๐ Scan 210 data brokers in 10 seconds. Open-source alternative to DeleteMe ($129+/yr), Optery ($99+/yr), Incogni ($99+/yr). MIT-licensed, local-first, zero telemetry.
210 data brokers ยท 30 AI-training platforms ยท 58 with semi-automated opt-out ยท all 3 US credit bureaus ยท 30-day verify loop ยท 0 data leaves your machine
Your personal data is collected by hundreds of data brokers (Spokeo, Whitepages, Acxiom, LexisNexisโฆ) and resold for $200-500/yr per person. DeleteMe charges from $129/yr to remove it. Vanish does the same โ free, self-hosted, and auditable.
Try it now โ two zero-install options:
๐ In your browser: ramboxie.github.io/vanish ยท 100% client-side, nothing transmitted
๐ป In your terminal (10 seconds):
npx github:RAMBOXIE/vanish scan --name "Your Name"Zero-install โ one line from any terminal:
npx github:RAMBOXIE/vanish scan --name "Your Name" --email "you@example.com"That's it. No clone, no install, runs anywhere with Node 20+.
Install via Clawhub (AI agent marketplace)
# Install as a skill for AI agents
npx clawhub@latest install vanishClawhub is the npm-like registry for AI agent skills. Once installed, any Clawhub-compatible agent can use Vanish's scan and cleanup capabilities.
Clone locally
git clone https://github.com/RAMBOXIE/vanish
cd vanish
node scripts/index.mjs scan --name "..." --email "..."Install globally (npm link)
git clone https://github.com/RAMBOXIE/vanish
cd vanish && npm link
vanish scan --name "..." --email "..."# Privacy Scan Report
Scan ID: scan_1776429838547_9dd0ef7b
Identity: A. Lovelace
## Privacy Score: 63/100 (HIGH RISK)
[โโโโโโโโโโโโโโโโโโโโ] 63/100
## Exposure Summary
- Total brokers scanned: 210
- Likely exposed: 115
- Possibly exposed: 95
## Risk Distribution
- Critical: 95
- High: 20
- Moderate: 65
## Priority Recommendations
1. [CRITICAL] Remove from 70 people-search brokers
2. [CRITICAL] Remove from 18 background-check brokers
3. [HIGH] Remove from 7 identity-resolution brokers
4. [HIGH] Remove from 21 public-records brokers
Heuristic scanner estimates your exposure across 210 brokers using a 5-factor confidence algorithm:
- Data-type coverage: does the broker collect what you have?
- Category risk: people-search = critical, property-records = low
- Jurisdiction match: US brokers for US users, etc.
- Broker reach: category penetration
- Opt-out complexity: mail-only brokers likely still have your data
All computation is local. Nothing leaves your machine.
Privacy score (0-100), per-broker risk tiers (critical / high / moderate / low), and prioritized recommendations grouped by category.
18-step conversational wizard submits opt-out requests:
SCAN_WELCOME โ SCAN_INPUT โ SCAN_RUNNING โ SCAN_REPORT โ SCAN_HANDOFF
โ (cleanup branch)
WELCOME โ GOAL โ SCOPE โ INPUT โ AUTH โ PLAN
โ RISKร3 (triple confirmation for high-risk actions)
โ EXPORT_DECISION โ EXECUTE โ REPORT โ CLOSE
Persistent retry/manual-review/dead-letter queues, HMAC-signed audit trail, transparent error classification (transient vs. permanent).
