⚠️ Disclaimer
No service is endorsed. This is educational content only. The data broker industry is vast and constantly evolving. Opting out from some brokers may alert others to your existence. New brokers emerge constantly, and some may not honor opt-out requests. This is an ongoing battle that requires persistent effort.
TL;DR: Data brokers collect and sell vast amounts of your personal information, creating risks of identity theft, harassment, and discrimination. This guide explains how the industry works, details your legal rights to data deletion under laws like the CCPA and GDPR, and provides a step-by-step strategy for manually removing your data. It also reviews paid removal services and offers proactive tips to minimize your digital footprint for ongoing privacy protection.
Quick Start Guide
Week 1: Assessment
- Search for yourself on major people search sites
- Document what information is available
- Take screenshots for your records
- Prioritize most sensitive information for removal
Week 2-4: Major Opt-Outs
- Opt out from top 10 people search sites
- Submit CCPA requests if you're in California
- Opt out from major data brokers (Acxiom, etc.)
- Set up Google Alerts for your name
Ongoing: Maintenance
- Monthly searches for new appearances
- Respond to Google Alerts
- Submit new opt-out requests as needed
- Consider automated service if manual effort is too much
Skip the Busywork: Free Automated Opt-Out Tool
Don't want to spend weeks submitting individual requests? DataPurge generates legally-backed deletion requests citing CCPA, GDPR, and 17+ state privacy laws, then sends them with one click. Free, open-source, and your data never leaves your browser.
Understanding the Surveillance Marketplace
In the modern digital economy, personal information has become a highly valuable commodity, fueling a multi-billion dollar industry that operates largely out of public view.54, 55 This industry is dominated by entities known as data brokers. Understanding their operations, the scope of their data collection, and the associated risks is the first step toward reclaiming control over one's personal information.
The Invisible Industry: Defining Data Brokers
A data broker is an organization that specializes in collecting personal information about individuals from a vast array of sources. These entities then aggregate, analyze, and package this information into detailed profiles, which are subsequently sold or licensed to third parties.56, 57, 58 A defining characteristic of data brokers is that they do not have a direct relationship with the consumers whose data they trade.59, 60, 61 This lack of a direct connection distinguishes them from first-party companies, such as retailers or social media platforms, with whom individuals knowingly interact.
The scale of this industry is immense, with estimates suggesting there are over 4,000 data brokers in operation today.55, 62 Their business model is predicated on transforming raw, disparate pieces of data into structured, actionable intelligence. This intelligence is then sold to a wide range of clients, including marketing firms for targeted advertising, financial institutions for risk assessment, government agencies for various purposes, and even private individuals through people-search websites.62, 63, 64
The process through which data moves within this ecosystem effectively obscures its origins. Information collected from public records, commercial transactions, and online tracking is passed through multiple layers of aggregation and resale.57, 64, 65 This chain of transactions severs the data from its original context, making it nearly impossible for an individual to trace how a particular company acquired their information. Consequently, any consent notionally given in a lengthy privacy policy becomes functionally meaningless as the data is "laundered" through this complex and opaque supply chain.
Anatomy of a Data Broker: A Typology
Data brokers are not a monolith; they specialize in different types of data and serve various markets. Understanding these categories helps in prioritizing removal efforts based on the specific privacy threats they pose.
People Search Sites
These are the most publicly visible and accessible type of data broker. They compile information from public records and other sources into searchable databases, allowing anyone to look up individuals by name, phone number, address, or email.62, 66
- Examples: Spokeo, Intelius, BeenVerified, Whitepages, PeekYou, PeopleFinders.67, 68
- Function: While they can be used for benign purposes like reconnecting with old acquaintances, their unregulated nature makes them a tool for more malicious activities, including stalking, doxxing (the malicious publication of private information), and harassment.62, 69
Marketing and Advertising Brokers
These brokers are the engine of the targeted advertising industry. They build detailed consumer profiles based on demographics, online behavior, purchase history, and inferred interests, then sell access to these profiles in the form of segmented audience lists.62, 68, 70
- Examples: Acxiom, Epsilon, Oracle Data Cloud (formerly Datalogix), Experian Marketing Services.71, 72, 73
- Function: A company can purchase a list of "new parents in urban areas" or "tech-savvy homeowners" to target with specific ads.63 These categories can also be disturbingly specific and sensitive, such as lists of "Rape Sufferers" or "Erectile Dysfunction Sufferers," which have been offered for sale in the past.55, 62, 70
Financial and Risk Mitigation Brokers
This category includes entities that provide data to help businesses verify identities, prevent fraud, and assess financial risk.62, 68 The three major credit bureaus, Equifax, Experian, and TransUnion, operate in this space outside of their roles governed by the Fair Credit Reporting Act (FCRA).66, 67, 68
- Examples: Equifax, Experian, TransUnion, LexisNexis Risk Solutions, CoreLogic.54, 68
- Function: A lender might use their data to evaluate a loan application, or an insurance company might analyze it to set premiums based on inferred behaviors.57, 70, 71
Personal Health Brokers
Operating in a regulatory gray area often outside the scope of the Health Insurance Portability and Accountability Act (HIPAA), these brokers specialize in collecting and selling sensitive health-related data.66
- Examples: Experian Health Inc., Healthcare.com.68
- Function: They gather data from sources like health-related web searches, pharmacy purchases, and fitness trackers. This information is then sold to insurance providers, who may use it for risk assessment, or to pharmaceutical companies for marketing purposes.63, 68, 74
How Your Life Becomes a Product: Data Collection and Profiling
Data brokers construct their detailed dossiers by harvesting information from a wide variety of channels, often without the individual's direct knowledge or meaningful consent.
