Data brokers know your name, home address, phone number, email, employer, salary range, political affiliation, family members, purchase history, and sometimes even your health conditions. But how? You never signed up for their services. You never gave them permission. Yet they have a detailed profile on you that anyone can access.
Understanding how data brokers find your information is the first step to shutting them down. Once you know where they’re getting your data, you can cut off the supply — or at least make it significantly harder for them to keep rebuilding your profile.
Want to see what data brokers already have on you? Run a free scan with Optery to find out in about 30 seconds. You’ll probably be surprised at how much is out there.
Public Records
Public records are the foundation of how data brokers find your information. These are government documents that are legally available to anyone, and data brokers scrape them in bulk. The most common sources include property records from your county assessor showing your name, address, and purchase price. Voter registration files containing your name, address, party affiliation, and voting history. Court records including civil suits, criminal cases, divorces, and bankruptcies. Business registrations linking your name to any LLC, corporation, or DBA you’ve filed. Vehicle registrations tying your name to a car make, model, and address. And marriage and birth records that connect you to family members.
You can’t remove most public records — they exist for legitimate legal purposes. But you can limit future exposure by using LLCs or trusts for property purchases, registered agents for business filings, and P.O. boxes where allowed for voter registration. Learn more in our guide on how to protect your privacy when moving.
Social Media
Every piece of information you share on social media is potential fuel for data brokers. Your profile details like name, city, employer, school, and birthday are obvious targets. But data brokers also harvest less obvious signals — location check-ins, tagged photos, friend lists, group memberships, and even the metadata from photos you upload.
Facebook, Instagram, LinkedIn, and Twitter all have data sharing agreements with third parties or allow scraping through their APIs. Even with privacy settings turned up, some information leaks through friends’ public profiles, shared posts, or platform data breaches.
The fix is straightforward: remove personal details from your profile fields, set everything to private, disable location tagging, and audit your friend list. For a platform-by-platform walkthrough, read our guide on how to protect your privacy on social media.
Online Purchases and Accounts
Every time you create an account on a shopping site, sign up for a loyalty program, register a warranty, or make an online purchase, you’re handing over personal data. Retailers and e-commerce platforms routinely share or sell customer information to data brokers through data-sharing agreements buried in their privacy policies.
This is how data brokers find your information about your buying habits, product preferences, household income estimates, and shopping patterns. They combine purchase data with your other records to build a more complete profile.
To limit this exposure, use guest checkout whenever possible, avoid loyalty programs that require your real information, use email aliases for shopping accounts, and delete old online accounts you no longer use.
Data Breaches
When companies get hacked, the stolen data often ends up for sale on dark web marketplaces. Data brokers don’t typically buy stolen data directly, but the information from breaches circulates through secondary channels and eventually makes its way into legitimate-seeming data aggregation services.
If your email, password, phone number, or Social Security number was exposed in a breach, that data becomes part of the ecosystem that feeds broker profiles. Check Have I Been Pwned to see if your email has been compromised, and read our guide on what to do after a data breach.
Cookies, Trackers, and Browser Fingerprinting
When you browse the internet, tracking technologies follow your activity across websites. Third-party cookies record which sites you visit, what you search for, and what you click on. Tracking pixels embedded in emails tell companies when you open their messages. Browser fingerprinting identifies your specific device based on your screen resolution, installed fonts, browser version, and other technical details.
This browsing data gets funneled to data brokers through advertising networks and data management platforms. It’s how data brokers find your information about your interests, health concerns, financial situation, and other sensitive topics — based on what you search for and read online.
Using a VPN, privacy-focused browser like Firefox or Brave, ad blockers, and regularly clearing cookies can significantly reduce this type of tracking. Learn more in our guide on what a VPN is and whether you need one.
Apps and Mobile Devices
Your phone is one of the richest data collection tools ever created. Many apps request permissions to access your contacts, location, photos, microphone, and more — then share that data with third-party analytics companies and data brokers.
Location data is particularly valuable. Data brokers can purchase aggregated location data from app developers to track where you live, where you work, where you shop, and where you worship. This data is technically “anonymized,” but researchers have repeatedly shown that location patterns can be de-anonymized to identify specific individuals.
Audit your app permissions regularly, deny access to anything that isn’t essential for the app’s core function, and disable location services for apps that don’t need it.
Public Wi-Fi and ISPs
When you connect to public Wi-Fi at a coffee shop, airport, or hotel, your browsing activity can be monitored. Some public Wi-Fi providers collect and sell usage data to data brokers.
Even your home internet service provider can be a source. In the US, ISPs are legally allowed to collect and sell your browsing data in many cases. A VPN encrypts your internet traffic and prevents both public Wi-Fi operators and ISPs from seeing what you do online. Check out our guide on whether public Wi-Fi is safe to use.
People You Know
This one surprises most people. Even if you’re careful with your own data, your family members, friends, and coworkers can expose you. When someone uploads their contact list to a social media platform or messaging app, your name, phone number, and email get ingested into those systems. When a family member lists you as a relative on their social media profile, data brokers link your records together.
This is exactly why family coverage matters when using a data removal service. Even if you clean up your own data, family members’ exposed profiles can re-link your information. Services like Incogni offer family plans covering up to 5 people specifically to address this problem.
How to Stop Data Brokers from Finding Your Information
Now that you know how data brokers find your information, here’s how to fight back:
Remove your data from broker sites. You can do this manually through our complete data broker opt-out guide, or use an automated service like Incogni (420+ brokers, $7.99/month) or Optery (screenshot verification of every removal) to handle it for you.
Lock down your social media and online accounts. Remove personal details from profile fields, tighten privacy settings, and delete accounts you no longer use.
Limit future data collection. Use guest checkout, email aliases, a VPN, and privacy-focused browsers. Be deliberate about which apps you install and what permissions you grant.
Set up ongoing monitoring. Data brokers don’t stop collecting just because you opted out once. Google Alerts and automated removal services keep watch so you don’t have to.
For the complete step-by-step process, read our full guide on how to remove your personal information from the internet.