Threat modelling would be good here. You can spend a bunch of money on crap they don't need.
Broadly speaking...
a heavy built-in / fire resistant, safe is a great thing to have.
As much wired internet throughout the house as possible along with a decent firewall solution.
So you actually inspect the source code of everything you use?
This whole line of reasoning really only works if you have the expertise to understand the code in the first place. Otherwise you are just shifting trust from what the company tells you to what a third party looking at the source tells you. Sometimes that works but its in no way fool proof.
There is open source malware. FOSS /= trustworthy the same as closed source /= not trustworthy.
If you don't trust Apple that fine. Some people won't ever use a Pixel because they don't trust Google. It doesn't change the fact that Google currently makes the most secure, hardware wise, consumer smart phone. The point being this shift in trust is more of a personal choice then a good privacy or security practice. Just as using something like e/os or lineage over iOS is.
I didn't like my tone in my last response so I apologize.
Something being propriety isn't evidence of anything nefarious nor is something being from a large company. That's not evidence at all.
I'm not trusting Apples word, the privacy feature examples I've mentioned are proven working methods. Unless you have some source showing that RCS or their private relay don't work in someway.
Not necessarily, there are tons of things that are very secure but not at all private.
But.. having a massive attack surface and known security issues and thinking your data is somehow private because you use a FOSS application is silly.
EDIT to answer your edit: partly. I mean regular timely security updates seems to be a struggle for most of these android OS but also because it provides a bunch of privacy by default options that these other android ROMs don't such as a private relay, default RCS messaging, and makes them easy for users.
I know a lot of people like the LTSC version but just a warning, they are slightly different then the regular home and professional versions in terms of policy settings.
This can make it more difficult to use things such as https://github.com/HotCakeX/Harden-Windows-Security
If you are someone interested in trying to harden your windows device but are not familiar enough to change all these policy settings yourself.
RealDebrid
I think there are a few things to clear up...
a VPN and an ISP are two different types of services. VPNs are not an internet service provider. They are held to two different standards.
Good VPNs don't log your information. Depending on what country they are based in they are obligated to hand over information if they have it but since they keep no logs there is nothing to hand over. Even if a court wanted to force a VPN to cut off service to a user there would be no way to know who that user is.
VPNs are beholden to the laws of the country they are based in, not the laws of their users. Its very hard for a US court to force a Swiss based VPN to do anything. That's why it's important to have a VPN that's based in a privacy friendly country. Sure a US court could sieze their server if one is located there but if there are no logs, it doesn't provide much.
I think there is this misconception that your VPN provider will break the law for you. Its not the case. Your VPN is going to hand over any info it's legally obligated to if it has that info