Hey everyone, wanted to get some advice on the statement in the title.
I want to create an Amazon account for online shopping with a focus on privacy. I understand whole-heartedly that such a thing could be considered oxymoronic, but if I could get such a thing to work long-term, it would make my life a lot easier. My goal isn’t to be completely anonymous - I just want to avoid tying this Amazon account/purchases to my personal identity, and instead tied to a fake alias of someone who doesn’t exist.
I DON’T want Amazon to have, in order of importance:
- Government ID (especially non-negotiable)
- Bank/(Real) Card Details
- Home Address
- Personal Phone Number
- Real Name/Birthday/Other minor PII
The obvious high-level solution for each of these is of course lying, but the root of the conundrum is this: How do I make this account without triggering Amazon’s verification system?
I tried this once with the whole privacy rigmarole (Tor, email/name/birthday alias, virtual debit card, online free SMS verification, etc). This obviously did not end up working. After trying to order something <5$ super small as a test, I was locked out and asked to provide ID.
Now obliviously it’s hard to say exactly what tripped the wire, but that’s why I’m here. What environment setup wouldn’t be seen as suspicious and be less likely to trigger a verification check?
I’m stretching my knowledge here, so any advice is appreciated. My plan, and reasoning for each:
-
Use a Windows VM (base machine is Linux)
a. As I understand it, using Linux won’t screw you over on its own, but it could tip the scales towards verification in combination with other factors.
b. Tor is also probably a no-go; too suspicious. -
Use Google Chrome to interact with the service (or base Firefox, instead of Librewolf). Never use the mobile app
a. Same point as above; Firefox and more specifically Librewolf could also tip the scales.
b. I might need to also build up a fake profile of cookies overtime and such to make my browser not look as much as a clean-slate and unintentionally become more suspicious that way. -
Get a static or residential VPN instead of a data-center VPN
a. Maybe even public WiFi with no VPN? -
Use dedicated burner phone-number (non-VoIP)
a. Buying a physical burner phone could work, which would give me a phone number in my country. I could also do one of the paid dedicated online services (like crypton.sh). In my experience these don’t have number in my country; would that matter too much?
b. VoIP is usually always flagged for big services, so a dedicated number/device is likely the best shot. -
Use card alias/virtualization service (Privacy.com, for example)
a. Not sure if these virtual cards have any identifiers which could trigger anything, but if I can’t use these, this is probably all for nothing. -
All orders will go to Amazon Locker or other non-identifying locations
a. Self explanatory. Don’t want to give my actual address. -
Disable all tracking/privacy settings (after account creation)
a. Also self explanatory. I’ve been told before that doing this too quickly after creation is also suspicious , so might have to wait and let the account sit for a few days after creation.
This is likely a sisyphean task and not worth it, and if anyone thinks that this still wouldn’t be enough, then I obviously will have to look towards ordering directly from vendors instead of through Amazon. That is obviously always a option, but I would be lying if I said the convenience of Amazon is why I’m tempted to do all of this in the first place.
Thanks everyone; let me know your thoughts.