- Public Records: A foundational source is publicly available government data. Brokers systematically scrape and digitize information from voter registration files, property deeds, court records (including criminal and bankruptcy filings), marriage licenses, and professional licenses.57, 63, 65, 71
- Commercial Sources: They purchase vast datasets from other companies. This includes your purchase history from retailers, loyalty card usage, warranty registrations, and magazine subscriptions. They also buy data from other brokers, creating an intricate and often untraceable data supply chain.57, 62, 65
- Online Tracking: Brokers deploy sophisticated tracking technologies across the web. Cookies, tracking pixels, and web beacons embedded in websites and emails monitor browsing history, search queries, social media activity, and ad clicks.54, 71, 72, 75
- Mobile and App Data: Many mobile applications contain Software Development Kits (SDKs) provided by data brokers. When a user grants an app permission to access their location or other data, that permission is often extended to the broker's SDK, which then siphons off sensitive information like precise, real-time geolocation.57, 76, 77
- Inference and Algorithmic Profiling: Perhaps most concerning is the use of algorithms to infer characteristics that an individual has never disclosed. Based on browsing habits, purchase history, and location patterns, brokers may categorize someone as having a particular health condition, political affiliation, income level, or behavioral tendency.57, 74, 78 An individual who visits a racetrack may be inferred to be a "reckless driver" by an insurance company, or someone who buys baby products may be labeled a "new parent".57, 71
The result of this mass aggregation is a comprehensive digital profile that can include an individual's full name, Social Security number, past and present addresses, phone numbers, email addresses, family members, assets, job history, purchase habits, political leanings, health concerns, and a detailed log of their physical movements.63, 71, 79
The High Cost of Exposure: Risks and Harms
The existence and trade of these detailed profiles pose significant and tangible risks that extend far beyond targeted advertising. The primary danger lies not merely in the exposure of data, but in the application of opaque, algorithmic judgments that can have profound real-world consequences without any form of due process for the individual.
- Identity Theft and Financial Fraud: Criminals can purchase personal data from brokers and use it to open fraudulent accounts, steal identities, or craft highly personalized and convincing phishing scams that are more likely to succeed.66, 80, 81, 82
- Physical Safety and Harassment: The easy availability of home addresses, phone numbers, and names of relatives on people search sites creates a direct threat to physical safety, enabling stalking, doxxing, and harassment, particularly for survivors of domestic violence, law enforcement officers, and public officials.69, 79, 80
- Financial and Social Discrimination: Algorithmic judgments made by data brokers can lead to direct financial harm. Inaccurate or inferred data can result in higher insurance premiums, denial of credit or housing, or rejection from employment opportunities.57, 69, 78 Sensitive categories related to ethnicity, income, or health reinforce and automate societal biases.74
- Manipulation and Disinformation: Detailed psychological profiles are used by political campaigns, foreign entities, and other groups to deliver micro-targeted messages. These messages are designed to exploit individual vulnerabilities, influence opinions, and spread disinformation, posing a threat to democratic processes.55, 63, 74, 83
- National Security Risks: The sale of bulk data on U.S. individuals, including sensitive information on military personnel and government employees, to foreign governments or affiliated non-state actors represents a serious national security vulnerability that could be exploited for espionage or intelligence gathering.74, 84, 85
Your Right to Be Deleted: The Legal Toolkit
While the data broker industry operates with little federal oversight in the United States, a growing patchwork of state and international laws provides individuals with a legal foundation to request access to and deletion of their personal information. Understanding these rights is essential for executing an effective opt-out strategy.
