The Illusion of Separate Data Brokers

When most people discover their personal information on a site like Spokeo or BeenVerified, they assume it is a single problem with a single solution: go to that site, submit an opt-out request, and the problem is solved. In reality, what looks like a simple removal task is more like pulling one thread from a web. The data broker industry is not a collection of independent companies; it is a deeply interconnected supply chain where a single data point about you flows through multiple layers of aggregation, licensing, and resale before appearing on the consumer-facing sites you find in Google search results.

At GhostMyData, we scan 1,500+ data broker sites and track the relationships between them. This gives us visibility into the data broker supply chain that most consumers — and even most privacy advocates — never see. This article explains how that supply chain works, why removing from one site does not protect you, and what it actually takes to stop the flow of your personal information.

The Four Layers of the Data Broker Supply Chain

The data broker ecosystem operates in layers, each building on the one below it. Understanding these layers is the key to understanding why your data keeps reappearing after removal.

Layer 1: Original Data Sources

At the foundation of the supply chain are the original sources of your personal information:

Government records: County clerk offices, courts, voter registration databases, property assessors, DMV records (in states that sell them), business filings, marriage and divorce records, and birth/death certificates
Financial data: Credit bureau header data (name, address, SSN — not credit scores), bank account ownership records, and loan records
Telecom data: Phone number registrations, carrier subscriber information, and directory listings
Marketing data: Loyalty programs, product registrations, survey responses, sweepstakes entries, and magazine subscriptions
Online activity: Social media profiles, forum posts, website registrations, and public online activity

These sources generate the raw material that feeds the entire broker ecosystem. Most of them are either legally required to be public (government records) or are collected through terms of service that consumers accept without reading.

Layer 2: Primary Aggregators

Primary aggregators are the companies that license data directly from Layer 1 sources and compile it into structured databases. These are the giants of the data broker industry:

Acxiom (IPG): Maintains profiles on 96% of US adults, 11,000+ data attributes per person
LexisNexis (RELX): Originally a legal research company, now one of the largest consumer data aggregators
CoreLogic: The dominant provider of property records and real estate data
Experian, Equifax, TransUnion: The credit bureaus also operate massive data brokerage businesses through their marketing and data services divisions
Oracle Data Cloud / Oracle Advertising: Compiles online and offline consumer data for advertising targeting

These companies have direct relationships with government agencies, financial institutions, and telecom providers. They spend billions of dollars annually on data acquisition and maintain the most comprehensive consumer databases in existence.

Layer 3: Secondary Aggregators and Resellers

Secondary aggregators license data from primary aggregators and repackage it for specific use cases. This is where the multiplication effect begins in earnest.

A single primary aggregator like LexisNexis may license its consumer data to dozens of secondary aggregators, each of which combines it with data from other sources and sells it to their own clients. These secondary aggregators include:

Background check companies that license data for employment and tenant screening
Skip tracing services used by debt collectors and private investigators
Marketing data resellers that package consumer profiles for advertising
Insurance data providers that compile risk profiles
Fraud prevention services

Each secondary aggregator creates its own version of your profile, potentially adding or modifying data along the way. And each of them may in turn license their compiled data to downstream customers.

Layer 4: Consumer-Facing Sites

At the top of the pyramid are the consumer-facing people-search sites that most people encounter in Google searches: Spokeo, BeenVerified, Whitepages, Intelius, Radaris, TruePeopleSearch, and hundreds of others. These sites license data from Layer 2 and Layer 3 aggregators and present it through search interfaces designed for consumer use.

Here is the critical insight: when you opt out of a Layer 4 site, you are only removing your listing from that one consumer-facing endpoint. Your data remains intact in Layers 1 through 3, and it will flow back to Layer 4 the next time that site re-ingests data from its upstream sources.

Corporate Parent Networks: The Hidden Multiplier

The supply chain layers explain why data persists after removal. But corporate ownership structures explain why a single listing appears on multiple sites simultaneously. Several major corporations operate networks of seemingly independent people-search brands that all share the same underlying database.

The Radaris Network (11+ Sites)

Radaris operates one of the most extensive broker networks, running 11 or more consumer-facing sites from a single data infrastructure. When we scan for a person's data, a positive result on Radaris almost always means positive results across the entire network. The subsidiary sites include names like Centeda, PublicReports, Virtory, Clubset, PersonTrust, Councilon, Kwold, NewEnglandFacts, Pub360, Dataveria, and Vericora.

