FWIW could be done via https://github.com/openfoodfacts

Should be illegal IMHO

no headphone jack, no SD slot, comes with /e/OS.

• I personally didn’t need jack but I understand it might be problematic for some. If you create music for example you might not want the latency but for that I have a dedicated PBG-1 (OSHW grove box) which does have jack. FWIW there are USB-jack adapters.
• it has an SD slot, I have a .5To inside
• comes with /e/OS was the point for me. I wanted a deGoogle Android without any tinkering. If you don’t want that though you can buy straight from CMF but I don’t know with what ROM they will ship.

In the end any mobile phone is inherently privacy invasive because of tracking by the cellular carrier, and the unending security bugs in the software. It’s hard to do much about this.

• if you don’t trust cellular carriers you can setup your own network, e.g. https://www.crowdsupply.com/ukama/ukama but… yeah that’s a bit demanding and obviously nobody else will connect to it. You can use eSIM but still have to trust the resulting carrier. You can rely on WiFi only but same, trust the ISP or encrypt everything you can, have your own VPN elsewhere and hope you can go through deep pack inspection
• on bugs in software… but I like https://www.crowdsupply.com/sutajio-kosagi/precursor is exploring the idea, pragmatically, of verifying the whole stack, hardware included, but it doesn’t go to mobile packed. One could consider this with simpler modem equivalent, e.g. LoraWAN, but with the obvious bandwidth limitation. None of that removes bugs but if the entire stack is verifiable at least it’s about genuine bug, not backdoors.

itsme is often the only option when doing things on mobile

Indeed that’s why TOTP, via e.g. Ente Auth, was a good surprise. I didn’t see it until now and I believe that’s the mobile alternative to ItsMe.

centrally regulated.

Any privacy freak who did a review on ItsMe? I just shared minutes ago https://lemmy.ml/post/36346569/21174131 that I don’t trust them but maybe I’m just paranoid. The fact that they are regulated means little, Meta and Google also are and they legally siphon everything we let them.

I’m talking about public services. For private services I have no idea what they all do and, as importantly, what they are legally bound to do. I would hope that obviously they would have to provide at least 1 solution that doesn’t rely on any third party, e.g at least provide the card reader with legal Belgian ID option (which seems to be what they offer you, so IMHO that’s good enough), but I don’t know.

ItsMe not running is pretty good in terms of privacy because their entire business model is, and correct me if I am wrong, to be an intermediary. I didn’t check what data they share but I’d be pleasantly shocked if it was none.

The card reader might seem slightly inconvenient or outdated but there is no intermediary and it is, AFAICT, secure because it’s based on well established cryptography.

PS: it’s also fun because you can play with PAM and thus, I didn’t try that, login or get su and sudo with your ID card.

Have a CMF1 from Murena for few months now, pretty happy with it. 350EUR with unlocked bootloader and rooted, used it as daily driver since day one. Transition from iOS was surprisingly painless.

In Belgium we do have e-ID and we had it for years.

If in any of the circles there is only BigTech then indeed you are right it is a threat.

In Belgium though I can access my official document with some of these (honestly I don’t remember which, but AFAIR It’sMe is one option) but more importantly there are some options with some decoupling, e.g. SMS (arguable as one must have a phone number usually via BigTelco) but, last and not least :

• a card reader with your physical ID card and its chip with https://eid.belgium.be/en/what-eid which has had Linux packages for years
• just learned about it yesterday which is why I’m excited to clarify this, a 2-step authentification app which does NOT have to be from BigTech, e.g. Ente Auth https://ente.io/auth/ which is FOSS and available on F-Droid

which means as long as at least one of these alternative is available then IMHO we can get some of the benefits without the centralization risk.

Going to play devil’s advocate here but in theory, it’s not necessarily bad, namely it could display

• what’s in stock (assuming RFID or being patient enough to scan barcode of each item or data from online order)
• recipes matching what’s in stock,
• statistics of usage e.g. when it’s most used, how much electricity consumed, etc
• contextual information e.g. calendar items overlapping with meal time (thus expecting food to take away)
• what’s in stock that could go bad soon and thus potential recipes

so … honestly the “smart” can be potentially useful to the user.

The problem is not really the why IMHO but rather the how because sadly I have 0 trust that it will be done solely for the benefit of the user. Which is why I will not buy a proprietary version. If I could get a OSHW one with e.g. eInk and HomeAssistant and/or GadgetBridge support, I just might, until then I’m in no rush.

I thought eOS wasn’t trust worthy? I can’t remember why though

…seriously? Why do you even repeat it then? The least you can do if you don’t want to fuel rumors is to :

• either ask a genuine question, rather than suggest the answer

or, IMHO better, actually

• take just few minutes to find the claim, one way or another, so that at least people can clarify, either confirming what you found or rather explain why it’s no correct.

I bet you are referring to https://lemmy.ml/post/35472063 simply because it’s relevant recent and (sadly) quite popular… but unfortunately you can read my response, incorrect. OP there has their opinion (they clearly don’t like Murena and /e/OS and prefer alternatives, perfectly fine) but unfortunately, and that’s what honestly piss me off, make claims that are just not true. You can check the details there. Now is it trust worthy or not, that’s up to you, just don’t imagine that Murena services are mandatory in /e/OS based on that posts because (as others in this thread also confirmed) it is just a lie.

Use ffmpeg to record audio from your desktop (which will include the meeting) then pass it to whisper.cpp or other text-to-speech FLOSS solutions. No need for “AI” or Windows software for that kind of tasks.