| Feature | Vanish | DeleteMe | Optery | Incogni |
|---|---|---|---|---|
| Price | Free (MIT) | $129+/yr | $99+/yr | $99+/yr |
| Brokers covered | 210 | 750+ | 350+ | 180+ |
| Open source | โ | โ | โ | โ |
| Self-hosted | โ | โ | โ | โ |
| Data never leaves your machine | โ | โ | โ | โ |
| Signed audit trail (HMAC) | โ | โ | โ | โ |
| Encrypted secret store (scrypt) | โ | N/A | N/A | N/A |
| Agent-native (conversational) | โ | โ | โ | โ |
| Category | Count | Examples |
|---|---|---|
| People Search | 70 | Spokeo, Whitepages, BeenVerified, Intelius, Radaris, Truecaller, InfoTracer |
| Public Records | 21 | FamilySearch, Archives, CourtListener, PropertyShark, Zillow, CityData |
| Marketing Data | 20 | Acxiom, LiveRamp, Oracle/BlueKai, ZoomInfo, Clearbit, Epsilon |
| Background Check | 18 | Checkr, GoodHire, Sterling, AccurateBackground, HireRight |
| Email Data | 15 | Hunter, Lusha, Apollo, RocketReach, LeadIQ, ContactOut |
| Phone Lookup | 14 | Truecaller, Hiya, RoboKiller, Sync.me, CallerSmart |
| Financial | 12 | LexisNexis, Equifax, Experian, TransUnion, ChexSystems, CoreLogic |
| Social Media | 8 | Lullar, SocialSearcher, Webmii, UserSearch, KnowEm |
| Location Data | 8 | SafeGraph, Foursquare, PlaceIQ, GravyAnalytics, X-Mode |
| Reputation | 7 | BrandYourself, Reputation.com, RepDigger, NetReputation |
| Identity Resolution | 7 | FullContact, Throtle, Infutor, Tapad, LiveIntent |
Browser-assisted opt-out: 58 brokers support guided removal via vanish opt-out. Vanish opens your browser to the real opt-out URL, pre-fills the data to paste, and guides you through captchas + email verification. Includes the big names (Spokeo, Whitepages, BeenVerified, Intelius, Radaris), background check (InstantCheckmate, TruthFinder), credit bureaus (LexisNexis, Equifax, Experian, TransUnion), and more. See vanish opt-out --help for the full list.
Live HTTP submission: 8 brokers have adapters for real HTTP submission via configurable endpoints (default postman-echo.com for closed-loop validation). The other 202 are dry-run blueprints with verified opt-out URLs โ future batches can extend browser-assisted support to more.
- ๐ Privacy Scanner โ 210 brokers, 0-100 score, instant heuristic
- ๐ค AI Training Exposure Scan โ check 30 LLM platforms (ChatGPT, Claude, Gemini, LinkedIn, Reddit, etc.) for default-opted-in data training. Unique to Vanish โ competitors don't cover this
- ๐๏ธ 18-state Wizard โ conversational opt-out flow, back/pause/resume commands
- ๐ Verify Loop โ 30-day re-check with HTTP liveness; proves "actually removed" vs "still present"
- ๐ฆ Encrypted Secret Store โ scrypt KDF + per-secret salt, Windows DPAPI preferred, AES-GCM fallback
- โ๏ธ Signed Audit Trail โ HMAC-SHA256 over canonical JSON, timing-safe verification
- ๐ Persistent Queues โ retry (exponential backoff) / manual-review / dead-letter with SHA-256 dedupe
- ๐ Local Dashboard โ static HTML, watches queue state, zero backend
- ๐ก๏ธ Safety Gates โ manual trigger only, triple-confirm for high-risk, export-before-delete, compliance snapshot
- ๐งช 64 Tests โ unit + e2e against
postman-echo.com, every commit tested
- Manual trigger only โ
--manualflag required, no scheduled mode - Triple confirmation for any high-risk action
- Ask before delete โ export decision gate
- User-selected notifications โ no opt-out pressure
- Minimum credential scope + shortest TTL + post-task wipe
- HMAC key required in production โ fails loud in dev without
VANISH_AUDIT_HMAC_KEY
All subcommands work via vanish <cmd> (after npm link or publish) or node scripts/index.mjs <cmd> (local) or npx -p github:RAMBOXIE/vanish vanish <cmd> (zero-install).
