Every week, someone contacts me and says they’ve already opted out of the open electoral register. They ticked the box, got their confirmation, and assumed the job was done. Then I run an assessment. Their home address is still sitting on 192.com. Their full name and postcode are in Experian’s marketing database. LiveRamp has linked their identity across a profile covering 45 million UK consumers. The electoral roll opt-out trap catches everyone who assumes one action closes the door. Opting out stops future data sales. It does absolutely nothing about the data already purchased by brokers, data aggregators, and credit reference agencies over the previous decade.
I’ve mapped hundreds of digital footprints for clients across the UK, and the pattern is always the same. People do the visible thing, assume they are protected, and leave the invisible pipeline completely untouched.
The electoral roll opt-out trap: what ticking the box actually changes
The open electoral register is an extract of voter registration data that anyone can buy for any lawful purpose. Cost: 20 pounds plus 1.50 pounds per 1,000 entries. Roughly 40% of UK registered electors remain on it. That is approximately 19 million adults whose home address is commercially available right now.
When you opt out at gov.uk/register-to-vote, you are telling your local Electoral Registration Office to exclude you from future editions of the open register. Your preference is permanent at your current address but resets if you move. It takes effect from the next register publication, typically 1 December with monthly updates.
Here is the part that matters: opting out does not trigger a recall. Every broker, every CRA, every data aggregator that purchased previous editions of the open register retains that data legally. 192.com alone holds 200 million records sourced from 2002 to 2017 edited electoral rolls. Those records do not disappear because you ticked a box in 2026.
What I actually find when I assess someone who “already opted out”
I’ve submitted hundreds of 192.com removal requests over the years, and the confirmation email is consistently the step people miss. But 192.com is the visible layer. When I run a full digital footprint assessment, the electoral roll data shows up in places most people have never considered.
A typical assessment for someone who opted out of the open register three years ago still returns hits across:
- 192.com: full name, historical addresses, phone numbers, neighbours, and associated company directorships. 700 million residential and business records in total, and your previous listing is almost certainly still in there.
- LocateGB: open electoral register data from 2004 onwards, with over 400 million records.
- People Trace UK: electoral roll combined with mobile, ex-directory, and email data. I’ve written a full removal walkthrough for PeopleTraceUK because the removal form is buried and not prominently displayed.
- Tracesmart: now a trading name of LexisNexis Risk Solutions. Electoral roll data from 2002 to 2013 plus their proprietary register. Removing your data from Tracesmart is significantly harder than most brokers because of the LexisNexis ownership.
- UK Phone Book (Simunix): 130 million records combining electoral roll, phone directories, Companies House, and Royal Mail PAF data.
- PeopleSearchFree: electoral roll from 2000 onwards cross-referenced with Land Registry and company directorships.
That is six different sources holding your data after you’ve already opted out. And I have not touched the commercial data brokers that operate behind the scenes.
The invisible pipeline: how electoral data feeds the commercial ecosystem
Most people focus on the people-search sites because those are the ones Google surfaces. The real damage happens in the commercial data pipeline that sits underneath, and it is almost never discussed in consumer privacy advice.
The known commercial purchasers of open register data include Experian Marketing Services, CACI, TransUnion’s marketing division (formerly CallCredit), LiveRamp (formerly Acxiom UK), and LexisNexis Risk Solutions. These are not people-search websites you can find with a Google search. These are commercial data infrastructure companies that enrich your electoral roll record with credit data, purchasing behaviour, demographic classification, and identity verification records.
LiveRamp UK holds identity databases on approximately 45 million UK consumers. When they purchased your electoral roll data, they linked it to a RampID connecting your name and address to your online activity, your advertising profile, and potentially your loyalty programme data. Opting out of the open register does nothing to break that link.
Experian takes electoral roll data and feeds it into their Mosaic consumer segmentation system. Your postcode, your household composition, your property type, and your name are combined into a marketing profile sold to advertisers, insurers, and financial services companies. The opt-out process for Experian Marketing Services is a separate action. Most people have no idea it exists.