The U.S. Legal Patchwork: State-by-State Rights
In the absence of a comprehensive federal privacy law, consumer data protection in the U.S. is governed by a complex mix of state-level legislation.79, 86, 87
California as the Vanguard (CCPA/CPRA)
The California Consumer Privacy Act (CCPA) of 2018 and its successor, the California Privacy Rights Act (CPRA) of 2020, have established the strongest consumer privacy rights in the nation.88, 89 These rights, while specific to California residents, are often extended by businesses to all U.S. consumers. Key rights include:
- The Right to Know: The right to request that a business disclose the specific pieces of personal information it has collected, the sources of that information, the business purpose for collecting it, and the categories of third parties with whom it has been shared.89
- The Right to Delete: The right to request the deletion of personal information held by a business and its service providers. This right is not absolute; it is subject to numerous exceptions, such as when the data is necessary to complete a transaction or comply with a legal obligation.89
- The Right to Opt-Out of Sale/Sharing: The right to direct a business not to sell or share personal information. Businesses must provide a clear link, typically labeled "Do Not Sell or Share My Personal Information," on their website to facilitate these requests.60, 89
- The Right to Limit Use and Disclosure of Sensitive Personal Information: The right to instruct a business to use sensitive data, such as Social Security numbers, precise geolocation, racial or ethnic origin, and health information, only for necessary business purposes.89
The "Delete Act": A Centralized Approach (Now Live)
A significant amendment to California law, Senate Bill 362 (the "Delete Act"), established the Delete Request and Opt-out Platform (DROP), which launched on January 1, 2026.90, 91, 92 California consumers can now submit a single, authenticated request through DROP to direct all registered data brokers to delete their personal information. While consumers can submit requests immediately, data brokers are required to begin processing these deletion requests by August 1, 2026, checking the DROP system at least every 45 days and processing requests within 45 days of retrieval.90, 93
Data Broker Registration Laws
A crucial transparency measure enacted by California, Vermont, Texas, and Oregon requires data brokers to register annually with a state agency.79, 94 These public registries provide an invaluable, though incomplete, list of data brokers operating within their jurisdictions, including contact information needed to submit privacy requests.93, 95 While these registries are the best available starting point for identifying brokers, joint analysis by the Electronic Frontier Foundation (EFF) and Privacy Rights Clearinghouse has revealed widespread non-compliance, with hundreds of brokers registered in one state failing to register in others, highlighting weak enforcement and loopholes in the laws.77, 96
Other State Comprehensive Privacy Laws
As of January 2026, nineteen states have enacted comprehensive privacy laws, with 16 already in effect and three more (Indiana, Kentucky, and Rhode Island) taking effect on January 1, 2026. Key states include California, Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Montana, Delaware, Iowa, Maryland, Minnesota, Nebraska, New Hampshire, New Jersey, and Tennessee.88, 97, 98 Most of these laws are modeled after the CCPA or Virginia's Consumer Data Protection Act (VCDPA) and grant residents similar rights to access, delete, and opt out of the sale of their personal data.
It is important to recognize that the "Right to Delete" is more accurately a "right to request deletion." The legal frameworks contain significant exceptions, particularly for information sourced from public records, which brokers can legally retain and re-collect even after a deletion request.89, 99, 100 Studies and anecdotal evidence show that brokers may ignore requests or that data often reappears after a short period.99, 101 This reality reframes the task from a one-time deletion to a process of ongoing data suppression and monitoring.
The Global Standard: Europe's GDPR
The European Union's General Data Protection Regulation (GDPR) is the global benchmark for data privacy and grants extensive rights to individuals ("data subjects") within the EU.102, 103 Key rights include:
- Right of Access (Article 15): The right to obtain confirmation that one's data is being processed and to access that data and other information, such as the source of the data and the recipients.104, 105
- Right to Erasure ('Right to be Forgotten') (Article 17): The right to have personal data erased without undue delay under certain conditions.103
- Right to Object (Article 21): The right to object to the processing of personal data, particularly for direct marketing purposes.102, 105
While GDPR directly applies only to EU residents, its influence is global. Many multinational companies have adopted its standards across their operations, and U.S. residents may find that citing GDPR principles can be effective when communicating with data brokers who operate internationally. Under GDPR, organizations typically have one month to respond to a data subject request.102
The Manual Offensive: A Step-by-Step DIY Removal Strategy
For individuals willing to invest the time and effort, manually requesting data removal is a free and often effective method for reducing one's digital footprint. This process is best approached as a systematic campaign. The significant time and complexity involved are not accidental; they function as a "compliance tax" designed by the industry to discourage the vast majority of consumers from exercising their privacy rights, thereby preserving the profitable status quo.106, 107
Preparing for the Campaign: Essential First Steps
Before initiating contact with data brokers, several preparatory steps can streamline the process and enhance personal security.
