MetaMask is Non-Custodial Wallet, which means that no KYC or Email is required. To protect your MetaMask wallet from scams and potential hacking, avoid clicking on phishing links to fill your 12keyphrase (Passphrase) and PrivateKey.
Whenever you participate on Airdrops which required connecting MetaMask wallet, ensure the links are official. More so, endeavor to disconnect wallet from the website after transactions.
While using MetaMask, you are solely responsible for the security of your assets. Safeguarding your Passphrase and Private Key should be your utmost priority, because any mistake that leads you to loosing it simply means that you have lost the specific wallet and every asset on it, and nobody can help you recover it; Not even MetaMask support team.
Additionally, the MetaMask support WILL NEVER private chat you or send random phishing links to people on social media, pretending to be of assistance to their problems. Beware!
You can keep your MetaMask keyphrase and Private Key securely by writing them down on your personal offline diary and also a secured online cloud storage. Taking Screenshots of your keys are risky and not recommended, as you may be unlucky by downloading phishing apps that spoons gallery.
Many users hardly know the steps to get their PrivateKey on MetaMask. Here is it; open your MetaMask and select Settings > Security & Privacy ; then locate Passphrase, PrivateKey and save them securely. Your MetaMask PrivateKey is specific to a particular account/address. In this case, if you change your device, you can still get access to your previous/exact address by inputing your Passphrase and importing PrivateKey.