Think about the last time you searched for something online. Maybe it was directions to a hospital, a question you were embarrassed to ask out loud, or the price of something you cannot quite afford yet. That search is gone from your mind now. But it is not gone.
Somewhere, it sits in a database alongside thousands of other small details about your habits, your interests, your location at particular times of day, the articles you read halfway through and then closed. Most people, going about their lives with a smartphone in hand, have only a vague sense that this kind of data collection exists. Far fewer understand how extensive it actually is, or what it is used for.
The Business Behind Every Click
The internet, as most of us experience it, is free. No one charges you to run a search or scroll through your social feed. The actual cost, though, is paid in data. Platforms collect behavioural information from their users and sell access to it, primarily to advertisers who want to reach specific kinds of people with specific kinds of messages.
This is not a secret, exactly. It is buried in privacy policies that almost nobody reads. What is less understood is that this collection does not stop when you close an app or log out of a website. Third-party trackers, invisible bits of code embedded in ordinary web pages, follow users across the internet, piecing together a remarkably detailed picture of who they are over time.
There is also a less visible industry worth knowing about: data brokers. These are companies whose entire business is compiling personal information from dozens of sources and then selling it, often to anyone willing to pay. They are not household names, but the data they trade in is intimate. Name, age, address, income estimate, health interests, political tendencies. The list goes on.
Where Things Go Wrong
When Companies Get Hacked
Data that companies collect can and does end up in the wrong hands. Breaches have hit banks, hospitals, government databases, and social platforms. When a company’s systems are compromised, the personal information of millions of users can be exposed all at once. Passwords, phone numbers, email addresses, financial details. That information then circulates on private forums and dark web marketplaces, sometimes for years.
The frustrating part is that users have almost no control over this. You hand over information to use a service, and what happens to it after that is largely out of your hands. The best protection against breaches is to limit what you share in the first place, and to use a different password for every account so that one compromised login does not unlock everything else.
Open Networks and Who Might Be Watching
Public Wi-Fi is one of those conveniences that comes with a catch. A network at a café or railway station is open, which means others connected to it can, under certain conditions, observe the traffic passing through. For casual browsing this might not feel like a pressing concern. For anyone accessing email, banking, or anything requiring a login, it is worth thinking about.
One common approach to this problem is using a VPN, which routes your connection through an encrypted tunnel and makes your activity harder to intercept. For iPhone users in particular, downloading a VPN for iPhone has become a practical step for anyone who travels frequently or relies on public networks for work.
What Your Phone Is Actually Telling Apps
Smartphones are remarkable tracking devices, and not always in the ways people expect. Beyond the obvious location data, apps routinely request access to contacts, microphones, cameras, and browsing history. Many of these requests go well beyond what the app actually needs to function.
The Electronic Frontier Foundation, one of the world’s leading digital rights organisations, maintains a plain-language guide to protecting yourself from online surveillance that walks through practical steps for reducing your exposure across different devices and platforms. The guidance is free, regularly updated, and does not require technical expertise to follow.
A starting point most people can manage immediately: go through the app permissions on your phone and revoke anything that does not make obvious sense. Why does a recipe app need your microphone? Why does a flashlight need your location? These permissions are often granted once during installation and then forgotten about entirely.
What the Law Offers, and Where It Falls Short
India’s Digital Personal Data Protection Act, passed in 2023, gave citizens formal rights over their data for the first time: the right to know what is collected, to request corrections, and to ask for deletion. Greater Kashmir has previously covered how shaping a workable data governance framework involves balancing individual rights with the needs of a fast-growing digital economy, and the tension between those two things has not gone away.
The challenge is that legislation and enforcement are two different things. Knowing that you have the right to request your data be deleted is not the same as knowing how to do it, whether the company will comply, or whether anyone is checking. Rights that people are unaware of offer limited practical protection.
There is also a broader philosophical question about what we are entitled to control. The idea that individuals should be able to remove themselves from search results and online databases, sometimes called theright to be forgotten, has been debated in Indian courts and is slowly finding its way into law, though implementation remains patchy.
The Stakes in a Region Like Kashmir
For Jammu and Kashmir, the conversation around digital privacy carries particular weight. Connectivity here has expanded substantially over the past decade, with mobile internet becoming the primary way most people access information, communicate with family, conduct business, and stay informed about current events.
That expansion is worth celebrating. It has opened doors. But it has also meant that a large number of people are navigating privacy risks they were given very little preparation for. The same tools that connect people to opportunity also generate data trails, and not everyone collecting those trails has good intentions.
None of this is an argument against going online. The benefits of connectivity are real and significant. What it does argue for is taking the subject of digital privacy seriously, not as something for specialists to worry about, but as an ordinary part of being an informed person in a world where personal data has genuine value to those who collect it.