- Establish a Dedicated Email Address: Create a new email account exclusively for opt-out requests. This prevents sharing a primary email address with brokers and helps organize all related correspondence in one place.100, 108
- Create a Tracking System: Use a spreadsheet to document every action. Record the data broker's name, the date of the request, the method used (e.g., web form, email), any confirmation numbers received, and a follow-up date.109
- Practice Good Digital Hygiene: Proactively reduce the amount of new data available for scraping. This includes strengthening passwords with a password manager, enabling two-factor authentication on all critical accounts, and tightening privacy settings on social media profiles to limit public visibility.80, 107, 110
- Use a Virtual Private Network (VPN): A VPN encrypts internet traffic and masks the user's IP address, providing an additional layer of privacy while navigating data broker websites.107, 111
Phase 1: Identifying Your Exposure
The first phase involves compiling a comprehensive list of data brokers that hold personal information.
- Conduct Web Searches: Begin by searching for one's own name, phone number, and current and past addresses using a search engine. Enclosing terms in quotation marks (e.g., "Jane Doe" and "123 Main Street") can yield more precise results. The first few pages of results will typically reveal profiles on several people search sites.106, 108, 112
- Consult State Registries: The official data broker registries maintained by California, Vermont, Texas, and Oregon are primary sources for identifying brokers. The nonprofit organization Privacy Rights Clearinghouse consolidates these state lists into a single, searchable database, which is an excellent resource.95
- Utilize Free Scans: Some paid data removal services offer a free initial scan that identifies which brokers have a profile on an individual. These reports can be used to populate the manual opt-out list without purchasing the full service. Optery, for instance, provides a free tier that includes detailed DIY removal steps.113, 114, 115
Phase 2: Executing Opt-Out Requests
With a list of targets compiled, the next phase is to systematically submit removal requests.
- General Procedure: For each broker, navigate to their website and locate the privacy or opt-out portal. These links are typically found in the website's footer under headings such as "Do Not Sell My Personal Information," "Privacy Choices," or "Opt-Out".66, 116
- The Common Process: While each site varies, the process generally involves these steps:
- Search for the specific personal profile on the broker's site.
- Copy the URL of the profile page.
- Paste the URL into the broker's opt-out form.
- Provide a name and the dedicated opt-out email address.
- Complete a CAPTCHA to prove you are not a bot.
- Click a verification link sent to the dedicated email address to confirm the request.106, 117, 118
- Navigating Obstacles: The process is often intentionally difficult. Some brokers use "dark patterns", deceptive user interface designs, to confuse users or hide their opt-out pages from search engines.107 Some may require identity verification, such as a copy of a driver's license; if this is necessary, redact sensitive information like the photo and license number before submitting.80
Phase 3: Prioritizing Key Broker Types
A strategic approach involves targeting the most impactful brokers first. This is complicated by industry consolidation, where multiple sites are owned by a single parent company. Identifying these parent companies can be a significant shortcut. For example, PeopleConnect owns a network including Intelius, Truthfinder, and Instant Checkmate, allowing for a more centralized opt-out.100, 119
High-Priority People Search Sites
These sites pose the most immediate risk to physical safety and should be addressed first.
- PeopleConnect (Intelius, Truthfinder, Instant Checkmate, US Search): Opt-out requests for this entire network are managed through the centralized PeopleConnect Suppression Center, which requires email and identity verification.119, 120
- BeenVerified (also owns PeopleLooker, PeopleSmart): The process involves finding the record on their site and submitting it through their opt-out form, followed by email verification.117, 121
- Spokeo: Requires finding the profile, copying its URL, and submitting it on the Spokeo opt-out page.118
- Whitepages: The process requires submitting the profile URL and then verifying the request via an automated phone call to a number provided by the user.122
- MyLife: Notoriously difficult. The recommended method is to email
[email protected]and[email protected]with the profile URL and a clear deletion request, though the company may try to force a phone call.123, 124
Major Marketing and Data Brokers
These foundational brokers supply data to many smaller entities.
- Acxiom: Provides a dedicated consumer opt-out portal on its website to request removal from its marketing products.125, 126
- Epsilon: Offers a "Consumer Privacy Request Form" on its site where one can select "Do Not Sell My Personal Information".127, 128
- Oracle Data Cloud: Manages opt-outs through its main privacy choices page.129
Credit Bureaus (Marketing Opt-Out)
The major credit reporting agencies sell consumer information for marketing purposes, particularly for pre-screened offers of credit and insurance.
- OptOutPrescreen.com: This is the official, centralized website created by Equifax, Experian, TransUnion, and Innovis. It allows consumers to opt out of receiving these pre-screened offers for five years online or permanently via a mail-in form.130
- Individual Bureau Portals: Each credit bureau also maintains its own privacy portal for opting out of other forms of targeted marketing that are separate from pre-screened offers.131, 132, 133
Sustaining Privacy: The Ongoing Battle
Data removal is not a one-time event. Data brokers continuously update their databases from public and commercial sources, meaning that previously removed information will often reappear.99, 106, 108 To maintain privacy, it is necessary to periodically re-check major broker sites and resubmit opt-out requests. A quarterly (90-day) cycle is a recommended best practice for this ongoing monitoring.66, 106
Calling in Reinforcements: An Analysis of Paid Data Removal Services
For individuals who find the manual opt-out process too daunting or time-consuming, a growing market of paid data removal services offers an automated alternative. However, their effectiveness and value proposition warrant careful scrutiny.
How Automated Services Work
- Sign-Up and Authorization: The user creates an account, provides their personal information (full name, date of birth, current and past addresses, phone numbers, etc.), and grants the service legal authority to act on their behalf, typically through a Limited Power of Attorney.69
- Automated Scanning and Removal: The service then deploys automated software to scan hundreds of data broker websites to find the user's profile. Once a profile is identified, the service automatically submits an opt-out or deletion request.69, 115, 134 Some services also employ human agents to handle more complex removal processes.135
- Ongoing Monitoring and Reporting: A core feature of these subscription-based services is continuous monitoring. They periodically re-scan broker sites and resubmit removal requests as needed to ensure that data does not reappear. Users typically receive regular reports detailing the removals performed.69, 109
The Effectiveness Debate: A Look at the Evidence
While these services promise convenience, their actual performance can vary significantly. A 2024 investigation by Consumer Reports evaluated several popular services and concluded that many are "largely ineffective".101, 136
- Key Findings: The study, which ran for four months, found that while paid services did save users a significant amount of time, their success rates were inconsistent. Some services had removed less than 10% of the participants' profiles after four months.136
- Performance Variance: The study identified clear differences in efficacy. Optery and EasyOptOuts were the top performers, successfully removing over 65% of profiles found. Services like DeleteMe, IDX, and Kanary were rated as "mid-level performers," while others were found to be the least effective.101, 136
- Manual vs. Paid: A surprising finding was that the manual opt-out process, while time-consuming, yielded better and faster initial results than any of the paid services tested. Manual requests resulted in a 70% removal rate within the first week, a figure no paid service matched.136
A fundamental paradox of using these services is the requirement to entrust them with the very sensitive information one is trying to protect, necessitating a careful evaluation of the service's own privacy policies and security practices.134
Comparative Analysis of Leading Services
The market for data removal is crowded, with each service offering different features, pricing tiers, and levels of coverage. The following table provides a comparative overview of some of the leading providers to aid in the decision-making process.113, 136, 137, 138, 139, 140, 141, 142, 143
| Service | Starting Price (Annual) | Family Plan | Brokers Covered | Free Tier/Trial | Key Differentiator | Consumer Reports Finding |
|---|---|---|---|---|---|---|
| Optery ⭐ | $3.25/mo ($39/yr) | Yes (discounted bundles) | 120-645+ | Yes (Free Basic plan for DIY) | Provides before-and-after screenshots as proof of removal. | Top Performer (68% success rate) |
| Incogni ⭐ | $7.99/mo ($95.88/yr) | Yes | 420+ | No (30-day money-back guarantee) | Fully automated system using CCPA/GDPR; part of Surfshark/NordVPN ecosystem. | Not explicitly tested in the main group, but well-regarded. |
| DeleteMe | $8.71/mo ($209/2 yrs) | Yes (2 or 4 people) | 153-750+ | No | Uses human privacy experts in addition to automation; provides detailed reports. | Mid-Level Performer |
| Aura | $7.00/mo ($84/yr) | Yes (Couple and Family plans) | 140+ | No (14-day free trial) | All-in-one suite that bundles data removal with identity theft protection, VPN, antivirus, etc. | Not tested in the study. |
| Kanary | $14.99/mo ($179.88/yr) | Yes | 300+ | Yes (14-day free trial with 3 removals) | Offers a full-featured free trial without requiring payment information. | Mid-Level Performer |
*Note: Pricing and features are subject to change. Data is based on information available as of January 2026. "Brokers Covered" can vary based on the subscription tier.
Proactive Defense: Minimizing Your Data Footprint
While removing existing data from broker databases is a crucial reactive step, a comprehensive privacy strategy also involves proactive measures to limit the amount of personal information that is available for collection in the first place.
Strengthen Your Digital Hygiene
Control the flow of personal information by being highly selective about what you share on public platforms. Review privacy settings on all social media accounts and restrict visibility to "friends only." Periodically audit and delete old, unused online accounts and mobile apps, which are often forgotten reservoirs of personal data.80, 100, 107, 108, 110, 111
Use Technical and Legal Tools
Use built-in tools to reduce third-party tracking. Regularly review and revoke unnecessary app permissions on your mobile devices. Disable your mobile advertising ID on both iOS and Android to make cross-app tracking more difficult. Install tracker-blocking browser extensions like the EFF's Privacy Badger and enable the Global Privacy Control (GPC) signal, which communicates a legally binding request to opt out of data sales under laws like the CCPA.89, 110, 144
The Data Broker Compendium
The following lists provide a starting point for a manual opt-out campaign. The process for each broker varies, but typically involves finding a "Privacy" or "Do Not Sell My Information" link in the website's footer. It is recommended to prioritize the "People Search Sites" and "Major Marketing & Financial Brokers" first, as they represent the most public exposure and are often the primary sources for smaller brokers.
People Search Sites
| Broker Name (and Affiliates) | Direct Opt-Out Link / Instructions | Notes |
|---|---|---|
| BeenVerified (PeopleLooker, PeopleSmart) | BeenVerified Opt-Out | Requires searching for your record, submitting the profile, and verifying via email.117, 121 |
| Intelius (PeopleConnect, Truthfinder, Instant Checkmate, US Search) | Intelius Opt-Out | Handled through the central PeopleConnect suppression portal. Requires email and identity verification.119, 120 |
| Spokeo | Spokeo Opt-Out | Requires finding your profile URL, submitting it on the opt-out form, and verifying via email.118 |
| Whitepages | Whitepages Opt-Out | Requires submitting your profile URL and then completing a verification via an automated phone call.122 |
| PeekYou | PeekYou Opt-Out | Requires filling out a form, providing your profile URL, and clicking a confirmation link in an email.145 |
| Radaris | Radaris Opt-Out | Multi-step process on their site that involves finding your profile and verifying your identity.146 |
| PeopleFinders | PeopleFinders Opt-Out | Requires finding your profile URL and submitting it through their opt-out page, followed by email verification.147 |
| MyLife | Email [email protected] and [email protected] | A difficult process. Email your name, DOB, and profile URL with a clear removal request. May require a follow-up phone call.124 |
Major Marketing & Financial Brokers
| Broker Name | Direct Opt-Out Link / Instructions | Notes |
|---|---|---|
| Acxiom | Acxiom Opt-Out | Online form to opt out of marketing data products for mailing addresses, phone numbers, and emails.125, 126 |
| Experian | Experian Opt-Out | Provides options for opting out of targeted advertising and direct mail. Use OptOutPrescreen.com for credit offers.130, 131 |
| Equifax | Equifax Privacy Choices | Portal to exercise rights to opt-out of sale/sharing. Use OptOutPrescreen.com for credit offers.132, 148 |
| TransUnion | TransUnion Privacy | Manages privacy choices and opt-outs. Use OptOutPrescreen.com for credit offers.133 |
| CoreLogic | CoreLogic Privacy Policy | Opt-out process is via "CCPA" link in footer, leading to different forms based on relationship (e.g., B2B vs. HR).149, 150 |
| Epsilon | Epsilon Data Subject Request | A "Data Subject Request" form to submit "Do Not Sell" requests.127, 128 |
| Oracle Data Cloud | Oracle Privacy Choices | Central portal for managing privacy preferences for Oracle's marketing and advertising data.129 |
Additional Resources for Broker Lists
The number of data brokers is vast and constantly changing. For a more exhaustive list, the following resources are highly recommended:
- Privacy Rights Clearinghouse Data Broker Database: A unified database of state data broker registries, containing information on over 750 brokers.95
- State Registries: The official registries for California, Vermont, Texas, and Oregon provide direct information from the brokers themselves.93, 95, 151
- "Big-Ass Data Broker Opt-Out List" on GitHub: A community-maintained list with direct links and instructions for a wide range of people search sites.123
Conclusion: Privacy as an Ongoing Practice
Reclaiming personal data from the sprawling and opaque data broker industry is not a single action but a continuous commitment to digital privacy. The evidence clearly indicates that a one-time request for deletion is insufficient. Due to the constant scraping of public records and the continuous flow of data from commercial sources, personal information is likely to reappear in broker databases over time.
Therefore, an effective strategy must be multifaceted and persistent. It begins with proactive defense: minimizing one's data footprint by practicing strong digital hygiene, limiting public sharing on social media, and utilizing technical tools like GPC and privacy-focused browser settings. This reduces the amount of new data available for collection.
The second component is reactive removal. This can be undertaken through a diligent manual campaign, targeting high-risk brokers first and maintaining a regular, quarterly schedule of monitoring and re-submitting opt-out requests. While time-intensive, this method is free and has been shown to be highly effective. Alternatively, for those with the resources, paid data removal services can automate this maintenance, though their effectiveness varies and should be chosen based on independent evaluations rather than marketing claims alone.
Ultimately, achieving a greater degree of privacy in the digital age requires a shift in mindset, from viewing privacy as a static setting to be configured once, to understanding it as an ongoing practice of vigilance and self-defense. By combining proactive data minimization with a persistent removal strategy, individuals can meaningfully reduce their exposure to the risks of identity theft, harassment, and algorithmic discrimination, thereby asserting a greater measure of autonomy over their digital lives.
Time and Resource Investment
DIY Manual Approach
- Initial effort: 20-40 hours for comprehensive opt-outs
- Ongoing maintenance: 2-4 hours monthly
- Cost: Free
- Best for: Those with time and patience
Automated Services
- Initial setup: 15-30 minutes
- Ongoing maintenance: Automated
- Cost: $100-300 annually
- Best for: Those valuing time over cost
Next Steps
Data broker opt-outs are part of comprehensive privacy protection:
Digital Compartmentalization OPSEC Basics Back to GuidesReferences
- PCMag. "The Best Personal Data Removal Services."
- Fathom Analytics. "What are data brokers and should I be worried?"
- California Lawyers Association. "Wake Up Now and Discover that You Are a Data Broker."
- R Street Institute. "Unpacking the Risks and Ethical Concerns Surrounding Data Brokers."
- Webopedia. "12 Top Data Broker Companies: Who Owns Your Data?"
- Stoel Rives LLP Privacy Law Blog. "Navigating Data Broker Privacy Compliance: Top 5 Considerations."
- State of California Department of Justice. "California Consumer Privacy Act (CCPA)."
- TermsFeed. "Data Brokers and California Law."
- DeleteMe. "What Are Data Brokers and Why Should I Be Concerned?"
- Proton. "What are data brokers, and what do they do with your data?"
- TrustArc. "What Are Data Brokers and How Do They Impact Data Privacy?"
- Kaspersky. "How to Stop Data Brokers From Selling Your Personal Information."
- All About Cookies. "What Is Data Broker Removal? (And How To Opt Out)."
- Experian. "How to Remove Your Information From People Search Sites."
- Medium. "A Look at the Different Types of Data Brokers."
- Optery. Official Website.
- Clearcode. "What Is a Data Broker and How Does It Work?"
- McAfee. "What Is a Data Broker?"
- Malwarebytes. "What are data brokers?"
- Webopedia. "12 Top Data Broker Companies: Who Owns Your Data?"
- Duke University Sanford School of Public Policy. "Data Brokers and Sensitive Data on U.S. Individuals."
- University of Tennessee Knoxville OIT. "What is a Data Broker?"
- Electronic Frontier Foundation. "Location Data Brokers."
- DeleteMe. "Incognito, July 2025: Data Brokers Aren't Registering and Your Data Could Be Exposed."
- The Record. "‘Junk’ inferences: How data brokers get you all wrong."
- Electronic Privacy Information Center (EPIC). "Data Brokers."
- NortonLifeLock. "How to remove yourself from data broker sites."
- Constella Intelligence. "The Hidden Dangers of Data Brokers."
- ExpressVPN. "How to stop data brokers from selling your personal information."
- Forbes. "Data Brokers: The Hidden Threat To Privacy."
