Articles
2026-07-11 14:39 Privacy

Remove Personal Information from the Internet for Free

You can remove personal information from the internet for free. Data brokers are required to offer opt-outs, Google has a dedicated removal tool, and a new California law now forces hundreds of brokers to process deletion requests through a single platform. None of this costs money. What it costs is time. When we ran a full first pass ourselves — auditing exposure, filing broker opt-outs, and verifying each one — it took 10–20 hours spread over two to four weeks, plus quarterly check-ins to catch data that reappears.

This guide covers the free methods that actually work in 2026: broker opt-outs with direct links, search engine removal forms, social media lockdown, and the legal rights that back your requests. It's part of our larger guide to removing personal information from the internet, which also covers paid options and edge cases like court records and news articles.

What Free Removal Can and Can't Do

Set expectations before you start. Opt-outs work, but they don't erase data at the source. When you opt out of a people-search site, that site suppresses your public listing. The underlying records — property deeds, voter rolls, old accounts — still exist and can feed new listings later.

Three limits matter in practice:

  • Removed information comes back. Brokers refresh their databases from public records and purchased data sets. A listing you removed in March can reappear in September under a new profile URL.
  • Search engines only remove certain content. Google and Bing will act on exposed contact details, government ID numbers, and explicit images shared without consent. They generally won't remove news coverage, court records, or content you simply find unflattering.
  • You can't reach every broker. California's registry alone lists over 600 data brokers (California data broker registry, 2026). A free campaign targets the biggest people-search sites — the ones that rank when someone googles your name — not the entire industry.

In our own runs, a free pass against the top people-search sites cleared the large majority of what a stranger turns up by searching a name — a substantial reduction, not a clean sweep. Total erasure isn't realistic through any service, paid or free.

Audit What's Out There

Before removing anything, map the problem. Open a private browsing window (so results aren't personalized to you) and search for:

  1. Your full name in quotation marks
  2. Your name plus your city
  3. Your name plus your employer or occupation
  4. Your phone number and email address, each in quotes
  5. Your home address

Log every site that shows your data in a spreadsheet: URL, what's exposed, and a priority level. Home address, phone number, and family connections go first. Old forum posts and organization newsletters can wait.

While you're auditing, check whether your credentials have leaked. Have I Been Pwned is a free service that shows which data breaches include your email address. Breached data is a common source for broker databases, and knowing which accounts were exposed tells you where to change passwords and which old accounts to delete. A free leak check on leaks.ws does the same scan and also flags where your data appears across broker sites.

Two more quick wins during the audit:

  • Delete accounts you no longer use. JustDeleteMe maintains deletion instructions for thousands of services, rated by difficulty. Abandoned accounts leak data for years.
  • Email site owners directly. For personal blogs, club rosters, or small sites showing your details, a short polite email with the exact URL works more often than you'd expect. Follow up after two weeks if there's no reply.

Don't forget public records

Much of what brokers publish starts as public records: property deeds, voter registration, court filings. You usually can't delete these, but you can often restrict access. Your county clerk or recorder's office can explain what redaction options exist locally — many states offer address confidentiality programs for people at risk, and some let anyone request that certain documents be pulled from online portals. Your state DMV typically has an opt-out form that limits sharing of your driver's license data with third parties. These requests are free, and cutting off the source slows the rate at which broker listings regenerate.

Data Broker Opt-Outs: The Highest-Value Targets

People-search sites are the highest-value targets. They aggregate your address, phone number, age, relatives, and past addresses into one page that ranks well in search results. Each major site has a free opt-out process. Here are the three biggest, with direct links and realistic timelines.

Whitepages

  1. Search your name on whitepages.com and open your profile.
  2. Copy the profile URL from the address bar.
  3. Go to the Whitepages suppression request page and paste the URL.
  4. Select a removal reason and verify with an automated phone call.

Removals typically process within 24–72 hours. If you have multiple listings (common if you've moved), repeat the process for each one — there's no bulk option.

Spokeo

  1. Find your listing on spokeo.com and copy its URL.
  2. Go to the Spokeo opt-out page.
  3. Paste the URL, enter an email address, and complete the CAPTCHA.
  4. Click the verification link Spokeo emails you.

Processing takes 24–48 hours. Each listing has its own URL and must be opted out separately. When we filed a Spokeo opt-out for a test profile, the confirmation email arrived within an hour and the listing stopped appearing in a name search after about two days.

BeenVerified

  1. Go to the BeenVerified opt-out search.
  2. Search for your name and state, then select your record.
  3. Enter your email, pass the CAPTCHA, and click the verification link in the email.

BeenVerified usually removes listings within 24 hours.

