Your complete self-audit system for locating, removing, and suppressing your personal data from the open web — zero cost, zero tech background required.
System / 5 Phases
Queries / 30+ Ready-to-Run
Brokers / 15+ Opt-Out Links
Cost / $0.00
⚠ ETHICAL USE NOTICE
This system is designed exclusively for auditing your own digital footprint. Using these techniques to investigate, locate, or expose another person without their consent is unethical and may be illegal. Use this only on yourself.
STEP 01
Exposure Discovery
Run these queries on yourself. Click any query to copy it — then paste directly into Google.
// Full Name Searches
Replace YOURNAME / YOURCITY with your real info before running
"YOURFIRSTNAME YOURLASTNAME" "YOURCITY"
"YOURFIRSTNAME YOURLASTNAME" address OR phone OR email
"YOURFIRSTNAME YOURLASTNAME" filetype:pdf OR filetype:doc
Find the contact or legal email via a WHOIS lookup at whois.domaintools.com, then send this:
To: [webmaster / legal / privacy@website.com]
Subject: Personal Data Removal Request — [Your Full Name]
Hello,
I am writing to formally request the removal of my personal information
from your website under applicable privacy rights.
The following data is publicly listed without my consent:
• [Name / Address / Phone / Other]
• URL: [exact page URL]
Please remove or anonymize this information within 30 days and confirm
deletion by reply.
Thank you,
[Your Name]
[Date]
// Data Broker Opt-Out Directory
Search your name on each site first, then follow the opt-out link. Processing takes 2–30 days per broker.
Always strip before uploading any photo to a public platform or forum
STEP 04
Suppression Strategy
When you can't remove a result — outrank it. Push it off page one.
Search engines rank results by authority and relevance. If you create consistent, linked profiles under your real name, they occupy the top spots — burying old or unwanted results below where most people ever look.
// The Suppression Stack (Free Platforms)
Create a profile on each of these. Use your real name consistently. Add a short bio and link between them where possible.
LinkedIn — highest domain authority for name-based searches. Always ranks #1 or #2.
About.me — dedicated personal profile page, indexes fast, ranks well.
Gravatar — ties your email to a controlled bio. Shows up in forum searches.
Medium — publish 1 article under your name. Google indexes Medium rapidly.
GitHub — even a minimal profile with your name ranks in searches.
WordPress.com (free) — create a simple "yourname.wordpress.com" page.
Google Sites — free, fast-indexed, high trust score. Build a basic personal page.
Pinterest — create a board under your name. Indexed and ranked by Google frequently.
// Suppression Rules
Name Consistency: Use your exact name the same way across all profiles. "John A. Smith" everywhere — not "Johnny Smith" on one and "J. Smith" on another. Signals are cumulative.
Cross-link profiles: Add links between your profiles (About.me → LinkedIn → Medium → GitHub). Each link increases authority and interconnection in Google's graph.
Publish something: A single blog post, a "Hi I'm [Name]" article on Medium, or a project description on GitHub gives Google a reason to rank YOUR content over strangers' data.
Social Activity: Platforms with recent activity (within 30 days) rank higher than dormant ones. Even liking posts counts as a freshness signal.
// Timeline Expectations
New profiles appear in Google index: 1–2 weeks
Profiles reach page 1 for your name: 2–6 weeks
Unwanted results pushed to page 2+: 4–12 weeks
STEP 05
Prevention System
A simple repeatable routine to stay ghost — permanently.
// Ongoing Audit Checklist (Click to track)
Google your full name + city
Monthly
Google your primary email address
Monthly
Google your phone number (all 3 formats)
Monthly
Check HaveIBeenPwned.com for new breaches
Monthly
Reverse image search your profile photo
Quarterly
Search your username across platforms
Quarterly
Re-check top 5 data brokers for re-listing
Quarterly
Review privacy settings on all active social platforms
Quarterly
Delete inactive old accounts you no longer use
Every 6 mo.
Strip EXIF from any photos before public posting
Every post
Check Shadow AI opt-out status on Notion, Slack, Zoom, and Copilot
Quarterly
Verify AI machine unlearning requests were acknowledged
Quarterly
Audit public writing for stylometric fingerprints (delete posts >2 yrs old)
Every 6 mo.
// Permanent Privacy Habits
Use a dedicated email alias for signups — never your primary address. (SimpleLogin.io is free)
Never post your real address in any public form, forum, or social bio
Use a unique username per platform — stop cross-platform username reuse
Enable 2FA on every account. Prefer authenticator app over SMS.
Use a PO Box or virtual address for any service that requires mailing address
Treat your phone number like a password — give it out as rarely as possible
Opt out of "people you may know" features on all platforms (Facebook, LinkedIn, Snapchat)
Never tag your location in real-time — only post location photos after you've left
// Red Flag Behaviors to Stop Immediately
⚠ STOP DOING THESE
Using your full legal name as your username everywhere · Posting photos of your home exterior · Filling in optional profile fields (birthday, address, employer) · Using public WiFi without a VPN · Clicking unsubscribe links in spam emails (confirms your email is live) · Reusing passwords across platforms · Posting vacation plans before you leave
PHASE 06
AI Memory Defense
AI systems are rebuilding your profile from scraped data, behavioral signals, and purchased broker feeds. This phase closes that loop.
