How does GhostVault stop spam calls?

Americans received 52.5 billion robocalls in 2025, according to the YouMail Robocall Index. Spam callers source phone numbers primarily from data broker sites that aggregate and sell personal information. GhostVault removes your phone number, home address, and personal details from 500+ data broker and people-search sites — cutting off the supply chain that feeds spam callers. Most users report a significant reduction in spam calls within 30–60 days of removal.

Can GhostVault prevent identity theft?

Yes. The FTC received 1.1 million identity theft reports in 2024, with total consumer fraud losses hitting $12.5 billion — a 25% increase over the prior year (FTC Consumer Sentinel Network Data Book 2024). Identity thieves routinely use data broker sites to obtain personal details — full name, address, phone number, relatives, and employment history — before committing fraud. GhostVault removes this data from 500+ broker sites and monitors for reappearance, materially reducing the personal information available to bad actors.

How long does it take to remove my information?

GhostVault's scan delivers results instantly — no waiting period. Automated CCPA deletion requests are sent to data brokers immediately upon subscription. Under the California Consumer Privacy Act, brokers are legally required to process deletion requests within 45 days. In practice, most major brokers (Spokeo, Whitepages, BeenVerified) remove listings within 7–14 days. GhostVault monitors your listings continuously and re-submits removal requests whenever your data reappears.

Which data broker sites does GhostVault remove me from?

GhostVault targets 500+ data broker and people-search sites — more than double the coverage of most competitors. This includes all major brokers: Spokeo, Whitepages, BeenVerified, TruePeopleSearch, Intelius, Radaris, PeopleFinders, MyLife, FastPeopleSearch, Nuwber, PeopleLooker, and hundreds of smaller aggregators and resellers. The global data broker market was valued at approximately $277–$303 billion in 2024, according to multiple industry research firms including Grand View Research and ResearchAndMarkets, making comprehensive removal coverage essential.

Is the scan really free?

Yes. GhostVault's exposure scan is completely free — no credit card, no account required. The scan checks your name against 500+ data broker databases and returns a detailed report showing exactly which sites have your phone number, home address, relatives, and other personal information. Paid removal starts at $3.99/month, making GhostVault the most affordable full-coverage data removal service available in 2026.

How much does GhostVault cost?

GhostVault costs $3.99/month on a monthly plan, or $39/year ($3.25/month) on the annual plan. This makes it the lowest-priced comprehensive data removal service in the market — cheaper than Incogni ($6.49/month annual), OneRep ($8.33/month annual), DeleteMe ($10.75/month annual), and PrivacyDuck ($8.25/month annual). All plans include unlimited removal requests, continuous monitoring, and breach alerts.

What rights does the Connecticut Data Privacy Act (CTDPA) give residents?

The CTDPA gives Connecticut residents the right to access, correct, delete, and obtain a portable copy of their personal data. Residents can also opt out of targeted advertising, the sale of personal data, and profiling for significant decisions. It took effect July 1, 2023.

Connecticut Data Privacy Law (CTDPA): What Connecticut Residents Need to Know

The Connecticut Data Privacy Act (CTDPA) took effect on July 1, 2023, making Connecticut the fifth state with comprehensive consumer data privacy legislation. The law gives residents rights over their personal data, requires businesses to honor browser-based opt-out signals, and provides an appeal process for denied requests. Here is how it works.

What Is the Connecticut Data Privacy Act?

Governor Ned Lamont signed the Connecticut Data Privacy Act into law on May 10, 2022. It became effective July 1, 2023 — the same day as Colorado's CPA — making Connecticut the fifth state to pass a comprehensive consumer privacy law.

The CTDPA applies to persons or businesses that conduct business in Connecticut or produce products or services targeted to Connecticut residents, and during the prior calendar year either: controlled or processed personal data of at least 100,000 Connecticut consumers, excluding data processed solely for completing a payment transaction; or controlled or processed personal data of at least 25,000 Connecticut consumers and derived more than 25% of gross revenue from the sale of personal data.

Connecticut's revenue threshold is 25%, lower than Virginia's and Colorado's 50%. Data brokers that derive a quarter of their revenue from selling personal data are covered even if they process fewer consumer records than the primary threshold requires. For most large data brokers, both thresholds are met, but the lower percentage pulls in a wider set of smaller data sellers too.

Your Rights Under the CTDPA

Connecticut residents have six rights under the CTDPA — the standard five plus a specific right to opt out of profiling:

Your Rights Under the CTDPA

Right to Access: Confirm whether a controller is processing your personal data and obtain a copy of that data in a portable format.
Right to Correct: Correct inaccuracies in your personal data, taking into account the nature and purpose of the processing.
Right to Delete: Request deletion of personal data you have provided or that has been obtained about you.
Right to Data Portability: Obtain a portable copy of your data in a format that allows you to transmit it to another controller.
Right to Opt Out of Sale and Targeted Advertising: Opt out of the sale of your personal data and its use for targeted advertising.
Right to Opt Out of Profiling: Opt out of profiling used in furtherance of decisions that produce legal or similarly significant effects concerning you — including credit, employment, housing, education, insurance, and healthcare.

Controllers must respond to authenticated consumer requests within 45 days. The response period may be extended by an additional 45 days when reasonably necessary, provided the controller notifies you within the initial 45-day period. Requests are free of charge, and controllers cannot retaliate against consumers for exercising their privacy rights.

Connecticut's Universal Opt-Out Mechanism

Like California and Colorado, Connecticut requires covered businesses to honor universal opt-out signals. Starting January 1, 2025, Connecticut businesses must recognize and comply with opt-out preference signals transmitted via browser or device settings — specifically, signals that meet criteria established by the Connecticut Attorney General in consultation with stakeholders.