# Privacy scan (no removal, no API calls, 10 seconds)
vanish scan --name "John Doe" --email "j@x.com"
vanish scan --name "..." --output-md ./my-report.md
vanish scan --name "..." --output-json ./my-report.json --json
# Generate a privacy-preserving share card (1200x630 SVG)
# Safe to post publicly โ contains ONLY aggregate score + category stats,
# no name, email, or phone.
vanish scan --name "..." --share-card ./my-privacy-card.svg
# Quieter output (for CI / scripting):
vanish scan --name "..." --no-banner --no-color
# AI training exposure scan โ which LLM companies train on your data?
# No personal data sent. We just need to know which platforms you use.
vanish ai-scan --linkedin --twitter --chatgpt --reddit
vanish ai-scan --use linkedin,twitter,chatgpt,reddit # CSV alt
vanish ai-scan --all # all 30 platforms
vanish ai-scan --all --output-md ./ai-report.md
# Covered (30 platforms): ChatGPT, Claude, Gemini, Copilot, Meta AI, Perplexity,
# LinkedIn, Reddit, Twitter/X (Grok), Stack Overflow, Tumblr, Medium, Quora,
# Facebook, Pinterest, Grammarly, Notion AI, Otter, Zoom, Slack, Gmail, Outlook,
# GitHub Copilot, Cursor, Adobe, Canva, DeviantArt, Shutterstock, Figma, ArtStation
# Each entry shows: default consent (opted-in/opted-out/licensed), opt-out URL,
# estimated time, and difficulty.
# Browser-assisted opt-out (opens browser + guides you through 58 real brokers)
vanish opt-out --broker spokeo --email you@example.com --full-name "Your Name"
vanish opt-out --broker spokeo,whitepages,beenverified --email you@example.com --full-name "Your Name"
# Verify whether past opt-out submissions actually worked (30-day re-check loop)
vanish verify # check entries past recheckAt date
vanish verify --all # check every followUp entry (ignore schedule)
vanish verify --broker spokeo # check specific broker(s)
vanish verify --no-fetch # dry-run, just list pending
# Verify output: โ
removed / โ still-present / โ unknown (captcha/timeout/etc)
# Updates queue state with verification results + writes HMAC-signed audit events.
# Suggests re-submitting opt-out for still-present brokers.
# Supported brokers (58 total โ now covering all 3 credit bureaus + top B2B data firms):
# People search (27): spokeo, whitepages, beenverified, intelius, peoplefinder,
# truepeoplesearch, fastpeoplesearch, radaris, zabasearch, thatsthem, nuwber,
# peekyou, ussearch, addresses, cocofinder, checkpeople, peoplelooker,
# publicrecordsnow, searchpeoplefree, smartbackgroundchecks,
# advancedbackgroundchecks, clustrmaps, 411com, anywho, infotracer, peoplewhiz, truecaller
# Background check (5): instantcheckmate, truthfinder, cyberbackgroundchecks,
# checkpast, backgroundreport, governmentregistry
# Phone lookup (7): usphonebook, hiya, spydialer, numberguru, reversephonelookup,
# syncme, robokiller
# Public records (1): familytreenow
# Reputation (2): mylife, brandyourself
# Identity resolution (2): pipl, fullcontact
# Marketing data (7): acxiom, liveramp, oraclebluekai, epsilon, zoominfo,
# clearbit, neustar
# Financial (5): lexisnexis, equifax, experian, transunion, chexsystems, corelogic
# โ all 3 credit bureaus covered
#
# Tool opens your browser to the opt-out page, shows which fields to fill,
# tells you what captcha/email verification to expect, then records a
# follow-up for 30-day re-verification.
# Full interactive wizard (scan โ review โ cleanup)
vanish wizard
# Dry-run cleanup with presets
vanish cleanup --manual --preset spokeo \
--confirm1 YES --confirm2 YES --confirm3 YES \
--export-before-delete ask --export-answer no
# Live submission (real HTTP against test endpoint)
vanish b1-live run --live --brokers spokeo,thatsthem,peekyou \
--full-name "Test User"
# Queue management
vanish queue list
vanish queue retry --id <retryItemId>
vanish queue resolve --id <manualReviewId> --resolution resolved
# Local dashboard (static HTML, no backend)
vanish dashboard data/queue-state.json
# Open dashboard/index.html in browser
# Proof report (audit trail in Markdown)
vanish report ./path/to/execution-result.json
# All 109 tests
npm testSubcommand shortcut: vanish-scan is an alias for vanish scan.
