And use disposable email addresses (i.e. gmail) when signing up for anything.
They may grab one thing but not all.
Also use disposable email for backup emails.
Use a password program so you never have the same login name or email or password for anything. It doesn't protect you from poorly run firms but does cut down on the damage that can be done.
Years ago when I belonged to Metafilter someone attacked a user's account and began going after his other accounts on other sites. I used the same technique as the hackers and seized a bunch of his accounts and gave them back to him.