What is Epsilon?

Epsilon is one of the largest marketing data companies in the world, owned by the French advertising giant Publicis Groupe, which acquired it in 2019 for $4.4 billion. If you have ever received a piece of direct mail that seemed eerily tailored to your interests, or noticed online ads that tracked your purchase behavior across websites, there is a strong chance Epsilon's data was behind it. The company maintains detailed profiles on over 250 million US consumers and processes more than 40 billion transactions per year.

Founded in 1969 as American Computer Group, Epsilon grew through decades of acquisitions that turned it into a one-stop shop for consumer data and marketing services. Key subsidiaries include Conversant (cross-device identity matching and digital advertising), Abacus (a cooperative database of catalog and retail purchase data from 1,600+ retailers), and Epsilon Targeting (audience segmentation for direct mail and email campaigns). Together, these divisions create a comprehensive picture of what Americans buy, browse, read, and respond to.

What sets Epsilon apart from traditional people-search brokers is their focus on transactional and behavioral data. While sites like Spokeo or WhitePages primarily aggregate public records and contact information, Epsilon tracks what you actually do — what you purchase, which emails you open, which catalogs you browse, and how you respond to marketing campaigns. This behavioral intelligence is what makes their data so valuable to advertisers and so concerning for privacy-conscious consumers.

Epsilon collects and sells the following types of personal data:

Purchase transaction records from online and offline retail, including amounts, dates, and product categories
Email engagement data including open rates, click behavior, and marketing response patterns
Catalog and direct mail purchase history from the Abacus cooperative database of 1,600+ retailers
Demographic data such as age, income range, household composition, education, and occupation
Financial behavior indicators including spending patterns, credit card usage, and bank affinity
Brand affinity and loyalty program data showing your preferred brands and shopping frequency
Media consumption across digital, print, TV, and streaming platforms
Loyalty and rewards program participation from retail partners
Identity graph data linking your email addresses, devices, cookies, and physical addresses
Location and mobility data from mobile applications and partner data sources

Why You Should Remove Your Information from Epsilon

Epsilon's deep transactional data creates privacy risks that are qualitatively different from having your address listed on a people-search site. Here is why you should take action to remove your information.

Your Purchase History Reveals Everything: Epsilon's Abacus database tracks purchases across 1,600+ retailers. This data reveals your income level, health conditions (pharmacy purchases), political interests (book purchases), personal struggles (self-help purchases), and life events (baby products, moving supplies). This intimate behavioral portrait is sold to any company willing to pay for it.

Email Tracking and Manipulation: Epsilon operates one of the largest email marketing platforms in the world, sending billions of emails annually. They track not just whether you open an email, but what you click, how quickly you respond, and what time of day you are most susceptible to marketing messages. This data is used to optimize when and how companies contact you for maximum persuasive effect.

Cross-Device Identity Linking via Conversant: Epsilon's Conversant division specializes in linking your identity across devices — connecting your phone, laptop, tablet, work computer, and smart TV into a single profile. This means your private browsing on one device can be connected to your real identity on another, eliminating any expectation of anonymity.

Data Breach Exposure: In 2011, Epsilon suffered one of the largest data breaches in history at the time, exposing the names and email addresses of customers from 75+ major companies including Best Buy, JPMorgan Chase, Citibank, and Walgreens. With 40 billion transactions per year flowing through their systems, Epsilon remains a high-value target for attackers.

Cooperative Data Sharing Amplifies Exposure: The Abacus cooperative database works by having retailers share their customer purchase data with Epsilon, which then makes the combined dataset available to all participants. This means your purchase from one retailer is shared with 1,600+ other companies — a level of data sharing most consumers never consented to or even know about.

How to Remove Yourself from Epsilon: Step-by-Step

Step 1: Navigate to Epsilon's Data Subject Request Portal

Go to https://legal.epsilon.com/dsr/. This is Epsilon's official DSR (Data Subject Request) portal where you can exercise your CCPA rights. Unlike many brokers that use a simple email address, Epsilon requires you to use their structured web form. Bookmark the page in case you need to check on your request status later.

Step 2: Select Your Request Type

On the DSR portal, select the option for a "Deletion Request" or "Right to Delete" under CCPA/CPRA. You may also want to select "Right to Know" to first see what data Epsilon has collected about you — receiving a copy of your data before deletion can be valuable documentation. Epsilon's form will walk you through the specific options available.