src/
โโโ scanner/ # Privacy scan engine
โ โโโ scoring.mjs # 5-factor confidence + privacy score
โ โโโ exposure-profile.mjs # Per-broker exposure estimation
โ โโโ scan-engine.mjs # Orchestrates 200-broker scan
โ โโโ scan-report.mjs # Markdown report renderer
โโโ adapters/
โ โโโ registry.mjs # Catalog-driven adapter registry
โ โโโ brokers/
โ โโโ config/
โ โ โโโ broker-catalog.json # Single source of truth (210 brokers)
โ โโโ _dry-run-broker.mjs # Base factory
โ โโโ _live-broker.mjs # Live HTTP submission factory
โโโ wizard/
โ โโโ engine.mjs # 18-state finite state machine
โโโ orchestrator/
โ โโโ b1-runner.mjs # Pipeline: prepare โ submit โ parse โ queue
โโโ queue/ # Retry + manual-review + dead-letter queues
โโโ auth/
โ โโโ secret-store.mjs # scrypt + per-secret salt
โโโ audit/
โโโ signature.mjs # HMAC-SHA256 audit signing
prompts/wizard/ # 18 .md prompt templates per state
scripts/ # CLI entry points
tests/ # 109 tests across 15 files
Current MVP:
- โ 200-broker catalog with verified opt-out URLs
- โ Heuristic privacy scanner (0-100 score, per-broker risk)
- โ 18-state wizard with scan โ handoff โ cleanup flow
- โ Real HTTP submission for 8 brokers via test endpoint
- โ Audit, queues, secret store hardened
- โ 109 tests passing across 3 OSes ร 2 Node versions (CI)
Next (P2):
- ๐ Production endpoint configuration for people-search brokers
- ๐ Browser-based scan (no install) via static JS port
- ๐ Shareable scan card (image) for social distribution
- ๐ Notification handlers (Telegram, email, Signal)
- ๐ Dashboard queue operations UI
Future:
- ๐ฌ Email removal flow (CCPA/GDPR requests)
- ๐ Search-engine verification (Google
site:spokeo.com "John Doe") - ๐ Before/after scan comparison ("privacy score went from 72 โ 31")
SKILL.mdโ Skill definition and operating guidanceIMPLEMENTATION_PLAN.mdโ MVP architectureFLOWCHART.mdโ Mermaid process flowADAPTER_SPEC.mdโ Unified adapter contractsCONVERSATION_PROTOCOL.mdโ Wizard state machineDMCA_TEMPLATES.mdโ Bilingual DMCA draftsTODO.mdโ Backlog and validation records
MIT โ see LICENSE.
Early-stage open source project. Issues, PRs, and new broker entries welcome.
Add a new broker in ~8 lines by appending to src/adapters/brokers/config/broker-catalog.json:
"newbroker": {
"displayName": "NewBroker",
"category": "people-search",
"jurisdiction": "US",
"optOutUrl": "https://newbroker.com/optout",
"optOutMethod": "form",
"adapterMode": "dry-run",
"rateLimitPolicy": { "requestsPerMinute": 4, "jitterMsMin": 500, "jitterMsMax": 1500, "backoff": "exponential" },
"complianceNotes": [],
"template": { "keywords": "newbroker exposure" }
}No new .mjs file, no registry import. Registry auto-loads from catalog.
If Vanish helps you, star โญ the repo โ it helps others discover a free alternative to $100+/yr privacy services.
DeleteMeยฎ, Opteryยฎ, and Incogniยฎ are trademarks of their respective owners (Abine, Inc.; Optery, Inc.; Surfshark B.V.). Vanish is not affiliated with, endorsed by, or sponsored by any of these services.
References to competitor products exist solely for factual comparison (truthful comparative advertising, permitted under US Lanham Act ยง43(a), EU Directive 2006/114/EC, and similar frameworks).
Pricing referenced ($129+/yr, $99+/yr, etc.) is approximate and current as of April 2026. These services use tiered pricing โ the figures shown are entry-level. Check each service's official website for current and complete pricing.
Vanish is a community-maintained, MIT-licensed open-source project. It does not offer a commercial service. It does not warrant any particular outcome of opt-out submissions; each broker's response is governed by their own policies and applicable privacy laws (CCPA, GDPR, etc.).