluate this metadata, as Signal messages are delivered via Google Play Service FCM (at least on Android). A better option for Android is the more privacy-friendly Signal client Molly, which supports UnifiedPush and thus completely bypasses Google.

@mattblaze @briankrebs @ai6yr @mousey Calls made via messenger apps such as Signal are end-to-end encrypted, offering greater privacy from mobile providers and potential eavesdroppers.

@mattblaze @briankrebs @ai6yr So now they know
- your phone number,
- your dad's phone number,
- your voice,
- your dad's voice,
- your phone or phone OS,
- the location you're calling from,
- the approximate location of your dad's house,
- that you live with your dad or are visiting him,
- that your dad has a house with a driveway,
- and that there is a garage there.
This is metadata that, when combined with other metadata, can paint an alarmingly accurate picture of you.