A partial solution is to use Solid apps on decentralised secure, encrypted storage such as SAFE Network (see post below).
This eliminates pod providers giving you control over your data. Apps could still copy it, but I think that’s a simpler issue to solve particularly on SAFE. See: