- Configuring Bluetooth visibility, proximity scans, and paired devices drastically reduces physical proximity tracking.
- Controlling app permissions, precise location, background activity, and personalized ads limits the abusive collection of personal data.
- Updating your system and applications, using private DNS, VPN, and avoiding unsecured public Wi-Fi strengthens protection against attacks and passive tracking.
- Taking advantage of alerts from unknown trackers and knowing how to disable them is key to detecting and stopping potential cases of harassment or malicious tracking.
Bluetooth connectivity has become so commonplace We often forget it's there, working in the background, exchanging signals with all sorts of devices around us. This convenience has a downside: from small object trackers to hidden Android or iOS features, this technology can be used to track our movements with unsettling accuracy.
If you're worried that your mobile phone could be used to locate youTo profile your habits or even stalk you, the good news is that there are many advanced options to minimize this proximity tracking. It's not just about turning off Bluetooth, but about reviewing deep system configurationsapp permissions, Google options, and even how files are shared or how your device is shown to others.
How Bluetooth trackers work and why they pose a risk
Bluetooth object trackers are tiny devices They attach to keys, backpacks, wallets, cars, or even integrate into headphones and accessories. They use Bluetooth Low Energy (BLE) to emit a signal that nearby mobile phones can detect, and through networks like "Find My iPhone" or "Find My Device," they periodically send their approximate location to the cloud.
The original concept behind these gadgets is quite innocent.It helps recover lost items. All it takes is at least one smartphone with Bluetooth and an internet connection nearby for the server to calculate the tracker's location and show it to its owner on a map. Apple AirTag It is the most famous example, but brands such as Chipolo, eufy, Filo, Samsung SmartTag, Tile, Motorola moto tag, Pebblebee and others operate on the same idea.
The problem arises when that same technology is misused.Placing a tracker in someone's purse, glove compartment, or hidden under their license plate allows their daily routes to be monitored without their knowledge. Thieves use them to locate high-end cars, and stalkers or jealous partners use them to spy on their victims. This is no longer just about advertising or marketing data, but about physical security.
In addition to active tracking linked to an accountThere is also a very subtle form of passive tracking based on Bluetooth, Wi-Fi, or GPS signals emitted by your phone. Even if you don't use trackers, your phone may be continuously sending identifiers and searching for nearby devices, creating unique "fingerprints" that identify you in stores, stations, or shopping malls. If you want to know how to detect misuse of your location by apps, see [link to relevant resource]. How to detect apps that use your location.
Meanwhile, Bluetooth is a clear target for cyberattacks.Vulnerabilities such as Bluesnarfing, BlueSmacking, or BlueBorne allow attackers to steal contacts, messages, emails, files, or even take control of the device by exploiting protocol flaws, often without you having accepted any pairing request.
Alerts for unknown trackers on Android and iOS
The growing wave of harassment cases involving AirTags and other trackers This forced Apple and Google to reach an agreement. First, Apple incorporated a speaker into the AirTag so that, if it strayed too far from its owner, it would start beeping intermittently and attract the attention of the person wearing it.
Later, iOS introduced an alert feature To alert the user when someone else's AirTag is carried for an extended period, regardless of the location of the tracker's iPhone. From this alert, the user can activate the beacon, view its serial number, and temporarily or permanently disable the warning if it's an innocent case (for example, the keys of a family member traveling with you).
The big leap came when Apple and Google joined forces. They created a joint standard called DULT (Detection of Unwanted Location Trackers). Starting with iOS 17.5 and Android 6, both iPhones and Android phones can issue alerts when they detect someone else's tracker continuously following you.
On Android, modern versions integrate these alerts within the system: if an external tracker stays near you but away from its owner's phone, your smartphone displays a notification of "unknown tracker"From there you can see a map with the device's recent route, make it emit a sound to physically locate it, and access instructions to deactivate it or view more data.
It's important to know that these notifications don't always mean there's an attack.Alerts can be triggered if you're traveling with someone who has a tracker in their belongings, if you have a rental car with a GPS tracker installed (and the contract states this), or if your children have a tracker in their backpack. In any case, it's better to calmly review the alert than to ignore it.
What to do if you receive a notification from an unknown tracker
When your mobile phone alerts you to a tracker you don't recognizeIt's important to act sensibly and quickly. The first step is to tap the notification to open the detailed information: you'll see the approximate route the beacon followed while it was with you and options to interact with it.
Use the sound playback function in the tracker If available. By activating this option, the device starts emitting a beep that helps you find it by searching in bags, inside pockets, the trunk, under car seats, or any other space where someone might have hidden it.
Once you have located the tracker, examine it carefully.Some models display the serial number printed on the casing; others allow you to read basic owner information by tapping them against the back of the phone using NFC. With AirTag, for example, you can obtain the serial number and sometimes encrypted data that the police could use in an investigation.
It is crucial to preserve all possible evidence.Take screenshots of the notification, of the map with the approximate routeThe device's specifications and serial number are also important. If you end up filing a complaint, this information can be used to link a specific tracker to a person or to an Apple, Google, or manufacturer account.
