Audit your OPSEC and determine the appropriate internet use
In this tutorial we're going to explore how you can audit your own level of Operational Security (also known as opsec), using the following 6 parameters:Complexity, Transparency, Surveillance, Centralisation, Onymity, and Deniability. The goal is to determine the level of Privacy, Anonymity and Deniability of your operations online to determine what you can do safely.
Based on those, we are able to determine the most appropriate Internet use.
Auditing your own OPSEC is an essential skill that you must possess, we're going to audit the 4 different setups below, to be able to determine where they fit.
To do so, we are going to simplify it down to 4 OPSEC levels: Public, Private, Anonymous and Sensitive.
Sidenote: If your setup is suitable only for public internet use, you CANNOT use it for any private use, and so on.
Complexity: Bob didn't put any effort. He bought his PC and windows was pre-installed, and he used it as it was.
Transparency: Bob uses windows as a host OS, and google chrome as his web browser. Both are closed-source, he does not know what his software is doing.
Surveillance: Since bob uses closed-source software, he is under constant surveillance while using his computer.
Centralisation: Bob uses popular services that are centralised in nature, he depends on the goodwill of others to use their services
Onymity: Because there is no privacy, anonymity is impossible for Bob.
Deniability: Bob cannot deny anything that he's doing on his computer, as he is under constant surveillance, without any possibility of anonymity.
Complexity: Alice has put some effort to get her current setup, she is willing to go out of her comfort zone to improve her OPSEC.
Transparency: Alice only uses open source software (Linux and Firefox) she can see from the sourcecode that it only does what it should do.
Surveillance: Alice has verified that the open source software that she was using wasn't spying on her
Centralisation:Alice is starting to move away from centralised services, she's looking at other alternatives, but they are still centralised. 
Onymity: Alice is exploring anonymity, but through a pseudonym online, she is not anonymous yet.
Complexity: Charlie is willing to go at great lengths to improve his OPSEC
Centralisation: Charlie has moved away from centralised services, and is using their decentralised counterpart from the fediverse 
Onymity: Charlie is anonymous online, thanks to it's use of the tor network through Whonix and tor browser
Deniability: Charlie, thanks to his use of anonymity technologies, may be able to deny that he has used this setup depending on the context. However if an adversary gets physical access to his computer, he won't be able to deny that he has ever used it.
Deniability: Dave can deny that he has commited any anonymous activity, because the VM he uses is inside a veracrypt hidden volume, that he can deny the existance of. 