Windows 11 ships with telemetry you can’t fully disable, an advertising ID tied to your Microsoft account, Recall (AI that screenshots your screen every few seconds), Cortana, OneDrive auto-enrollment, and a default DNS resolver that phones home to Microsoft. You paid for the operating system. Microsoft is still monetizing your behavior inside it.
macOS is better but not clean. Apple collects data on app usage, Siri queries, and crash reports by default. iCloud sync is on by default and hard to fully disable without losing functionality. The OS phones home to check app certificates every time you launch software — and that check is unencrypted, meaning Apple sees what apps you’re running in real time.
Linux doesn’t do any of this. Not because it’s perfect — it isn’t — but because the people who build it don’t have a business model that requires surveilling you.
What Windows Actually Collects
Microsoft’s privacy documentation admits to collecting:
- Name, email, age (if you use a Microsoft account)
- Typed and handwritten input (sent to Microsoft for “improvement”)
- Browsing history via Edge integration
- App and feature usage data
- Device and hardware fingerprints
- Location data
- Voice data from Cortana and Search
Most of this is on by default. The “basic” telemetry level, which you can’t disable on Home or Pro editions, still sends diagnostic data continuously. Enterprise editions give you more control, but Enterprise licenses aren’t what consumers are running.
Windows Recall — introduced in 2024 and still being rolled out — takes periodic screenshots of your entire screen and processes them with on-device AI to make your activity “searchable.” The data is stored locally, but the feature itself represents a qualitative escalation: your OS now archives everything you do visually.
What macOS Collects
Apple’s collection is smaller and more defensible than Microsoft’s, but it exists:
- OCSP (certificate) checks when you launch any app — unencrypted, visible to Apple and anyone monitoring your network path
- Analytics and crash reports (opt-out available but not default-off)
- Siri query data if Siri is enabled
- iCloud sync of documents, desktop, contacts, calendar — extensive if you don’t explicitly configure each off
- App Store usage patterns
The OCSP issue is particularly notable. In 2020, a server outage at Apple caused app launches to hang because every app was waiting for an OCSP check. That incident revealed that Apple knows, in near real-time, what software you’re running and when. Apple later said they would encrypt these checks and not log IPs — but the fundamental architecture remains.
macOS also progressively adds restrictions on what software can run without Apple’s approval. Gatekeeper, Notarization, and System Integrity Protection have legitimate security purposes, but they also mean Apple can and does prevent software it hasn’t approved from running on hardware you own. In 2020, Apple remotely blocked apps from running during the OCSP outage — not intentionally, but the mechanism that did it exists.
What Linux Collects
By default: essentially nothing.
A base Linux install has no telemetry, no advertising ID, no AI assistant calling home, no mandatory certificate check before launching software. Your package manager downloads from repos over HTTPS — those servers know your IP made a request, but that’s a far cry from the behavioral profiling happening in Windows and macOS.
Some distributions add optional telemetry. Ubuntu offers to send crash reports and system information, clearly explained during install, with an opt-out. Pop!_OS, Fedora, and most privacy-focused distros collect nothing.
The kernel itself is open source. Every line of code that runs on your machine can be read, audited, and compiled by you or anyone else. There are no hidden DLLs, no black-box update components, no signed executables that can only be verified by the vendor.
The Security Argument
Linux has structural security advantages beyond just less telemetry:
User privilege separation is taken seriously. Linux was designed as a multi-user system from the beginning. Running as root is discouraged. Applications run with minimum necessary permissions. This limits blast radius when something goes wrong.
Software installs from verified repositories. On Windows and macOS, you download installers from random websites and run them. On Linux, you install from your distro’s package repository — software that’s been reviewed, signed, and verified. Malware distribution via fake installers is a massive Windows attack vector that barely exists on Linux.
Attack surface is smaller. Linux has fewer users than Windows, which means less malware is written for it. This isn’t security by obscurity in the pejorative sense — it’s a real and measurable reduction in exposure.
Updates don’t require reboots for most patches. On Linux, kernel-level patches can be applied live on servers. On desktop, you reboot less frequently and on your schedule, not Microsoft’s.
No forced updates. Windows Update has pushed mandatory updates that broke systems, changed settings, and re-enabled telemetry users had disabled. You control when and what Linux updates.
The Real Tradeoffs
Linux is not a drop-in replacement for Windows or macOS for everyone. Be honest about this:
Gaming. Steam on Linux (via Proton) has made enormous progress. Most Steam games run well. Some anti-cheat systems still block Linux. If gaming is your primary use case, do your research on specific titles before switching.
Creative software. Adobe doesn’t make Linux apps. Final Cut Pro doesn’t exist on Linux. DaVinci Resolve does. Affinity Photo does. If your workflow is locked to Adobe or Apple-only software, Linux is a harder sell.
Hardware compatibility. Most hardware works out of the box on modern distros. Some Wi-Fi chips, fingerprint readers, and specialized peripherals have poor or no support. Check before buying or switching.
Familiarity. Linux has a learning curve. The first few weeks involve looking things up. This is real and shouldn’t be minimized.
None of these tradeoffs are about privacy or security. They’re about workflow compatibility. If your use case fits Linux, the privacy and security arguments are overwhelming. If it doesn’t, they’re not a magic override.
Where to Start
If you want to try Linux without committing to it:
On a spare machine or VM: Install Ubuntu or Pop!_OS. Both have strong hardware support and are approachable for newcomers. Use it for a month alongside your main machine.
On a dedicated privacy machine: ParrotOS is worth looking at — it’s Debian-based, security-focused, and used extensively in the privacy and security community. Tails OS is purpose-built for anonymity if that’s your use case.
On a server or VPS: Linux is the only serious choice. Windows on a VPS is expensive, bloated, and introduces all the telemetry concerns on infrastructure you’re supposed to control. Every self-hosted privacy stack runs Linux.
The Honest Summary
Windows is a surveillance platform that also runs your applications. Microsoft’s business model requires data from you and the OS is engineered to collect it.
macOS is better — Apple’s business model is hardware sales, not behavioral advertising — but the architecture still involves Apple as an intermediary for software trust, app store oversight, and increasingly tight control over what can run on your machine.
Linux is software that runs your computer for you without an agenda. It’s not perfect. It has a learning curve. It doesn’t run every application. But it’s the only mainstream operating system where you are actually the user, not the product.
For a server: there’s no argument. Linux, full stop.
For a desktop: evaluate your workflow honestly. If Linux fits, the privacy gains are substantial and immediate. If it doesn’t fit yet, use macOS over Windows, and use Linux on a secondary machine until you’re ready.
The direction is clear. The timeline is yours to set.