What Is EXIF Data? What Your Photos Reveal (and How to Remove It)
6 Min. Lesezeit
Every JPEG your phone takes carries a hidden block of data alongside the picture. It records the camera, the exact date and time, and — on most phones with location on — the precise GPS coordinates where you stood. That block is called EXIF data, and it travels with the file whenever you email it, back it up, or upload it somewhere that doesn't scrub it. Most of the time it's harmless and even useful. But when you share a photo publicly or sell an item online, the same data can quietly hand strangers your home address, your daily routine, or the timeline of where you've been. This guide explains what EXIF actually stores, how to check whether a photo carries GPS, why some platforms strip it and others don't, and how to remove it without wrecking the image.
What EXIF data actually is
EXIF (Exchangeable Image File Format) is a standard for tucking structured metadata inside an image file. In a JPEG it lives in a dedicated segment near the start of the file, separate from the compressed pixels. The camera writes it; the pixels below it are the actual photo.
A typical EXIF block from a phone includes some or all of the following:
- Camera make and model (e.g. "Apple iPhone 15 Pro")
- The date and time the shot was taken, down to the second
- Exposure settings — shutter speed, aperture, ISO, focal length
- Software or app that last processed the image
- GPS coordinates: latitude and longitude, and sometimes altitude
- A small embedded thumbnail of the photo
GPS is the part that matters for privacy
Camera settings are dull. The date and camera model are rarely sensitive on their own. The GPS coordinates are the exception. A pair of latitude/longitude values pins a photo to within a few meters of where it was taken.
String a few together and the picture gets uncomfortable. Photos posted from home reveal a home address. A run of images with timestamps sketches a daily routine. A "for sale" listing photo shot in your living room can tell a buyer — or anyone browsing — exactly where the item (and you) are.
This isn't hypothetical. Location leaks through photo metadata have exposed the home addresses of public figures and given stalkers a starting point. If you share images publicly, GPS in EXIF is the field to worry about first.
How to check whether a photo has GPS
You don't have to guess. On a desktop, right-click an image, open its properties or info panel, and look for a Details or EXIF section — GPS latitude and longitude appear there if present. On a phone, most gallery apps show a map or an info panel for each photo when location was recorded.
The most direct check is to run the file through a tool that parses the EXIF block and tells you what's inside. FileTinker's free, browser-based remove-exif tool does exactly this: it reads the Exif segment locally (nothing is uploaded) and reports what it found — the GPS coordinates in decimal form, the camera make and model, the capture date, and whether the file carries an embedded thumbnail. If it finds no GPS, none is listed.
Two things to know before you check. First, screenshots and images saved from the web usually carry little or no EXIF, because the software that created them never wrote camera or GPS fields. Second, PNG files can also hold metadata — an embedded EXIF block, a timestamp, and text chunks — even though people associate EXIF mainly with JPEG.
Why platforms strip EXIF sometimes but not always
Large social networks like Facebook, Instagram, and X generally re-process every image you upload. They resize and recompress it to save bandwidth, and that pipeline discards the original EXIF, GPS included. That's why a photo you post to Instagram usually arrives location-free on the other end.
But you can't rely on this as a privacy strategy. The behavior varies by platform, by upload method, and over time. Services aimed at photographers or file sharing — cloud drives, messaging apps that send "as a file," many marketplace and forum uploaders, and direct email attachments — often preserve the original bytes untouched, EXIF and all. Sending a photo "as a document" instead of "as a photo" is a common way GPS survives.
The safe assumption: if you didn't strip it yourself, assume the metadata is still there. Strip it before it leaves your device, and you don't have to know each platform's policy.
How to remove EXIF without ruining the image
The naive way to strip metadata is to open a photo in an editor and re-save it. That works, but it re-compresses the JPEG, throwing away a little image quality every time you do it. A better approach removes only the metadata segment and leaves the compressed pixels alone.
FileTinker's remove-exif tool takes this lossless route for JPEG and PNG. For a JPEG it deletes the Exif segment — along with XMP, IPTC, and comment blocks — and copies the compressed image data through byte-for-byte, with no recompression. The stored pixels you get back are identical to the originals. It then shows a report of what it removed, so you can confirm the GPS is actually gone.
One honest caveat worth knowing: the orientation flag lives inside that same Exif segment. Some phones store the photo sideways and set an orientation tag telling viewers to rotate it on display. Because the lossless strip removes the whole Exif block, that flag goes with it — so a small number of photos that relied on it can appear rotated after stripping. If that happens, rotate the image once in any editor and re-save; the metadata is already gone. For formats other than JPEG and PNG, the tool falls back to re-drawing the image on a canvas, which also removes all metadata but does recompress it.
A simple habit for sharing photos safely
You don't need to obsess over every image. A short checklist covers the real risk:
- Turn off location tagging in your camera app if you rarely need it — then new photos carry no GPS at all.
- Before posting or selling anything shot at home, check the photo for GPS coordinates.
- Strip metadata on the file itself rather than trusting a platform to do it for you.
- Prefer a lossless strip for JPEG/PNG so you keep full image quality.
- Send stripped copies, and keep your originals (with their useful dates and camera info) archived privately.
Where it runs matters
Everything above can be done in your browser, offline, without an account. Because a tool like FileTinker's remove-exif runs entirely on your device, the photo you're trying to keep private never gets uploaded to strip it — which is the whole point. A privacy tool that first sends your located photo to a server has already done the thing you were trying to avoid.
Strip once, before the file leaves your hands, and the GPS coordinates, timestamps, and camera fingerprint stay yours.