Here is what the Radaris network looks like in simplified form:

RADARIS (Parent)

├── Centeda

├── PublicReports

├── Virtory

├── Clubset

├── PersonTrust

├── Councilon

├── Kwold

├── NewEnglandFacts

├── Pub360

├── Dataveria

└── Vericora

From a consumer's perspective, these look like 12 separate websites. They have different domain names, different branding, and different layouts. But they share the same underlying database and the same data ingestion pipeline. When you opt out of Radaris, your data does not automatically disappear from Centeda or PublicReports. Each site in the network typically requires its own separate opt-out process.

This is particularly insidious because most consumers will find one or two of these sites in a Google search, submit opt-out requests, and believe the problem is handled. Meanwhile, their data remains live on 9 or 10 other sites in the same network.

The PeopleConnect Network (Intelius Family)

PeopleConnect Inc. owns and operates Intelius, which serves as the parent platform for a network of people-search and background check brands. The PeopleConnect network includes:

PEOPLECONNECT (Parent Corporation)

├── Intelius (Primary Platform)

├── TruthFinder

├── Instant Checkmate

├── PublicRecordCenter

├── PersonSearchers

├── PublicSearcher

└── Additional affiliated properties

All of these brands share PeopleConnect's backend data infrastructure. When our scanning system detects a person on Intelius, we can predict with high confidence that the same person's data exists on TruthFinder, Instant Checkmate, and the other PeopleConnect properties. The data flows from PeopleConnect's central database to each brand's consumer-facing interface.

Removing yourself from TruthFinder does not remove you from Intelius or Instant Checkmate. Despite being owned by the same company and sharing the same data, each brand maintains its own opt-out process. This is not an accident — it is a design choice that maximizes the effort required for consumers to achieve comprehensive removal.

The BeenVerified / LTVCo Network

BeenVerified is owned by LTVCo (formerly known as PeopleLookup), which operates multiple brands from a shared database:

LTVCo (Parent Corporation)

├── BeenVerified (Primary Brand)

├── NeighborWho

├── NumberVille

├── Ownerly

├── NumberGuru

├── PeopleSmart

└── ReversePhone

The pattern is the same: one company, one database, multiple consumer-facing brands. Each brand targets a slightly different use case (background checks, property lookup, phone number search) but draws from the same underlying data. And each requires a separate opt-out.

WhitePages Network

WhitePages operates a smaller but significant network:

WHITEPAGES (Parent)

├── WhitePages Premium

└── CallerID

These properties share the WhitePages database and require separate opt-out processes.

How the Supply Chain Creates the Whack-a-Mole Problem

Let us trace a concrete example of how a single data point about you flows through the supply chain and why manual removal is so difficult.

Starting point: You buy a house. The county recorder's office creates a public record with your name, the property address, and the purchase price.

Layer 1: The county records are public and accessible via government databases.
Layer 2: CoreLogic, one of the primary aggregators for property data, ingests the county records into its database. LexisNexis and Acxiom also pick up the records through their own government data feeds.
Layer 2 to 3: CoreLogic licenses property data to secondary aggregators. LexisNexis licenses its version of the same data. Both add it to comprehensive consumer profiles that already include your name, phone number, email, and previous addresses from other sources.
Layer 3: Secondary aggregators like background check companies and skip tracing services now have your new address linked to your full identity profile.
Layer 4: Consumer-facing sites license data from these aggregators. Within weeks, your new address appears on Spokeo, BeenVerified, Whitepages, Radaris (and its 11 subsidiaries), Intelius (and its PeopleConnect siblings), and dozens of other sites.

The removal attempt: You find your listing on Spokeo and submit an opt-out request. Spokeo processes the removal within a week. Your listing disappears from Spokeo.

The re-listing: Two months later, Spokeo re-ingests data from its upstream suppliers. Because your information was only removed from Spokeo's consumer-facing layer, it still exists in every upstream source. Spokeo creates a new profile for you, and you are back where you started.

Meanwhile: Your data was never removed from the 11 Radaris sites, the 6 PeopleConnect sites, the 6 LTVCo sites, the WhitePages sites, and the dozens of other consumer-facing platforms. You removed yourself from one endpoint in a network of over 100.

Why "Remove From the Source" Is Harder Than It Sounds

The logical response to the supply chain problem is to go upstream — remove your data from the primary aggregators in Layer 2, and the downstream sites should eventually run dry. In theory, this is correct. In practice, it is extraordinarily difficult:

Primary aggregators do not have simple opt-out forms. Acxiom, LexisNexis, and CoreLogic do not operate like Spokeo. They are B2B companies that may require formal CCPA deletion requests, identity verification (sometimes including government ID), and extensive back-and-forth correspondence. Response times of 30 to 45 days are standard.

