Upload & Sell: Off
Sorry to read about this major inconvenience for you Paul. I can sympathize, though was more fortunate.
I browse Gizmodo from time to time, signed up to comment on their commenting system, used my gmail as log-in and the same password as the email log-in. Then they were hacked. I forgot I had signed up with them, and that it was my gmail, therefore it didn't click to change the pw when word of the Gawker hack got out... Don't remember when that was, but about a year ago, I received a spam message sent from my own gmail account... I immediately logged-in and changed the password. Luckily the hacker hadn't already done so, or wasn't interested in doing so after the first spam emission. Gmail allows you to check log-in history, which I did, and the hacker used a Chinese IP address... Anyway, since then I have significantly diversified my passwords. One positive result from the hack was hearing from a number of people I hadn't been in contact with for a while...
As for Google... don't log-in to their services while you're also surfing. That won't eliminate all of their tracking, but it should keep your identity somewhat disassociated. Consider using another different browser dedicated just to online Google apps and any other similar services where you need to log in. Use a proxy site for Google search, such as Startpage: https://startpage.com especially if you need to do searches on sensitive matters, such as your health, finances, etc... Install a bug blocker, such as Ghostery, to block the myriad of scripts tracking your browsing habits... It's interesting to see the number of tracking/ad scripts on various sites.