
VeraCrypt
Full-disk and container encryption for your own machine.
Encrypting your own files is the last line of defence when a device is lost or stolen, an account is breached, or you sync data to a cloud you do not control. Done well, it is the difference between a stranger reading your documents and seeing nothing but noise. The trade-off is responsibility: strong encryption is only as good as the passphrase you choose and the keys you keep safe and a lost key usually means lost data. The tools below range from one-click cloud vaults to full-disk encryption and command-line utilities so you can match the effort to what you actually need to protect.
Start with what you are protecting and where it lives. For files you sync to Dropbox, Google Drive or iCloud, a client-side tool like Cryptomator keeps the provider from ever seeing your plaintext. For the data on your own laptop or an external drive, full-disk or container encryption such as VeraCrypt protects everything at once, including if the machine is stolen. If you mainly need to encrypt individual files to store or send, a focused tool like Kryptor or the OpenPGP family (GnuPG and its front-ends) does the job. Prefer open-source tools that have been independently audited, favour modern and well-studied cryptography and remember that your passphrase and key backups are as important as the software you pick.
Here are some things to look for.

Full-disk and container encryption for your own machine.

Client-side encryption for files you keep in the cloud.

A simple, modern file encryption and signing tool.

The standard open-source implementation of OpenPGP.

GnuPG for Windows, with the Kleopatra key manager.

OpenPGP encryption for macOS, integrated with Apple Mail.

Simple encrypted volumes for Linux, built on LUKS.