Take a photo with your phone. Open it on your computer. Right-click, get info. Almost always, buried in the details, you will find: the exact GPS coordinates the photo was taken at (accurate to a few meters), the date and time down to the second, the make and model of the camera, sometimes the phone's owner name, and — depending on the app — the lens, the shutter speed, and a thumbnail of an older version of the photo. All of this ships with the file every time you share it.
This is called EXIF metadata (with some XMP and IPTC cousins). It has been quietly attached to every digital photo since 1998. Most of it is harmless. Some of it is not.
What actually matters, and what doesn't
The two fields worth caring about, for most people, are GPS coordinates and the device owner name. GPS is obvious: a photo of your kitchen table also tells the world exactly where your kitchen is. Device owner is subtler — some cameras and photo apps set this once and then embed it in every photo, so "anonymous" photos posted on Reddit for years have quietly carried the same name.
The date/time, camera model, and technical fields (aperture, ISO) are usually not sensitive on their own, but they can be used to correlate photos — proving that two supposedly unrelated images came from the same camera, or building a timeline of a person's day. This matters if you're a journalist, a whistleblower, or a source; it doesn't really matter if you're posting your dog on a group chat.
The four situations where you should strip EXIF
1. Selling something online (Facebook Marketplace, Craigslist, Vinted). The photo of your bike carries the coordinates of where the bike sleeps at night.
2. Posting on a public forum under a pseudonym. The GPS field and the device owner name are how pseudonyms get broken.
3. Sharing photos from a friend's home, an event, or a location the subject wouldn't want disclosed. Their house, their gym, their kid's school.
4. Any professional context where the file leaves your organization — press releases, submitted evidence, blog cover images. If it's going to be downloaded by strangers, treat it like a document with a footer you can't see.
What most platforms already do (and don't)
Instagram, Facebook, Twitter/X, WhatsApp, and iMessage all strip GPS metadata on upload — that's the good news. The less good news: they don't strip everything, and they don't strip anything from files sent as "documents" or attachments rather than as inline images (email attachments especially). Signal, Discord, and most self-hosted forums preserve EXIF by default. Reddit strips some, keeps some, and changes its policy periodically.
The safe rule: never rely on the platform. Strip the metadata yourself before you send. It takes seconds and it's the same amount of work regardless of destination.
How to see what's actually in your photo
Before you strip, look. Bluebird's EXIF Viewer opens any image and shows every field the file contains, in plain English — GPS coordinates plotted on a mini description, camera info, timestamps, edit history if present. Doing this once on your own recent camera roll is genuinely eye-opening; you will find fields you didn't know were being written.
On iPhone, the built-in Photos app shows a subset of this under the info button ("i") — good enough to see the location, not thorough enough to see everything. Android varies by phone.
How to strip it — the three-second version
For a single photo, most modern OSes have a right-click option. On macOS: open in Preview → Tools → Show Inspector → the (i) tab → GPS → Remove Location Info. On iPhone: Share → Options → Location off. On Android: varies, sometimes hidden in the share sheet.
For batches, a browser tool is faster and more thorough. Bluebird's EXIF Batch Strip takes a folder of images and returns them with every EXIF/XMP/IPTC field removed, in the browser, no upload. Drag in fifty photos, download a zip, done. This is the workflow to build a habit around, because it removes the temptation to skip "just this once" for a photo where it matters.
One last thing: screenshots are safer than photos
A screenshot of a photo, taken on your phone or computer, contains no camera EXIF at all — because it wasn't taken by a camera. If you need to post an image of something and you don't care about full resolution or subtle color, taking a screenshot of it is a shortcut to a metadata-free file. Not elegant, but foolproof.