CACI runs Acorn classification, which categorises every UK postcode into consumer segments. Your electoral roll data contributed to that classification. And the REaD Group operates what they describe as the UK’s largest consumer database, cross-referencing electoral data with Gone Away files and the Bereavement Register.
This is exactly why mapping your exposure before you start removing anything is the only approach that works. You cannot remove data you do not know exists, and no one sitting at their kitchen table is going to guess that LiveRamp holds their identity profile.
The skip-tracing problem most privacy advice ignores
Here is my opinion, and I know it will be unpopular with the DIY privacy crowd: the electoral roll opt-out is almost worthless as a standalone privacy measure for anyone with a professional or financial profile worth protecting.
I say this because I understand how investigators use this data. Before I founded Barnveil, I worked in financial crime investigation. I’ve delivered over 400 intelligence reports. When you need to find someone’s current address in the UK, you do not start with Google. You query LexisNexis or GBG. A trace through a service like Bark.com costs 100 to 200 pounds. Five investigators will compete for the work, and nine times out of ten they will pull your current address from one of these commercial databases. Your electoral roll opt-out is irrelevant to this process because the data was purchased years ago and enriched with current information from credit applications, utility registrations, and Royal Mail redirections.
The Electoral Commission, the ICO, the Local Government Association, and the Association of Electoral Administrators have all called for the open register to be abolished. The government has moved in the opposite direction, actively discouraging opt-outs since 2014. Do not wait for legislation to protect you. It is not coming.
Why compound exposure makes the problem worse
For someone with a single residential address and no public profile, the electoral roll opt-out plus a few broker removals might be sufficient. But that is not the reality for most of the people I work with.
If you hold company directorships, your name and service address (often your home address on historical filings) are on Companies House. If you own property, HM Land Registry title registers are available for 3 pounds each. If you have ever been on the edited electoral roll and also held a directorship, those two datasets cross-reference to confirm your identity with near certainty. Add a credit header from Experian or TransUnion and an investigator has your full name, date of birth, every address for the past six years, your phone number, and your email address.
The electoral roll opt-out addresses one node in a network of interconnected data sources. Removing one node while leaving the rest intact gives you a false sense of security. I’ve seen this across hundreds of assessments. People do the visible thing and assume the job is done. Then someone traces them through LexisNexis three months later because the invisible pipeline was never touched.
The removal sequence after opting out
If you have already opted out of the open register, you have completed step one. The remaining steps depend on your specific exposure, which is exactly why understanding whether removal services actually work matters more than following a generic checklist.
The general priority order after opting out:
- Remove from visible people-search sites: 192.com, PeopleTraceUK, LocateGB, UK Phone Book.
- Submit suppression requests to LexisNexis and GBG. I’ve personally secured a 12-month suppression from LexisNexis. It took eight or nine emails and a specific argument demonstrating heightened risk of being targeted due to occupation and involvement in legal cases.
- Opt out of CRA marketing divisions: Experian Marketing Services, TransUnion, Equifax.
- Contact commercial data brokers individually: LiveRamp, CACI, REaD Group, Selectabase.
- Set up Google Results About You for ongoing monitoring.
- Request search engine delisting for cached results that still display your address.
Your rights under UK GDPR give you legal backing for every one of these requests. Article 17 covers erasure. Article 21 gives you an absolute right to stop direct marketing processing. DPA 2018 Section 170 makes unlawful obtaining of personal data a criminal offence. The legal tools exist. But they only work if you know which doors to knock on, and that requires knowing where your data actually sits.
For anyone whose exposure includes directorships, property ownership, or a public profile, automated removal services will cover a fraction of the problem. Their broker lists are overwhelmingly US-focused, and none of them touch the commercial data infrastructure that matters most in the UK.
If you are not sure where your data sits after opting out of the open register, get in touch. I can tell you exactly how exposed you are and which removal requests will actually make a difference.
