How to Remove EXIF Data Before Sharing Photos

EXIF (Exchangeable Image File Format) data is metadata embedded in photos by cameras and smartphones. It records GPS coordinates, device model, lens settings, timestamps, and sometimes even the direction the camera was pointing. The data travels silently inside the image file itself.

The privacy concern is straightforward: if you email a photo taken at home, the recipient can extract your street address from the GPS coordinates. Share enough geotagged photos over time and someone can map your daily routine, your workplace, your kids' school.

This is not a theoretical risk. In 2012, Vice magazine accidentally revealed John McAfee's location in Guatemala because a reporter's iPhone embedded GPS coordinates in a published photo. Journalists, activists, and domestic abuse survivors have all been tracked through photo metadata that was never stripped before sharing.

Not all metadata is dangerous. Camera settings like aperture, ISO, and shutter speed are harmless for most people. But GPS coordinates, device serial numbers, and timestamps are worth removing before any photo leaves your control.

Helpful references: Fast.io Workspaces, Fast.io Collaboration, Fast.io AI, and Document Data Extraction.

Before you start removing data, it helps to know what you are dealing with. A typical smartphone photo includes several categories of EXIF metadata:

Location data

• Latitude and longitude (accurate to 3 to 5 meters on modern phones)
• Altitude above sea level
• GPS timestamp

Device information

• Phone or camera manufacturer and model
• Lens type and focal length
• Software version used to process the image
• Unique device identifiers on some camera models

Capture settings

• Date and time the photo was taken (plus timezone)
• Aperture, shutter speed, ISO sensitivity
• Flash status, white balance, metering mode

Processing history

• Editing software name and version
• Thumbnail preview image (which can persist even after you crop the main image)
• Color profile and orientation

The GPS data is the highest-risk category. According to ISACA's 2025 cybersecurity analysis, geolocation data in photos is one of the more overlooked attack vectors for social engineering. Someone who knows where you eat lunch, where you park your car, and what time you leave the office has enough information for a convincing phishing attempt or a physical security threat.

The process varies by operating system, but every major platform has a built-in or free option. Here is a cross-platform reference.

Windows

Windows has native EXIF removal built into File Explorer:

1. Right-click the photo and select Properties
2. Click the Details tab
3. Click Remove Properties and Personal Information
4. Choose "Create a copy with all possible properties removed" or select specific fields
5. Click OK

This works on individual files or batches. Select multiple photos in Explorer, right-click, and the same option applies to all of them. The limitation is that it only works with JPEG files, not PNG or HEIF.

Mac

macOS Preview can remove location data but not all EXIF fields:

1. Open the photo in Preview
2. Go to Tools > Show Inspector (or press Cmd+I)
3. Click the GPS tab
4. Click Remove Location Info

For full EXIF stripping on Mac, use ImageOptim (free, open source). Drag photos into the app and it strips all metadata while optimizing file size. For batch processing with more control, ExifTool (command line) handles any format and any metadata field.

iPhone and iPad

iOS does not include a built-in EXIF removal tool, but you can disable location tagging at the source:

1. Go to Settings > Privacy & Security > Location Services
2. Find your Camera app and set it to Never

This prevents GPS data from being written in the first place. For photos you have already taken, use the Shortcuts app to create an automation that strips metadata before sharing. Third-party apps like ViewExif ($0.99) or Metapho let you view and remove EXIF data from your camera roll.

Android

Android's approach depends on the manufacturer, but the general steps are:

1. Open the photo in Google Photos
2. