Get Off the Data Broker Lists: A Technical Walkthrough of Removing Your Information

In Part 1 of this series, you ran a structured audit of your digital footprint and very likely found at least one website you didn't recognize, listing your name, address, and phone number for anyone to view. That site is almost certainly a data broker — and this part is dedicated entirely to dealing with that category of company properly.

This is the least glamorous step in the whole series. It's also, in practical terms, one of the highest-impact ones — because these are the companies actively packaging your information for resale, right now, whether or not you ever interact with them directly.

Understanding what you're actually dealing with

A data broker collects personal information from a range of sources — public records, retail loyalty programs, app data, and previously leaked databases — and combines it into a searchable profile. They then sell access to that profile to marketers, background-check companies, recruiters, and, in some cases, to anyone at all who's willing to pay a small fee.

You never created an account with these companies. That's precisely the business model: they assemble your profile from fragments that already existed elsewhere, repackage it, and sell access to the finished product. Knowing this matters, because it changes your expectations — you're not trying to "delete your account" with these companies, you're issuing a formal request for them to stop processing and displaying data about you.

Step 1: Identify which broker sites are showing your information

Go back to the results you gathered in Part 1's structured search. Any site that presents itself as a "people search," "background check," "public records," or "reverse phone lookup" service is, functionally, a data broker.

For each one, do the following and record it in a simple spreadsheet:

1. Locate your specific listing. Use the site's own search tool to find the exact page displaying your information — not just the homepage.

2. Copy the direct URL of that listing page. Most opt-out forms require this exact link.

3. Take a screenshot of the listing as it currently appears, including the date visible on your screen. This gives you a record of what existed before your removal request, which is useful if you ever need to follow up or escalate.

Aim to identify at least the ten to fifteen sites most likely to carry your information — generally the larger, more established "people search" services tend to be the ones that feed smaller ones, so starting with those produces the widest effect.

Step 2: Submit removal requests through the correct channel

Nearly every data broker is required, in some form, to provide an opt-out mechanism — even though many deliberately make it difficult to find. The general process looks like this:

1. Search specifically for the removal page. Use a search like [broker name] opt out or [broker name] remove my information — these pages are almost never linked from the homepage navigation.

2. Read the instructions carefully before starting. Some brokers require you to locate your listing through their search tool first and submit its exact URL; others require you to fill out a form with your name and the city associated with the listing; a few require you to verify your request through a confirmation email.

3. Use the email alias system you'll set up in Part 4 (or, if you're doing this before reaching that part, a separate email address you don't use elsewhere) when submitting these requests — this avoids tying your main email to yet another database, and helps you track which broker is responsible for any follow-up emails you receive afterward.

4. Submit the request exactly as instructed, including the listing URL and screenshot if requested.

5. Save the confirmation. Whether it's a confirmation email, a reference number, or a screenshot of a "request submitted" page, keep it. If the listing reappears later, this is your evidence that you already requested removal once.

Update your spreadsheet with the date you submitted each request and the confirmation reference, if any. Most brokers state a timeframe for processing requests — commonly somewhere between a few days and a few weeks. Note that expected date too, so you know when to follow up.

Step 3: Decide whether to automate this with a removal service

Doing this manually for ten or fifteen sites is very achievable in an afternoon. Doing it for the full range of brokers that exist — which can run into the hundreds — is a much larger task, and one that needs to be repeated regularly, since brokers continually rebuild their databases from new sources.

This is where dedicated removal services such as DeleteMe or Incogni come in. They handle the process on an ongoing, automated basis: submitting requests across a wide list of brokers, tracking responses, and re-checking periodically so that reappearing listings get caught and removed again without you having to repeat the manual process. They don't cover every broker that exists, and they involve a recurring cost — but for most people, the time saved is substantial, and the ongoing monitoring is something a one-time manual pass can't replicate.

If you choose this route, it's still worth doing the first manual pass yourself for the sites you found in your own audit — that way you understand exactly what's out there, and you're not relying entirely on a third party's coverage.

Step 4: Use legal data protection rights where they apply

If your country or region has a personal data protection law — many now do, in varying forms — you typically have a formal right to request that a company disclose what data it holds about you and delete it. Citing this right explicitly in your request (rather than sending a generic "please remove me" message) often produces a faster and more complete response, because it shifts the request from a customer-service matter to a compliance matter that the company is legally obligated to act on within a defined timeframe.

If a broker ignores or refuses a legally grounded request, look into whether your region has a data protection authority or regulator that accepts complaints from individuals — filing a complaint there is usually the next escalation step, and brokers are generally far more responsive once a regulator is involved.

Step 5: Set up a recurring removal routine

This is the step almost everyone skips, and it's the reason many people feel like their first removal effort "didn't work" months later. Data brokers continuously rebuild their databases from new public records, leaked data, and data-sharing partnerships. A listing you successfully removed can reappear in a matter of months, often pulled in fresh from a different source.

Set a recurring reminder — every four to six months is a reasonable interval — to repeat Step 1 (search for your name again) and Step 2 (submit fresh removal requests for anything new that surfaces). Keep using the same spreadsheet, simply adding new rows and dates. Over time, you'll notice the same handful of broker names reappearing — those are the ones worth prioritizing first on each pass, since they appear to be your largest sources of exposure.

What "success" actually looks like here

You will not get to a point where no broker anywhere has any information about you — that's not realistically achievable, and chasing it will burn out your motivation for the rest of this series. A realistic, meaningful outcome looks like this: the major listings you found in your audit are gone or significantly reduced, you have a system for catching new ones as they appear, and the overall amount of effort required drops sharply after your first one or two passes.

Coming up in Part 3

Removing your existing footprint is half the job — the other half is making sure your everyday browsing doesn't keep feeding these systems with fresh information. In Part 3 (Coming Soon), we'll go through the technical setup of your browser, search engine, tracker blocking, VPN, and Tor — covering exactly what each one does, what it doesn't, and how to configure them properly.