Paul Bischoff of IT security experts Comparitech explains how to reduce the risk of your information falling into the hands of criminals.
Sections
Forever online
You might have heard that once something is on the internet, it stays there forever.
In many circumstances, that adage holds true: because our data can be copied and stored ad infinitum – and it probably is – removing it can be an exercise in futility.
Even if the person or company to which you gave information agrees to remove it, there's no telling what third parties that information was shared with – and who those third parties shared it with, and so on.
But even if you can't completely erase your digital footprint, you can take steps to make finding your personal information much more difficult. In this article, we'll explain how to remove your personal information from the web.
Read more: would quitting the web actually protect me from scams?
Make a checklist
Before you get started on removing and deleting personal data, first you need to figure out who has it.
This is easier said than done because online companies often share personal data with third parties.
Your data might be used to help provide services, create marketing materials, customise advertisements, assist law enforcement, or any number of tasks not handled directly by the company to which you provided the info in the first place.
We also need to define what types of data we want removed.
Personal data is roughly divided into two categories: personally identifiable information (PII) and non-personally identifiable information (linked PII). We are primarily concerned with PII, which includes:
- Full name
- Address
- Email address
- Phone number
- National Insurance number
- Date and place of birth
- Biometric records
Then there's linked PII, which is information that can be connected to a specific individual within context but does not include the above identifiers:
- IP address
- Medical records
- Education records
- Financial information
- Employment records
Note that some companies might not delete your data right away upon request and can retain it for a week or a month, depending on their data policy. Such information is often kept in case the user deletes their account on impulse and changes their mind later.
Online safety: avoid phishing, identity theft, hacking and other scams
Low hanging fruit
Search yourself
Next, do searches about yourself. Use search engines like Google as well as people finder sites like Pipl, ZabaSearch, WhitePages.com, Wink, and PeekYou.
Look for your name, phone number, and email address. When you find yourself on a website, look for a page where you can request your information be removed.
If there isn't one, contact the website owner directly via email and make a formal request. If no email address is listed, enter the website domain into WHOIS to dig up some information about who owns it.
When you send a request asking for information to be removed, be polite and specific. Include the URLs containing your information.
Don't attach screenshots or other files, because web administrators will treat such attachments as potential malware. Follow up if needed, but don't make threats.
If you find information about yourself that is incorrect or out of date on a search engine, check out how to “Remove outdated content” for Google, or the “Bing Content Removal Tool”.
How spoofing, twitter clones, fake green padlocks and gift card 'fines' could catch you out
Sift through emails
Linked accounts
Many websites, apps, and services allow you to sign up using your Google, Facebook, Twitter, Apple, Microsoft, or LinkedIn account.
Doing so allows the companies you sign up with to see your profile information and other activity on those accounts.
You can review and unlink accounts from the settings menus of these companies, but you might need to email them directly in order to have your information completely removed from their servers.
Check for an app identification number before you unlink the account, which you can send to the company as a reference.
16 common email scams and how to spot them
Check the archives
Minimise your footprint
In the end, there might be some information you can't seem to remove.
Maybe it was part of a data breach, official court records, or maybe the website owner just isn't responsive. Short of legal action, you might just have to live with the fact that some of your personal info will never be deleted from the web.
Going forward, however, you can take steps to minimize your digital footprint:
Firstly, be very selective about signing up for new accounts, reward programs, event registrations, apps, and giveaways. Keep track of what you do sign up for and minimise information on social media.
Then employ anti-tracking and ad blocking plugins in your web browser, such as the ‘do not track’ function, Privacy Badger and Ad Block Plus, respectively.
You could even use a VPN service to hide your IP address or software like Tor that makes you anonymous, and ask your internet service provider not to record your data.
Also, consider using an alias and burner email to sign up with new accounts. Mailinator is great for this.
Finally, take the time to read privacy policies. They are easier to read than terms of service and will inform you of three key things:
- What information is collected
- What that info is used for
- Who that info is shared with
Paul Bischoff is a tech writer; Comparitech reviews the latest internet security and privacy software. You can read more of their guides and advice here. The views in this article do not necessarily reflect those of loveMONEY.