The Global Privacy Control (GPC) is the leading technology that satisfies this requirement. When you enable GPC in your browser (supported natively by Firefox, Brave, and others, and available as an extension for Chrome), covered Connecticut businesses must treat it as a valid opt-out of data sales and targeted advertising — without requiring you to complete a separate opt-out form for each site.

How the CTDPA Compares to CCPA

Feature	CCPA (California)	CTDPA (Connecticut)
Revenue threshold	$25M annual revenue OR 100K consumers	100K consumers OR 25K if 25%+ data sale revenue
Universal opt-out (GPC)	Required	Required (as of Jan 1, 2025)
Opt-out of profiling	Yes (significant decisions)	Yes (significant decisions)
Private right of action	Limited (data breaches only)	None — AG enforcement only
Cure period	None after Jan 2023	60 days (until Dec 31, 2024), then discretionary
Max penalty	$7,500 intentional violations	$5,000 per violation
Response deadline	45 days (extendable 45)	45 days (extendable 45)

What Data Brokers Must Do Under the CTDPA

Connecticut's law places substantive obligations on data controllers processing Connecticut consumer data:

Publish a clear privacy notice disclosing the categories of personal data processed, the purposes of processing, how consumers can exercise their rights, the categories of personal data shared with third parties, and whether data is sold or used for targeted advertising.
Honor universal opt-out signals (GPC and equivalent) starting January 1, 2025. Failure to recognize these signals after that date is a violation of the CTDPA.
Obtain consent before processing sensitive data, including data concerning racial or ethnic origin, religious beliefs, mental or physical health conditions, sexual orientation, citizenship status, biometric data, precise geolocation, and data concerning children.
Conduct data protection assessments before engaging in processing activities that present heightened risk to consumers, including sale of personal data and targeted advertising.
Respond to deletion requests within 45 days and instruct processors to delete the same data. Legitimate exceptions include data needed to fulfill a contract, data subject to legal hold, or data necessary for cybersecurity purposes.
Provide a meaningful appeals process for denied requests, with a response required within 60 days.

Step-by-Step: How to Use the CTDPA to Delete Your Data

1. Enable GPC in your browser. This automatically sends a legal opt-out signal to covered Connecticut businesses. For Firefox users, go to Settings > Privacy and Security > Enable "Tell websites not to sell or share my data." For Brave, it is enabled by default.
2. Locate the data broker's privacy notice. Check the site's footer for "Privacy Policy," "Connecticut Privacy Rights," or "Do Not Sell or Share My Personal Information." CTDPA requires this information to be clearly accessible.
3. Submit your deletion request. Use the company's designated mechanism — web form, email, or phone. Identify yourself as a Connecticut resident and request deletion of all personal data the company holds about you. Include any names, email addresses, phone numbers, or physical addresses associated with your profile.
4. Respond to identity verification. The company may verify your identity before processing the request. This is standard — provide what is requested but note that companies cannot require you to create an account solely to submit a request.
5. Track your 45-day window. Keep records of your submission date and any confirmation emails. If you receive a notice of extension, note the new deadline.
6. Appeal denials. If your request is denied, submit a formal appeal within the time frame specified in the company's denial notice. If the appeal is denied, file a complaint with the Connecticut Attorney General at portal.ct.gov/AG.

The CTDPA gives residents real control over their data. The practical problem, as with any state law, is scale — hundreds of data brokers, each with different opt-out procedures. Authorized agent services like GhostVault submit requests on your behalf across 500+ brokers at once. For more on the broader framework, see our guide to California's CCPA rights.

Remove Your Data From 500+ Brokers for $3.99/Month

GhostVault automates deletion requests as your authorized agent — covering 500+ data broker sites simultaneously, regardless of which state you live in. Start with a free scan to see what is exposed about you right now.

Frequently Asked Questions

What rights does the Connecticut Data Privacy Act give residents?

The CTDPA gives Connecticut residents the right to access, correct, delete, and obtain a portable copy of their personal data, as well as opt out of targeted advertising, data sales, and profiling for significant decisions. It took effect July 1, 2023.

How does Connecticut's CTDPA compare to California's CCPA?

Connecticut requires businesses to honor universal opt-out signals like GPC starting January 1, 2025. The CTDPA's revenue threshold is 25% (lower than some states' 50%), capturing more data sellers. There is no private right of action; the Connecticut AG enforces the law with penalties up to $5,000 per violation.

Can Connecticut residents use the CTDPA to remove data from brokers?

Yes. Connecticut residents can submit deletion requests to covered data brokers. Controllers must respond within 45 days. Services like GhostVault send deletion requests to 500+ data brokers on your behalf, automating the entire process.

What is Connecticut's opt-out of profiling right?

Connecticut's CTDPA gives residents the right to opt out of profiling used for decisions with legal or significant effects — including credit, employment, housing, education, insurance, and healthcare decisions. Controllers must provide a clear mechanism to opt out and honor requests within 45 days.

Connecticut Data Privacy Law (CTDPA): What Connecticut Residents Need to Know

What Is the Connecticut Data Privacy Act?

Your Rights Under the CTDPA

Your Rights Under the CTDPA

Connecticut's Universal Opt-Out Mechanism

How the CTDPA Compares to CCPA

What Data Brokers Must Do Under the CTDPA

Step-by-Step: How to Use the CTDPA to Delete Your Data

Remove Your Data From 500+ Brokers for $3.99/Month

Frequently Asked Questions

What rights does the Connecticut Data Privacy Act give residents?

How does Connecticut's CTDPA compare to California's CCPA?

Can Connecticut residents use the CTDPA to remove data from brokers?

What is Connecticut's opt-out of profiling right?

Related Articles

California CCPA Guide

GhostVault Pricing

How to Use Privacy Law to Delete Your Data