Step 3: Complete the Identity Verification Form

Fill in all required fields on the form, which typically include your full name, email address, mailing address, and phone number. Epsilon uses this information to match your identity against their databases. Provide as much information as you can — Epsilon maintains multiple databases (Abacus, Conversant, Epsilon Targeting), and accurate information helps ensure your request covers all of them.

Step 4: Submit and Document Your Request

After completing the form, submit it and take a screenshot of the confirmation page or save any confirmation number provided. Note the date of submission — Epsilon is legally required to acknowledge your request within 10 business days and complete it within 45 calendar days under CCPA. If the request is complex, they may extend this by an additional 45 days, but they must notify you of the extension.

Step 5: Respond to Any Verification Follow-Up

Epsilon may contact you via email or phone (1-866-267-3861 is their privacy line) to verify your identity before processing the deletion. Respond promptly to any verification requests. Delays in verification do not restart the 45-day clock, but they can provide Epsilon a basis for extending the timeline. Keep copies of all correspondence.

Step 6: Confirm Deletion and Monitor

After the 45-day period, submit a new "Right to Know" request through the same DSR portal to verify that your data has been deleted. If Epsilon still holds your information, send a follow-up referencing your original request number and the CCPA deadline. For ongoing protection, consider re-checking every 6 months, as Epsilon continuously collects new data from their retail and marketing partners.

What CCPA Rights Protect You

Under the California Consumer Privacy Act and the strengthened California Privacy Rights Act, you have specific rights regarding the data Epsilon collects about you. You can request to know exactly what personal information Epsilon has collected, the sources of that data, the business purpose for collecting it, and the categories of third parties they share it with. You can request deletion of your personal information, and Epsilon must also direct their service providers to delete your data. Critically, you have the right to opt out of the "sale" of your personal information — and because Epsilon's core business involves sharing consumer data with clients, much of what they do qualifies as a "sale" under CCPA. Epsilon must comply within 45 days and cannot charge you any fee or discriminate against you for exercising these rights.

Important Notes

Form-based only: Epsilon requires you to use their DSR portal at legal.epsilon.com/dsr/ — they do not accept opt-out requests via a generic email address. This is their standardized process for CCPA compliance.
Multiple databases: Your data may exist in Abacus (purchase cooperative), Conversant (digital identity), and Epsilon Targeting (audience segments). A single DSR request should cover all divisions, but verify by asking specifically in your request.
Phone support available: If you encounter issues with the web form, Epsilon's privacy line at 1-866-267-3861 can assist with your request.
Cooperative data re-collection: Even after deletion, retailers participating in the Abacus cooperative may re-contribute your data. Ongoing monitoring is essential for lasting protection.

Automate Your Removal with GhostMyData

Epsilon is just one of dozens of enterprise data brokers that trade in your personal information. The cooperative nature of databases like Abacus means your data flows between hundreds of companies, making manual opt-out a never-ending process. GhostMyData handles this for you:

Automated CCPA deletion requests submitted to enterprise brokers like Epsilon through their required channels
Continuous monitoring that catches data re-collection from cooperative databases and partner sharing
Deadline enforcement tracking the 45-day CCPA compliance window for every request
Enterprise broker coverage spanning the marketing data companies most consumers never discover

Start your free scan to discover which data brokers have your personal information and begin automated removal.

Frequently Asked Questions

Does Epsilon have my data?

If you have made purchases from major retailers, signed up for loyalty programs, or received direct mail marketing, Epsilon almost certainly has your data. With 250 million US consumer profiles built from 40 billion annual transactions, their coverage is extensive. You do not need to have interacted with Epsilon directly.

How long does Epsilon data removal take?

Epsilon must acknowledge your request within 10 business days and complete the deletion within 45 calendar days under CCPA. They may extend by an additional 45 days for complex requests, but must notify you. The total process typically takes 30-60 days.

Can I call Epsilon to opt out?

You can call Epsilon's privacy line at 1-866-267-3861 for assistance, but they will likely direct you to complete the DSR form at legal.epsilon.com/dsr/ for formal processing. Phone support can help with questions about your request status.

Will Epsilon collect my data again after I opt out?

Yes. Because Epsilon operates a cooperative database with 1,600+ retail partners, new purchase data about you may flow back into their systems after deletion. Ongoing monitoring and periodic re-submission of deletion requests is necessary for lasting privacy protection.

What was the Epsilon data breach?

In 2011, Epsilon suffered a major breach that exposed names and email addresses of customers from 75+ major companies, affecting millions of consumers. This breach highlighted the concentrated risk of having one company hold data from so many sources.

How to Remove Yourself from Epsilon in 2026 (Step-by-Step Guide)