After these three, work down your audit list: Intelius, TruthFinder, Instant Checkmate, and US Search share a parent company (PeopleConnect) and a common suppression process, so one request can cover several sites. Radaris, MyLife, and FastPeopleSearch each have their own forms.

Practical tips that save hours:

  • Use a dedicated email address for opt-out requests. Some brokers add opt-out emails to marketing lists.
  • Screenshot your listing before removing it. Some forms require the exact profile URL, and you'll want proof if a listing reappears.
  • Set a calendar reminder for each broker's stated processing time, and verify the listing is actually gone.
  • If you're in California, use DROP first. The state's Delete Request and Opt-out Platform sends one deletion request to every registered data broker — over 600 companies. It launched in January 2026, and starting August 1, 2026, brokers must retrieve requests at least every 45 days and complete deletions within 90 days, with penalties of $200 per request per day for ignoring them (privacy.ca.gov; CPPA, 2026). One form replaces hundreds.

Expect the full broker pass to take 6–10 hours the first time, one form at a time.

Removing Your Information from Google and Bing

Search engines don't host your data, but they make it findable. Removing a result from Google doesn't delete the source page; it just stops the page from surfacing when someone searches your name. That's often enough.

Google's "Results about you" tool

Google's Results about you dashboard monitors search results for your phone number, email, and home address, and lets you request removal in a few clicks. In February 2026 Google expanded it to cover government-issued ID numbers — driver's license, passport, and Social Security number (Google, 2026; TechCrunch, 2026).

Setup takes five minutes: sign in, enter the contact details you want monitored, and Google notifies you when matching results appear. Requests are reviewed against Google's policies — exposed contact info on a people-search site or in a doxxing context usually qualifies; a news article mentioning your name does not.

For outdated results — pages that were deleted but still show in search — use Google's "Refresh Outdated Content" tool in addition to Results about you.

Bing

Microsoft handles removal requests through its Bing content removal form. Include the exact URL and describe what personal information appears. Bing removes results in a narrower set of cases than Google, and its help pages are explicit that contacting the website owner first is more effective. EU residents can use Bing's separate right-to-be-forgotten request form.

Search engine removal has enough depth to warrant its own walkthrough — qualifying content types, appeal options, and how to handle cached pages are covered in our guide to removing yourself from Google.

DIY vs. Automated Removal: An Honest Comparison

Everything in this guide is free, and all of it works. The trade-off is your time, so it's worth being clear-eyed about the math before you commit.

DIY (free)
Automated (leaks.ws)
Cost
$0
Paid subscription
First pass
10–20 hours of forms, emails, and verification calls
Runs in the background after setup
Coverage
The 10–30 brokers you get to
Broker list maintained and updated for you
Maintenance
Re-check every 3 months; re-submit when listings reappear
Continuous monitoring and re-removal
Leak detection
Manual checks on Have I Been Pwned
Included — breach and broker exposure in one dashboard

If your exposure is modest and you have the hours, DIY is genuinely fine. If your time is worth more than the subscription, or your data keeps reappearing faster than you can re-submit forms, automation makes sense. You can run a free leak check on leaks.ws to see the scale of your exposure before deciding either way.

Lock Down Your Social Media Profiles

Social platforms are where much of your exposed data originates. Broker sites scrape public profiles, and search engines index them. Thirty minutes of settings work cuts off both. For a deeper reputation-and-profile cleanup that goes past privacy toggles, see our guide to cleaning up your online presence.

Priorities across all platforms:

  • Turn off search engine indexing. Facebook, X, and LinkedIn each have a setting that stops your profile from appearing in Google results. This single toggle removes profiles from name searches within weeks.
  • Disable discoverability by phone and email. Otherwise anyone who has your number can find your account — and confirm it's yours.
  • Kill location tagging. Remove location data from past posts near your home or workplace, and disable automatic tagging going forward.
  • Revoke third-party app access. Connected apps often retain data access long after you stop using them. Check the "Apps and websites" section of each platform's settings.

Platform-specific moves: on Facebook, run the Privacy Checkup and limit the audience of past posts to friends. On Instagram, switch to a private account and require tag approval. On LinkedIn, trim your public profile to what serves your professional goals and hide your email from connections. On X, disable precise location in posts.

Platforms change these settings with redesigns and sometimes reset preferences. Re-check them during your quarterly review.