- U.S. House Committee on Energy and Commerce. "Expert Warns Data Brokers Profit from Unregulated Surveillance."
- EPIC. "EPIC, Demand Progress, EFF Applaud Proposed FTC Order with Location Data Broker..."
- DLA Piper. "Data Protection Laws of the World: United States."
- Willkie Compliance Concourse. "U.S. State Data Broker Laws."
- Bloomberg Law. "State Privacy Legislation Tracker."
- State of California Department of Justice. "California Consumer Privacy Act (CCPA)."
- IAPP. "CPPA approves data broker regulations."
- California Privacy Protection Agency. "Regulations."
- Polsinelli. "California's Amended Data Broker Registration Law."
- California Privacy Protection Agency. "Data Broker Registry."
- EPIC. "Data Brokers."
- Privacy Rights Clearinghouse. "Data Broker Database."
- Electronic Frontier Foundation. "Location Data Brokers."
- IAPP. "US State Privacy Legislation Tracker."
- White & Case. "US data privacy guide."
- Reddit. "Is there any point in trying to remove your information from data broker sites?"
- Experian. "How to Remove Your Information From People Search Sites."
- Consumer Reports. "Consumer Reports evaluation of people-search site removal services finds that they are largely ineffective."
- European Data Protection Board. "Respect individuals' rights."
- GDPR-Info.eu. "Chapter 3: Rights of the data subject."
- GDPR-Info.eu. "Art. 15 GDPR – Right of access by the data subject."
- White & Case. "Chapter 9: Rights of data subjects."
- DeleteMe. "How to Remove Your Data from People Finder Sites."
- McAfee. "You Have a Right to Delete Your Data, But Dozens of Data Brokers Hide How to Do It."
- CNET. "A Guide to Data Removal Services: Should You Pay for Privacy?"
- Medium. "How I Removed Myself From 50+ Data Brokers (And How You Can Too)."
- Electronic Frontier Foundation. "Opt Out October: Daily Tips to Protect Your Privacy and Security."
- Kaspersky. "What Is the Tor Browser?"
- Incogni. "Data broker opt-out (A – Z)."
- All About Cookies. "Optery Review 2025: Is It Worth It?"
- PCMag Australia. "Incogni vs. Optery: Which Data Removal Service Comes Out on Top?"
- PCMag. "The Best Personal Data Removal Services for 2025."
- All About Cookies. "What Is Data Broker Removal? (And How To Opt Out)."
- OneRep. "How to opt out of BeenVerified."
- OneRep. "Spokeo opt out: step-by-step instructions."
- Mozilla. "Intelius removal guide."
- DeleteMe. "How to Remove Yourself from Intelius."
- MyDataRemoval. "Beenverified opt out guide."
- DuckDuckGo. "Whitepages Opt Out 2025: Step-by-Step Removal."
- GitHub. "Big-Ass-Data-Broker-Opt-Out-List."
- CBS News. "How to remove your personal information from MyLife.com, White Pages, Intelius."
- Atlas. "Acxiom Opt-Out Guide."
- PrivacyHawk. "How to Opt-Out, Delete, or Make Privacy Requests From Acxiom."
- Guaranteed Removals. "Epsilon.com Opt Out – Remove Your Information."
- MyDataRemoval. "Epsilon opt out guide."
- Oracle. "opt-out."
- OptOutPrescreen.com. Official Website.
- Experian. "Opting-Out with Experian."
- Equifax. "myPrivacy."
- TransUnion. "Cancellation."
- Incogni. Official Website.
- Global Cybersecurity Network. "DeleteMe."
- The Record. "Consumer Reports study finds data removal services are often ineffective."
- Security.org. "The Best Data Removal Services of 2025."
- All About Cookies. "The best data broker removal services as of October 2025."
- Security.org. "Incogni Review 2025."
- DeleteMe. "Privacy Protection Plans."
- Aura. "Pricing."
- VPNOverview. "Kanary Review (2025): A Cheap and Secure Data Removal Service."
- Security.org. "Optery vs. Kanary."
- Electronic Frontier Foundation. "Understanding EFF's Do Not Track Policy."
- NetReputation. "PeekYou Removal Guide."
- Guaranteed Removals. "Radaris.com Opt Out – Remove Your Information."
- MEPRISM. "How to Remove Your Data from PeopleFinders."
- Equifax. "Take Control of Your Personal Information."
- Incogni. "CoreLogic Opt Out Guide."
- Cybernews. "How to opt out of CoreLogic?"
- Texas Secretary of State. "Registry of Registered Data Brokers."