If you suspect there is a real risk to your safety (gender-based violence, harassment, threats…), avoid confronting the person you believe owns the tracker. The wisest course of action is to go to a public place, contact the police or someone you trust, and follow their instructions. Sometimes it may be advisable to keep the tracker turned on so that the authorities can trace who is controlling it.
How to disable or disable a Bluetooth tracker
When you confirm that the tracker is neither legitimate nor innocentYou have several options to stop it from sending your location. Ideally, you should follow the manufacturer's official procedure: each model (AirTag, Chipolo CARD or ONE, Motorola Moto Tag, Pebblebee Card/Clip/Tag, etc.) has a specific method for disabling it.
In many cases, simply removing the battery or resetting the device is sufficient. By holding down a button for a few seconds, the tracker cuts off communication with the original account and stops reporting its location to its owner. On other models, the reset returns the device to its factory settings and erases any previous associations.
However, if there is an ongoing police investigation or you plan to file a complaintIt's advisable to consult with the authorities first. Sometimes it's useful to keep the tracker active for a controlled period of time to technically link it to a specific phone, account, or the attacker's network.
In situations of high personal riskIn situations like domestic violence or serious family conflicts, experts recommend not "waking up" the abuser. You could, for example, remove the battery from the tracker and arrange a safe meeting point with the police where you hand over the device without the abuser realizing you've discovered the tracking.
If there is no risk of direct retaliationYou can take the tracker to the nearest police station instead of throwing it away or leaving it anywhere. Simply destroying it won't prevent whoever placed it from trying again with another device, while a report backed by evidence can stop future attempts.
Advanced Android settings to prevent proximity tracking
Beyond physical trackers, Android includes several features Designed to improve the cross-device experience, these features also expand your "tracking surface." Many are enabled by default and go unnoticed even by advanced users.
The first place to look is in Google's settings. (Not in the phone's general settings, but in the section linked to your Google account.) Go to Settings > Google > All Google services > Connected devices and sharing > Devices. There you'll see options like "Find nearby devices" and "Device results cleanup."
"Search for nearby devices" makes your phone scan the surroundings periodically to discover other devices using Bluetooth, Wi-Fi Direct, or other wireless technologies. "Device results refinement" further refines these scans and, in practice, involves even more signal traffic. If privacy is your priority, it's wise to turn both switches off.
Many Android phones also have quick sharing systems such as Nearby Share, Quick Share, ShareMe, KickShare, or similar brands depending on the manufacturer (Samsung, Xiaomi, OPPO, etc.). They are usually found within Settings > Connected devices or a similar menu, and allow you to send files simply by bringing the phones close together.
To reduce your exposure, enable the proximity sharing option. And change "Who can share with you" to "Nobody." The "Contacts only" option is somewhat better, but it still leaves the door ajar. Take this opportunity to also disable "Show devices in the sharing panel" and uncheck "Allow internet sharing," which some manufacturers enable without much explanation.
Bluetooth: Invisible mode, paired devices, and pairing PIN
One of the most basic and effective settings to prevent tracking It's about controlling your Bluetooth visibility. Many older phones had a clear "visible to other devices" setting and, by default, recommended hiding it. Something similar still exists today, although it's sometimes buried in the advanced menus.
Look in Settings > Connections or Settings > Bluetooth Then go into the advanced settings. If you see something like "visible to other devices" or "optimize visibility," turn it off. This way, your phone won't constantly advertise itself to anyone scanning the surroundings, but you'll still be able to search for and pair accessories when you need to.
Another good habit is to periodically check the list of paired teamsOld headphones, speakers you no longer use, the car you sold, forgotten tablets… They all appear in “Paired Devices.” If you don’t recognize one or no longer use it, remove it. Leaving old profiles open can make it easier for an attacker to emulate that device and gain access.
Regarding pairing securityAvoid using generic PINs like 0000 or 1234 on devices that allow you to change them. These default codes are well-known and make it easy for anyone to pair with your speaker, hands-free kit, or even your car's Bluetooth hub.
Finally, get into the habit of turning off Bluetooth when you're not using it.Especially in crowded places like airports, train stations, concerts, or shopping malls. Besides gaining extra battery life, you greatly reduce the chances of suffering Bluesnarfing or BlueBorne attacks that exploit the fact that the module is always active.
Disable Bluetooth and Wi-Fi scanning, and control location
Even with Bluetooth seemingly disabled, Android can still use it. To improve location accuracy and help apps know where you are, it uses features like "Bluetooth Scan" and "Wi-Fi Scan," which allow certain apps to obtain your location using nearby networks without turning on GPS.
If you want to minimize that passive trackingGo to Settings > Location > Location services and turn off both "Bluetooth Scanning" and "Wi-Fi Scanning". Keep in mind that this may affect the accuracy of maps, transit apps, or other location-based services, so consider whether it's worth it for you.