Free Tools That Prevent New Exposure

Removing what's already out there only holds if you also stop feeding the system new data while you work. These free tools handle the prevention side:

  • Email aliases. Firefox Relay generates forwarding addresses so sign-ups never see your real email. Gmail's yourname+storename@gmail.com trick does something similar and reveals which services sell your address. When an alias starts getting spam, delete it.
  • Tracker blocking. uBlock Origin and the EFF's Privacy Badger block the ad-tech trackers that build behavioral profiles. Both are free browser extensions. (HTTPS Everywhere, long recommended alongside them, was retired — every major browser now has a built-in HTTPS-only mode you can enable in security settings.)
  • Private search. DuckDuckGo or Startpage let you run your self-audit searches without adding those queries to an advertising profile.
  • Encrypted basics. Proton Mail offers free encrypted email with no personal information required at sign-up. Signal covers messaging.
  • Breach alerts. Have I Been Pwned's free notification service emails you when your address appears in a new breach, so you can act before the data spreads to brokers.

The cheapest prevention isn't a tool at all: stop handing real data to services that don't need it. A store loyalty form doesn't need your actual birthday.

Your Legal Rights: CCPA, the Delete Act, and GDPR

A common misconception, repeated in many older guides: that all data brokers are legally required to delete your data. They aren't. In most US states, opt-outs are voluntary policies, and your leverage depends on where you live.

  • California — CCPA/CPRA. California residents have the right to know what a business collects, to demand deletion, and to opt out of the sale of their data. Businesses must respond to verified deletion requests within 45 days (California DOJ, CCPA).
  • California — the Delete Act and DROP. The Delete Act (SB 362) created the DROP platform, live since January 2026. One authenticated request goes to all 600+ registered brokers. California's privacy agency has been fining unregistered brokers since before DROP launched — that registration-enforcement track, run by the California Privacy Protection Agency, issued a fresh round of decisions in January 2026 (CPPA, 2026 ) — and from August 1, 2026, brokers that ignore DROP requests face fines of $200 per request per day.
  • Other state laws. Virginia, Colorado, Connecticut, Texas, and a growing list of states grant deletion rights similar to CCPA's. Many national companies apply California's standard everywhere because separate processes cost more than compliance.
  • EU/UK — GDPR. Article 17 grants a right to erasure. If you're an EU resident, citing GDPR in a removal request carries real weight, and Google and Bing both operate dedicated EU delisting forms.

Even where no law strictly applies, referencing CCPA or GDPR in a request signals that you know the landscape, and brokers who operate nationally rarely bother sorting requesters by state. For sensitive cases — doxxing, non-consensual intimate images — the Cyber Civil Rights Initiative runs a free helpline and platform-specific removal guides, and the FTC publishes sample letters for disputes under the Fair Credit Reporting Act.

Keep It Removed: A Quarterly Maintenance Routine

Brokers re-list people constantly, so a one-time cleanup decays. A 30–60 minute quarterly routine keeps your footprint down:

  1. Re-run your name, phone, and address searches in a private window.
  2. Spot-check the big three brokers (Whitepages, Spokeo, BeenVerified) and re-submit opt-outs for any reappeared listings — repeat removals go faster than the first round.
  3. Review privacy settings on your active social accounts.
  4. Check Have I Been Pwned or your leak-monitoring dashboard for new breaches.
  5. Delete any accounts you stopped using since last quarter.

Google Alerts for your name and phone number automate part of this: you'll get an email when new indexed content mentions you, instead of discovering it months later.

Automate the Part That Never Ends

The free methods above will clear most of your exposed data if you put in the hours. The part that wears people down is the repetition — the same forms, every quarter, indefinitely.

That's the problem leaks.ws automates. Start with the free leak check: it scans breach databases and broker sites and shows exactly where your data is exposed, in about a minute. If the list is short, handle it yourself with this guide. If it's long — or you'd rather not spend a weekend on opt-out forms four times a year — the paid plan submits and monitors removals continuously, so listings that reappear get taken down without you noticing they were back.

Frequently Asked Questions

Can I really remove my personal information from the internet for free?

Yes, mostly. Data broker opt-outs, Google's "Results about you" tool, and social media privacy settings are all free. Expect 10–20 hours of work and quarterly follow-ups, since removed listings often reappear.

How long does a data broker opt-out take?

Submitting one request takes 5–15 minutes. Processing runs from 24 hours (BeenVerified, Spokeo) to about 72 hours (Whitepages). Some smaller brokers take several weeks.

Are data brokers legally required to delete my data?

Only under certain laws. California residents can compel deletion under CCPA and the Delete Act's DROP platform; EU residents can cite GDPR. Elsewhere in the US, broker opt-outs are voluntary policies — most honor them anyway.

What is California's DROP platform?

The Delete Request and Opt-out Platform (privacy.ca.gov/drop), live since January 2026. California residents submit one deletion request that reaches all 600+ registered data brokers, who must process it within 90 days starting August 1, 2026.

Why does my information keep coming back after removal?

Brokers rebuild their databases from public records and purchased data sets, so suppressed listings can regenerate months later. Re-check the major sites quarterly, or use an automated removal service that monitors continuously.