Some primary data is truly public. You cannot "opt out" of the county recorder's office publishing your property deed. Voter registration records are public in most states. Court filings are public. As long as these original sources exist, primary aggregators can legally re-collect your data.

Downstream propagation is not instantaneous. Even if you successfully remove your data from a primary aggregator, the downstream sites may continue to display your information from cached copies, older data feeds, or alternative sources for months.

There are too many intermediaries. The Layer 3 secondary aggregator space includes hundreds of companies, many of which are small, opaque, and difficult to identify or contact.

What Effective Removal Actually Requires

Given the structure of the supply chain, effective privacy protection requires a multi-layer, ongoing strategy:

Layer 4 removals: Opt out of every consumer-facing people-search site where your data appears. This is the most visible and immediate protection.
Layer 2 and 3 CCPA requests: Submit formal deletion requests to the major primary and secondary aggregators. This slows the re-flow of data to Layer 4 sites.
Continuous monitoring: Regularly re-scan all layers for re-listings. When data reappears, immediately resubmit removal requests.
Cluster-aware removal: When removing from one site in a corporate network (like Radaris or PeopleConnect), simultaneously remove from all sibling sites in the same network.
Source minimization: Where possible, reduce the amount of new data entering Layer 1 — use PO boxes for property transactions, opt out of voter file data sharing, and minimize public-facing personal information.

This is the approach we built GhostMyData to execute. Our scanner understands the corporate parent relationships and cluster networks described in this article. When we detect your data on one site in a network, we automatically check and submit removals across the entire cluster. Our CCPA pipeline targets the enterprise data brokers in Layers 2 and 3. And our recurring scans catch re-listings as they occur.

Automate Your Privacy with GhostMyData

The data broker supply chain is designed to make manual removal impractical. One listing becomes 100 through a combination of data licensing, corporate networks, and automated re-ingestion. Fighting this system one opt-out form at a time is like bailing out a boat without plugging the hole.

GhostMyData addresses every layer of the supply chain:

1,500+ broker coverage across all four layers — from consumer-facing people-search sites to enterprise data aggregators
Cluster-aware scanning that detects exposure across corporate parent networks (Radaris, PeopleConnect, LTVCo, and others)
Automated CCPA requests to primary and secondary aggregators
Continuous monitoring with recurring scans that catch re-listings
Real-time progress tracking for every removal request

Start your free scan to see exactly how far your data has spread through the broker supply chain.

Frequently Asked Questions

How many data broker sites does the average person appear on?

Based on our scanning data across 1,500+ broker sites, the average American adult appears on 50 to 80 consumer-facing people-search sites. When you factor in enterprise data brokers, marketing databases, and subsidiary sites within corporate networks, the true number of companies holding your data is significantly higher. People who own property, have lived in multiple states, or have common names tend to have more listings.

If I remove myself from Radaris, does that remove me from all Radaris subsidiary sites?

No. Despite sharing the same underlying database, each Radaris subsidiary site typically requires its own separate opt-out request. Removing your listing from radaris.com does not automatically remove it from Centeda, PublicReports, Virtory, or the other 8+ sites in the Radaris network. This is why cluster-aware removal services are important — they target every site in the network simultaneously.

Why does my data reappear on sites after I already removed it?

Data reappears because consumer-facing sites regularly re-ingest data from their upstream suppliers (primary and secondary aggregators). When you opt out of a consumer-facing site, you only remove your listing from that site's display layer. Your data remains in the upstream supply chain and flows back to the consumer site during the next data refresh. Permanent removal requires addressing multiple layers of the supply chain simultaneously and monitoring for re-listings on an ongoing basis.

What is the difference between a primary aggregator and a people-search site?

Primary aggregators (like Acxiom, LexisNexis, and CoreLogic) collect data directly from original sources and sell it to other businesses. They are B2B companies that most consumers have never heard of. People-search sites (like Spokeo, BeenVerified, and Whitepages) are consumer-facing websites that license data from primary and secondary aggregators and present it through search interfaces. People-search sites are the visible tip of the data broker iceberg, while primary aggregators are the hidden mass beneath the surface.

Can I just remove myself from the primary aggregators and ignore the consumer-facing sites?

In theory, removing from primary aggregators would eventually dry up the data flowing to consumer-facing sites. In practice, this does not work as a standalone strategy. Consumer-facing sites cache data, obtain it from multiple sources (not just one primary aggregator), and may have already sold your data downstream before you submit a removal request. Effective removal requires targeting all layers simultaneously — immediate removal from consumer-facing sites for quick wins, plus CCPA requests to primary aggregators to slow the re-flow.

The Data Broker Supply Chain: How One Listing Becomes 100