Explainer March 2026 6 min read

What Happens to Your Data When You See an Ad

You open a news app. A small ad appears at the bottom of the screen — maybe for shoes, maybe for a streaming service. It looks harmless. But in the split second before that ad appeared, something happened to your personal information that most people have never heard of.

There's an auction happening inside your phone

Every time an ad loads on your phone — whether it's in an app, a website, or a game — your personal details get packaged up and sent to an auction. Not a figure of speech. A real auction, running on computers around the world, finishing in less than a tenth of a second.

The advertising industry calls this Real-Time Bidding. It's the system that decides which ad you see. But the ad itself is almost beside the point. What matters is what happens to your information in the process.

What gets shared about you

When that ad space opens up, the app creates a little package of information about you — called a "bid request" — and sends it out to advertising companies. That package typically includes:

Your device details — what kind of phone you have, your operating system, screen size, and a unique ID number that links your activity across different apps.

Where you are — sometimes your exact location from GPS, sometimes a rough estimate based on your internet connection. Either way, someone now has a good idea of where you're sitting right now.

What you've been doing — what kind of content you're looking at, which apps you use regularly, and guesses about your interests based on your habits.

Who they think you are — estimated age, gender, income level, and sometimes guesses about your political views or health interests. All inferred from your behaviour, not from anything you told them.

Here's the part most people don't realise

This package of your information doesn't go to one company. It gets sent to hundreds of companies at the same time. And every single company that receives it keeps your data — whether or not they end up being the one that shows you the ad.

How often does this happen?

More than you'd think. Researchers estimate that across all the phones and computers in the world, this auction system processes roughly:

178 trillion

bid requests per year. Each one is a broadcast of someone's personal information to hundreds of companies.

On a typical day, just using your phone normally — reading news, checking the weather, playing a game — you might trigger hundreds of these auctions without ever knowing it happened.

Who ends up with your information?

Some of the companies in these auctions are advertisers who genuinely want to show you an ad. Fair enough — that's the deal most people think they're making when they use a free app.

But many of the companies participating aren't really interested in showing you ads at all. They're data collectors — companies whose whole business is gathering information about people. They join the auction to receive your profile, add it to what they already know about you, and use it for things that have nothing to do with the ad you eventually saw.

Your information might end up being used to decide what insurance premium you're offered, what price you see for a product online, or which political messages are targeted at you during an election.

Why this is different from other kinds of tracking

You've probably heard about cookies, app permissions, and tracking settings on your phone. This is different — and in some ways, bigger — for three reasons:

It's a broadcast, not a private message. When an app like Facebook collects your data, one company gets it. When an ad auction fires, hundreds of companies get it, all at once.

It's completely invisible. There's no notification. No permission pop-up. No cookie banner. It happens inside the ad-loading process, and there's nothing on screen to tell you it occurred.

You can't undo it. Once your information has been sent out in a bid request, there's no way to get it back. You don't know which companies received it. Most of them don't even have a way for you to ask them to delete it.

Is this actually legal?

Yes. In most countries, this is entirely legal. It operates under consent agreements that you technically accepted — probably by tapping "I agree" on a terms of service page you didn't read. Most of us have done it. That's partly by design: the system depends on people not fully understanding what they're agreeing to.

What can you actually do?

You can't completely stop this from happening on a normal phone — it's built into how ad-funded apps work. But you can significantly reduce it:

Four things you can do today

Use an ad blocker on your phone. Apps like AdGuard or Blokada block many of the known auction systems before they can fire. They're free and easy to set up.

Turn off your advertising ID. On Android: Settings → Privacy → Ads → Delete advertising ID. On iPhone: Settings → Privacy → Tracking → turn off "Allow Apps to Request to Track." This limits how easily companies can link your activity across apps.

Check which apps are the worst offenders. Free games and ad-supported apps trigger the most auctions — some contain seven or more separate advertising systems. Fewer ad-funded apps means fewer auctions.

Consider paid or open-source alternatives. An app you pay for, or download from a source like F-Droid, doesn't need to auction your data to make money.

The bottom line

This system isn't a glitch or a hack. It isn't something going wrong. It's the advertising industry working exactly the way it was designed to — a system where your personal information is the product being traded, billions of times a day, in auctions you never see and never agreed to in any meaningful way.

That might sound unsettling. But the first step to doing something about it is simply knowing it exists. And now you do.