// THREAT BRIEF
The AI-Data Broker Feedback Loop
Data brokers sell your records to AI training pipelines. Those models learn your patterns, predict your behavior, and feed inferences back to advertisers and risk-scoring systems — even after you've removed yourself from the original source. Opt-out once isn't enough. You need to interrupt the loop at the model level.
// MODULE 6.1 — MACHINE UNLEARNING REQUESTS
Under CCPA and emerging AI governance frameworks, several platforms now accept formal "right to be forgotten" or data deletion requests that propagate to downstream model training. Use this template:
// MACHINE UNLEARNING REQUEST TEMPLATE
Subject: Formal Data Deletion + Model Training Opt-Out Request
To Whom It May Concern,
Under [CCPA / GDPR / applicable state law], I am formally requesting:
1. Deletion of all personal data you hold on me
2. Opt-out of sale or sharing of my data for AI/ML training purposes
3. Removal of my data from any AI model training pipelines, past or future
4. Written confirmation of compliance within 45 days
My identifying information: [Full Name], [Email(s)], [State of Residence]
Failure to comply constitutes a violation of applicable consumer privacy law.
— [Your Name]
// SEND TO THESE PLATFORMS FIRST
Google
myaccount.google.com → Data & Privacy → Delete activity
Meta / Facebook
facebook.com/help/contact/259518714718624 → AI data opt-out
OpenAI / ChatGPT
privacy.openai.com → Submit deletion request
Microsoft / Copilot
account.microsoft.com → Privacy → Data export & deletion
Apple
privacy.apple.com → Request a copy or deletion
Amazon / Alexa
alexa.amazon.com → Review Voice History → Delete all
// MODULE 6.2 — PROACTIVE DATA POISONING
You can't delete what's already in a model — but you can make your signal harder to use. These techniques introduce noise that degrades AI profiling accuracy on your identity.
Image Cloaking (Fawkes / Nightshade)
Before uploading any photo online, run it through the Fawkes cloaking tool (sandlab.cs.uchicago.edu/fawkes). Adds imperceptible pixel-level perturbations that poison facial recognition training data. Your photo looks identical to humans — AI sees a different face.
→ Apply to: profile photos, LinkedIn, social media, any public-facing images
Behavioral Noise Injection
Periodically search for things completely outside your normal pattern. Browse random unrelated product categories. Click through 5–10 unrelated ads per week. This degrades the confidence score on your behavioral profile — the algorithm can't distinguish signal from noise.
Browser fingerprinting combines your screen size, fonts, timezone, and plugins into a near-unique ID that follows you without cookies. Rotate it by varying your browser, using Brave's fingerprint randomization mode, or running Firefox with resistFingerprinting enabled.
→ Test your current fingerprint: coveryourtracks.eff.org — aim for "strong protection"
AI Voice Cloning Defense
If your voice is in public videos (YouTube, TikTok, podcasts), it can be cloned in under 30 seconds with current AI tools. AntiFake and similar audio cloaking tools add ultrasonic perturbations that break voice synthesis models while remaining inaudible to human listeners.
→ Establish a family safe word for voice verification on urgent calls. Covered in Family Protection Protocol.
// MODULE 6.3 — QUARTERLY AI AUDIT CHECKLIST
// NEXT LEVEL
Ready to go fully dark?
The Ghost Stack Setup Guide gives you the exact tools, configs, and install order to build a private-by-default operating environment. Hardened browser stack. Encrypted comms. Local AI that never calls home.
Run the discovery phase now. Prioritize your critical risks. Work through removal one broker at a time. Repeat quarterly.
Ghosting the internet costs $0 and takes one afternoon.
How do I remove my personal information from data brokers?
To remove personal information from data brokers, submit opt-out requests to each broker individually. Major brokers: Spokeo (spokeo.com/optout), WhitePages (whitepages.com/suppression-requests), BeenVerified (beenverified.com/faq/opt-out), Radaris (radaris.com/control), Intelius (intelius.com/opt-out). The Digital Ghost Protocol covers 200+ brokers with direct links and step-by-step instructions for $17. Data brokers re-acquire data every 30-90 days, so re-audit quarterly.
Can AI rebuild your profile after you opt out of data brokers?
Yes. In 2025, AI systems can reconstruct personal profiles from partial public data with approximately 87% accuracy even after data broker opt-outs. This occurs because AI training data is not deleted when source listings are removed, and brokers feed AI systems before processing removal requests. The Digital Ghost Protocol Phase 6 covers machine unlearning requests, AI training opt-outs for OpenAI, Google, Meta, Apple, Amazon, Anthropic, and proactive noise injection techniques to degrade AI profile accuracy.