Your data. Your choice.

If you select «Essential cookies only», we’ll use cookies and similar technologies to collect information about your device and how you use our website. We need this information to allow you to log in securely and use basic functions such as the shopping cart.

By accepting all cookies, you’re allowing us to use this data to show you personalised offers, improve our website, and display targeted adverts on our website and on other websites or apps. Some data may also be shared with third parties and advertising partners as part of this process.

Legal noticePrivacy notice
Jan Johannsen
Guide
158

The EU gives its employees these data protection tips

Jan Johannsen
12/11/2025
Translation: machine translated
Pictures: Jan Johannsen

Location data in advertising tracking is a security risk. This is shown by the latest "Databroker Files" research. The EU would rather give tips on how to protect yourself individually than ban data collection.

Since summer 2024, netzpolitik.org, Bayrischer Rundfunk and international partner media have been publishing the so-called «Databroker Files». The research shows what can be gleaned from purchasable advertising data. The current publication is about how location data from such advertising datasets can be used for espionage - for example against top EU and NATO personnel.

Individual data protection tips instead of political action

The research by Netzpolitik and co. has reached those responsible and has been identified as a problem. As a result, there has been no discussion about how the data of all people can be better protected by regulations for the advertising industry. On the contrary: the EU is currently planning to weaken individual data protection in favour of economic interests.

At least there are internal tips from the cybersecurity service CERT-EU, the central point of contact for all IT security issues in the EU. Netzpolitik has published the corresponding circular.

Access and location data and other things can be set individually for each app.
Access and location data and other things can be set individually for each app.

With regard to location data and metadata, the EU provides the following tips:

  • Switch off location data if it is not needed
  • Disable options such as «Use exact location» on Android or «Exact location» on iOS - the weather app does not need to be able to locate you down to the metre.
  • Check app permissions and revoke any unnecessary ones. Only allow location data for apps that really need it - for navigation, for example.
  • Allow location data only for the respective use - «Always ask». The EU also suggests checking the settings monthly and after every update. If apps change something without permission, this is an offence.
  • Block all location sharing from browsers
  • Block all unnecessary notifications from websites.
  • Switch off geotagging and location history. Delete previous location history.
  • Disable geotagging for photos and videos to prevent apps from receiving location data. If geotagging is necessary: Remove GPS metadata from photos before sharing.

There is also a note that you should deactivate personalised advertising, specifically the mobile advertising ID.

  • On Android: Settings -> Privacy and security -> Privacy settings -> Advertising
  • On iOS: Settings -> Privacy and security -> Tracking

In addition, fitness apps do not need access to your smartphone's location data if you use a wearable with GPS when running or cycling. Routes should remain private and not be visible to third parties. Social media apps also do not need permanent access to location data. This applies in particular to live locations or check-ins. The EU also advises users to check whether unwanted details are visible in the background before publishing photos.

The recommendation is to delete the timeline afterwards.
The recommendation is to delete the timeline afterwards.

These tips have been around for a while

The EU's tips are in line with the seven tips that netzpolitik.org gave back in January 2025.

  1. Switch off mobile advertising ID
  2. Remove location access from apps
  3. Switch off tracking technologies - not only GPS, but also mobile communications, Bluetooth or Wi-Fi, if possible
  4. Curb tracking via IP address (VPN, tracking and ad blockers, DNS server)
  5. Reject tracking wherever possible
  6. Switch to tracking-free alternatives (GrapheneOS or /e/OS in the Android sector, for example)
  7. Strive for political solutions
Header image: Jan Johannsen

15 people like this article

User Avatar
User Avatar
Jan Johannsen
Senior Editor
Jan.Johannsen@galaxus.de

As a primary school pupil, I used to sit in a friend's living room with many of my classmates to play the Super NES. Now I get my hands on the latest technology and test it for you. In recent years at Curved, Computer Bild and Netzwelt, now at Digitec and Galaxus. 

Guide

Practical solutions for everyday problems with technology, household hacks and much more.

Show all

These articles might also interest you

  • Guide

    How to solve the location-tracking issue on Bumble, Grindr and other dating apps

    by Florian Bodoky

  • Guide

    It’s happened again: Meta wants your money or your data. Now what?

    by Florian Bodoky

  • Guide

    WhatsApp’s new Advanced Chat Privacy: what it can – and can’t – do

    by Florian Bodoky

8 comments

Avatar
later