How does GhostVault stop spam calls?

Americans received 52.5 billion robocalls in 2025, according to the YouMail Robocall Index. Spam callers source phone numbers primarily from data broker sites that aggregate and sell personal information. GhostVault removes your phone number, home address, and personal details from 500+ data broker and people-search sites — cutting off the supply chain that feeds spam callers. Most users report a significant reduction in spam calls within 30–60 days of removal.

Can GhostVault prevent identity theft?

Yes. The FTC received 1.1 million identity theft reports in 2024, with total consumer fraud losses hitting $12.5 billion — a 25% increase over the prior year (FTC Consumer Sentinel Network Data Book 2024). Identity thieves routinely use data broker sites to obtain personal details — full name, address, phone number, relatives, and employment history — before committing fraud. GhostVault removes this data from 500+ broker sites and monitors for reappearance, materially reducing the personal information available to bad actors.

How long does it take to remove my information?

GhostVault's scan delivers results instantly — no waiting period. Automated CCPA deletion requests are sent to data brokers immediately upon subscription. Under the California Consumer Privacy Act, brokers are legally required to process deletion requests within 45 days. In practice, most major brokers (Spokeo, Whitepages, BeenVerified) remove listings within 7–14 days. GhostVault monitors your listings continuously and re-submits removal requests whenever your data reappears.

Which data broker sites does GhostVault remove me from?

GhostVault targets 500+ data broker and people-search sites — more than double the coverage of most competitors. This includes all major brokers: Spokeo, Whitepages, BeenVerified, TruePeopleSearch, Intelius, Radaris, PeopleFinders, MyLife, FastPeopleSearch, Nuwber, PeopleLooker, and hundreds of smaller aggregators and resellers. The global data broker market was valued at approximately $277–$303 billion in 2024, according to multiple industry research firms including Grand View Research and ResearchAndMarkets, making comprehensive removal coverage essential.

Is the scan really free?

Yes. GhostVault's exposure scan is completely free — no credit card, no account required. The scan checks your name against 500+ data broker databases and returns a detailed report showing exactly which sites have your phone number, home address, relatives, and other personal information. Paid removal starts at $3.99/month, making GhostVault the most affordable full-coverage data removal service available in 2026.

How much does GhostVault cost?

GhostVault costs $3.99/month on a monthly plan, or $39/year ($3.25/month) on the annual plan. This makes it the lowest-priced comprehensive data removal service in the market — cheaper than Incogni ($6.49/month annual), OneRep ($8.33/month annual), DeleteMe ($10.75/month annual), and PrivacyDuck ($8.25/month annual). All plans include unlimited removal requests, continuous monitoring, and breach alerts.

What rights does CCPA give California residents regarding data brokers?

The CCPA (California Consumer Privacy Act) gives California residents the right to know what personal data is collected about them, request deletion of that data, opt out of the sale of their data, and not be discriminated against for exercising these rights. The 2023 Delete Act further requires data brokers registered in California to honor deletion requests submitted through a single centralized mechanism.

Do I need to live in California to use CCPA rights?

Technically, CCPA rights apply to California residents. However, since most major data brokers are registered in California and many services like GhostVault send CCPA deletion requests on behalf of all users, residents of other states can benefit from CCPA-based removal requests in practice.

What is California's Delete Act and how does it work?

California's Delete Act (SB 362), signed in 2023, requires data brokers registered in California to participate in a centralized deletion mechanism by January 2026. This allows consumers to submit a single deletion request that applies to all registered brokers. GhostVault uses CCPA and Delete Act frameworks to automate removal requests.

California Data Privacy Rights: How to Use CCPA to Delete Your Info

California has the strongest consumer data privacy law in the United States. The California Consumer Privacy Act gives residents sweeping rights over their personal information — including the right to demand that data brokers permanently delete it. Here is exactly what the law gives you and how to use it.

What Is the CCPA?

The California Consumer Privacy Act (CCPA) was signed into law in 2018 and took effect January 1, 2020. It was subsequently strengthened by the California Privacy Rights Act (CPRA), which voters approved in November 2020 and which became fully enforceable January 1, 2023.

Together, these laws give California residents five core rights over their personal data:

Your 5 Core CCPA Rights

Right to Know: What personal information a business collects about you, how it is used, and who it is shared with.
Right to Delete: Request that a business delete the personal information it has collected about you.
Right to Opt Out: Tell a business to stop selling or sharing your personal information.
Right to Non-Discrimination: Businesses cannot deny you service or charge you more for exercising your privacy rights.
Right to Correct: Request that a business correct inaccurate personal information it holds about you.

Critically, the CCPA applies to any business that meets certain thresholds and handles California residents' data — regardless of where the business itself is located. A data broker headquartered in Delaware that collects data on California residents is still bound by the law.

The California Delete Act (2023)

In September 2023, Governor Gavin Newsom signed Senate Bill 362, commonly known as the California Delete Act. It meaningfully extends the CCPA's practical reach.

The Delete Act creates a single opt-out mechanism for all data brokers registered with the California Privacy Protection Agency (CPPA). By 2026, every registered data broker in California must honor deletion requests submitted through the CPPA's authorized agent system. A consumer, or an authorized agent acting on their behalf, can submit one request and have it honored across every registered broker simultaneously.