Another highly recommended measure is to play with the approximate location.Many apps don't need to know your exact location; the city or neighborhood is enough. Go to Settings > Location > App permissions, open each app, and uncheck "Precise location" when it's not strictly necessary. You'll gain privacy and save some battery life because GPS is used less.
For the most sensitive apps, such as banking, messaging, or browsing.You can keep precise location enabled only while using them. The rest of the time, limit or completely deny location access, especially for simple games or utilities that don't need to know your location to function.
Don't forget to check the Android permissions manager From Settings > Privacy > Permissions Manager. There you'll see which apps have access to your location, camera, microphone, contacts, and other data. Remove anything that doesn't make sense; many apps request more permissions than they actually need, and that creates fertile ground for tracking and the abusive collection of data.
App permissions, background activity, and voice assistants
The applications you install from the official store or from third parties They often request permissions en masse, frequently unrelated to their function. A simple flashlight that wants location, contacts, and microphone access, or an offline game that insists on knowing your precise position, are clear signs that something is wrong.
Instead of accepting everything they ask of you during installationIt's best to review everything carefully afterward. Press and hold the app icon, go to App info > Permissions, and disable anything that doesn't seem right. Repeat this process for the most sensitive categories: camera, microphone, location, SMS, calls, and contacts.
It's also important to limit what apps do when you're not using them.Closing apps from the recent apps view doesn't always stop them from running in the background. To prevent them from sending data or tracking you, go to Settings > Apps > Battery and select "Restrict background activity." This way, they'll only run when you open them.
Voice assistants like Google Assistant They deserve a special mention. Even if you hardly ever use them, they tend to stay "listening" in case they detect the keyword, which means the microphone is almost always on. If you don't rely on voice commands, go to Settings > Default digital assistant and choose "None" to disable it.
Finally, take advantage of options like "Suspend unused apps" In Settings > Battery, enabling "Sleep unused apps" makes Android automatically freeze apps that you haven't opened in a while. They will no longer be able to send data or perform silent scans until you decide to use them again.
Private DNS, VPN, and harder-to-track browsing
Tracking is not limited to Bluetooth or locationMuch of the tracking is done through your internet traffic. Operators and certain services can inspect the websites you visit, inject advertising, or redirect you to modified versions of some pages.
Changing your private DNS on Android is a quick way to gain privacyGo to Settings > Network & Internet and look for "Private DNS" (use the magnifying glass if you don't see it). If it's set to "Automatic," you can configure a provider that prioritizes privacy, such as Cloudflare (1.1.1.1) or other services known for not logging or selling your browsing history.
Complementing this with a trusted VPN further strengthens protectionA virtual private network (VPN) encrypts your traffic and hides your real IP address, making it much harder to link your online activity to your identity or approximate location. Beware of free VPNs from dubious sources; it's better to stick with reputable providers that rely on subscriptions rather than selling data.
At the browser level, opt for search engines and browsers focused on privacy. It also helps. Some apps block trackers, third-party cookies, and intrusive scripts by default, reducing the amount of information collected about your browsing habits, regardless of what Bluetooth does.
Don't forget to turn off Google ad personalization. From Settings > Google > Services > Ads, remove the advertising ID and turn off personalized ads. You'll still see ads, but they'll be less intrusive and less reliant on your browsing history and location.
Updates, public Wi-Fi, and other security best practices
A large proportion of Bluetooth, Wi-Fi, or general tracking attacks They exploit known system vulnerabilities. Installing Android and app updates isn't just about getting new features; it also includes patches that fix security holes exploited by Bluesnarfing, BlueBorne, and other methods.
If your phone hasn't received patches in yearsThis becomes a prime target for attackers. Many users decide to change devices when their model stops receiving updates, precisely because the risk skyrockets from that point on; others opt to install a more private system like Graphene OSThe same applies to apps: if an app hasn't been updated in a very long time, consider whether you really need it.
Public Wi-Fi networks are another source of problemsConnecting to Wi-Fi at an airport, coffee shop, or shopping mall not only exposes you to potential data interception, but also often requires you to hand over personal information (name, email, date of birth) in exchange for access. Whenever possible, use your mobile data or combine public Wi-Fi with a robust VPN.
Regarding Bluetooth, avoid accepting unknown pairing requests.If you see a notification to pair with a device you don't recognize, cancel it. And if you're in a hostile environment or surrounded by people, it's a good idea to activate airplane mode for a few minutes when you don't need it, or keep Bluetooth turned off until you're in a safe place.
Regularly checking Google Play Protect also adds an extra layer of protection.From Google Play > profile icon > Play Protect, you can verify that app scanning is active. This system continuously examines installed apps and new downloads for suspicious behavior or malware that could exploit Bluetooth or location permissions to track you.
Combining these advanced Bluetooth settings (visibility, scans, permissions), strict control over apps, good digital hygiene on Wi-Fi networks and browsing, and always keeping the system updated, your mobile phone goes from being an easy target to becoming a much more opaque device for trackers, abusers and curious people of all kinds.
