Let me guess.
You uninstalled that sketchy app. Denied location permission to another one. Felt like you'd done the responsible thing.
Here's the uncomfortable truth — none of that actually stopped them.
Apps today don't need to be on your phone to track you. They don't need your permission either. Here's exactly how they do it — and what you can actually do about it.
Uninstalling Removes the App. Not the Data.
Most people think uninstalling an app is like evicting a tenant. Gone. Done. Clean.
It isn't.
Uninstalling only removes the software from your device. Everything the app already uploaded — your account details, activity logs, location history, behavioural patterns — stays on their servers. Untouched. Often indefinitely.
The app was just the door. Your data lives in a house you can't see and can't enter.
The Advertising ID That Never Leaves
Your Android phone has something called a GAID — Google Advertising ID. Your iPhone has an equivalent called IDFA. Every app that serves you ads reads this code.
Here's why it matters after uninstall.
When you install any new app — completely unrelated to the one you deleted — if both share the same ad network, the new app immediately recognises your ID and pulls up the profile the old app built. Your interests, habits, spending patterns. All of it, waiting.
You gave the new app nothing. It already had everything.
You Denied Location Permission. It Didn't Matter.
This one surprises people most.
Apps can pinpoint your location without ever touching the location permission. Here's how:
WiFi network names — your phone constantly scans nearby networks. Cross-referencing known WiFi locations places you within metres of a specific spot.
Bluetooth signals — malls, shops and airports place Bluetooth beacons that silently ping your phone as you walk past. No permission needed.
IP address — every app with internet access knows your approximate neighbourhood from your IP alone.
Sensor data — your accelerometer and barometer reveal your commute patterns, your mode of transport, even which floor of a building you're on.
None of these require location permission. All of them work regardless.
One App. Ten Trackers.
When you install an app, you're not just installing one piece of software. Most apps embed third-party SDKs — from analytics companies, ad networks and data brokers — directly inside them.
When you grant permissions to the app, every SDK inside gets those same permissions simultaneously.
One yes. Ten beneficiaries.
Free Apps Are the Worst Offenders
Free apps collect four times more data than paid ones. This is not a coincidence.
The business model of a free app is your data. You are not the customer. You are what's being sold. Every click, every scroll, every minute inside the app — packaged, profiled and sold to advertisers who follow you everywhere else.
The app was free. You paid with something more valuable than money.
What Actually Protects You
Reset your Advertising ID every month
This breaks the connection between your device and the profile built on it. Takes 30 seconds.
Android 12+: Settings → Privacy → Ads → Delete Advertising ID
Older Android: Settings → Google → Ads → Reset Advertising ID
iPhone: Settings → Privacy & Security → Tracking → reset IDFA
Revoke permissions before you uninstall
Go to Settings → Apps → [App Name] → Permissions and turn everything off before deleting. Some apps upload a final data burst the moment they detect uninstall. Don't give them the chance.
Delete your account — not just the app
Uninstalling without deleting your account leaves all server-side data intact forever. Under India's DPDP Act, companies are now legally required to delete your data when you formally request it. Use that right.
Revoke OAuth access
If you used Sign in with Google or Sign in with Facebook, the app still has an active access token even after uninstall.
Revoke it here:
Google: myaccount.google.com → Security → Third-party apps
Facebook: Settings → Security → Apps and Websites
The Bottom Line
Deleting an app is a good first step. It is not a clean break.
Your data — your habits, your location patterns, your identity — lives on servers you will never access, shared with partners you will never know about, building a profile of you that has no expiry date.
Your phone knows more about you than most people in your life. The question is — who else is it telling?