This is the legal framework that makes services like GhostVault possible. When GhostVault submits deletion requests on your behalf, it is acting as your authorized agent under CCPA and the Delete Act — using the same legal mechanism you would use yourself, but automating it across hundreds of brokers at once.

Who Is Covered by the CCPA?

The CCPA applies to for-profit businesses that do business in California and meet at least one of these thresholds:

Annual gross revenues exceeding $25 million
Annually buys, sells, receives, or shares the personal data of 100,000 or more consumers or households
Derives 50% or more of annual revenues from selling or sharing consumers' personal information

Virtually every major data broker qualifies under the second threshold — selling or sharing data on 100,000+ individuals is their core business model. This means the CCPA reachesSpokeo, WhitePages, BeenVerified, Intelius, Radaris, MyLife, and hundreds more.

What You Can Request Be Deleted

The CCPA covers a broad range of personal information. You can request deletion of:

Name, address, phone number, and email address
Social Security number and driver's license number
Purchase history and browsing or search history
IP address and other online identifiers
Biometric data (fingerprints, face scans, voice recordings)
Geolocation data
Inferences drawn about you — such as inferred income, interests, or creditworthiness
Relatives' names and household composition data

What Cannot Be Forced to Delete

The CCPA does not require deletion in all cases. Businesses may retain data when necessary to:

- Complete a transaction you initiated
- Comply with a legal obligation
- Detect or prevent security incidents and fraud
- Exercise free speech or another legal right
- Conduct certain research in the public interest

Publicly available government records (court filings, property records) may also persist on aggregation sites, as the law treats truly public data differently from data the broker itself compiled and sold.

How to Submit a CCPA Deletion Request Yourself

If you want to submit deletion requests manually, here is the process for each data broker:

1. Find the opt-out page. The CCPA requires every covered business to include a "Do Not Sell or Share My Personal Information" link on their homepage — typically in the footer. If you cannot find it, check their Privacy Policy or search Google for "[company name] do not sell my information."
2. Locate your profile. Use the site's search function with your name and city to find your specific listing before submitting, so you can reference it in the request.
3. Submit the request. Most brokers have a webform. You will typically need to provide your name, email address, state of residence, and sometimes the URL of your specific listing.
4. Verify your identity. Many brokers require you to click a verification link sent to your email before they will process the request. Without completing this step, most brokers will not act on the deletion.
5. Wait for the response. Under the CCPA, businesses must respond within 45 days, with a one-time extension of an additional 45 days if they notify you.
6. Follow up if there is no response. If a broker does not respond or refuses without a valid reason, you can escalate to the California Privacy Protection Agency at cppa.ca.gov.

The catch: you must repeat this entire process for each of the 500+ registered data brokers separately. There are no shortcuts in the manual approach.

Using an Authorized Agent

The CCPA explicitly allows you to designate an authorized agent to submit privacy requests on your behalf. An authorized agent can exercise any of your CCPA rights — including the right to deletion — provided you have given them written permission.

This is precisely how GhostVault operates. When you sign up, you authorize GhostVault to act as your agent under California privacy law. GhostVault then submits CCPA-compliant deletion requests to 500+ registered data brokers on your behalf — using the same legal mechanism you would use manually, but doing it automatically and continuously as brokers re-add data over time.

What Happens If a Broker Doesn't Comply?

The California Privacy Protection Agency (CPPA) is the dedicated enforcement body for the CCPA and CPRA. It has the authority to:

Fine businesses up to $2,500 per unintentional violation
Fine businesses up to $7,500 per intentional violation
Issue injunctions and compliance orders
Audit businesses for compliance

The 2023 Delete Act also established a Data Broker Strike Force — a joint enforcement initiative between the CPPA and the California Attorney General's office — specifically tasked with pursuing non-compliant data brokers. Several brokers have already received enforcement actions and fines for failure to honor deletion requests and failure to register with the state.

Am I Protected If I Don't Live in California?

Technically, the CCPA only applies to California residents. However, in practice, most major data brokers honor CCPA deletion requests from residents of all US states. There are two main reasons:

1. Operational impracticality. It is extremely difficult for a broker to verify a requestor's state of residency at the time of each request. Rather than risk violating the law, most brokers apply their CCPA compliance procedures universally.
2. Other states have passed similar laws. As of 2026, more than a dozen states have enacted comprehensive consumer privacy legislation.

States With Comprehensive Privacy Laws (2026)

California (CCPA/CPRA)Virginia (VCDPA)Colorado (CPA)Connecticut (CTDPA)Utah (UCPA)Texas (TDPSA)Oregon (OCPA)Montana (MCDPA)Indiana (INCDPA)Tennessee (TIPA)Iowa (ICDPA)Delaware (DPDPA)Florida (FDBR)New Hampshire (NHPA)

Whether you live in California or not, CCPA-style deletion requests work for most Americans today — and they'll carry more weight as additional states pass similar laws.

Let GhostVault Handle the CCPA Requests For You

GhostVault acts as your authorized agent under CCPA, submitting deletion requests to 500+ registered data brokers — automatically. No manual forms, no verification emails, no follow-ups. $3.99/month with continuous re-removal as brokers re-add your data.