The average person uses their mobile phone once every 11 minutes. It has become so commonplace to use these devices that we need to make these interactions as fast as possible, so we can move on to the next thing.

Recently, Kanye West visited President Donald Trump in the Oval Office and spoke to him for 15 minutes. During that time, he understandably--11 minutes had passed, after all -- pulled out his phone and unlocked it--in full view of cameras--by entering his passcode of 000000.

Predictably, people noticed--and not only for his lax attitude towards his own online privacy. As of January 2018, the White House instituted a ban on personal cell phones, stating that:

"The security and integrity of the technology systems at the White House is a top priority for the Trump administration and therefore starting next week the use of all personal devices for both guests and staff will no longer be allowed in the West Wing."

So, how did Kanye West get his cell phone into the Oval Office in the first place?

This is exactly the same problem that businesses face when attempting to enforce their own cybersecurity policies. While people are generally aware of their need to be secure, they are also generally confused -- and annoyed -- by it in practice. This means that even the best of policies quickly become unenforced.

While it is the easiest way to protect an email account, over 90 percent of Gmail users don't use 2-factor authentication. Over 80 percent of people never change their router's default password, network name, or IP address--and worse yet, 70 percent of people don't check to see if there are any unknown devices on their network.

And there, I believe is the crux of the matter - cybersecurity hygiene is one of those subjects that's in the realm of "everybody knows we're supposed to do it," but there are so many aspects to it that no one is quite sure how.

During my time at Evernote, we had a security breach where we decided to reset 50 million user's passwords. The main complaint from users wasn't that we had the attack - instead, it was that they could no longer use the same password they had memorized and that they use on every other website.

In the years since I've only heard this more and more. The complaint from users about why they won't use 2-Factor authentication on a service is that it takes too long to get into their account. Likewise, the main blocker to using any blockchain technology is that people can't recover their wallet when--not if--they lose it.

Kanye's simple phone password makes sense for him, as he's not likely to let that phone out of hand's reach - and if it ever was, he'd be able to instantly lock and wipe it remotely.

For everything else, though, here are some simple tips to bring up your cyber hygiene.

1. Change Your Passwords

I cannot stress enough how dangerous it is to reuse passwords. Whether you have shown up on haveibeenpwned.com yet or not, at some point an old password of yours will make its way online. Instead, get a password manager and generate new, unique passwords for every account you have.

2. Get a VPN

We all love connecting to free WiFi hotspots--Including hackers. If you're going to be doing anything on your laptop or phone on a public hotspot, have a VPN like ExpressVPN or NordVPN to encrypt the data you are sending.

3. Update Everything

All those firmware and software updates you've been putting off? Don't. The most important one is behind your router's admin screen - which you've may have never logged into. All of these will have security patches designed to keep you safe, so make sure you've got automatic updates turned on wherever possible, and you don't ignore the updates whenever they occur, for any of the software you use.

And, as one last tip: whenever you're entering in your password into anything, cover the screen so people (and cameras) can't see it.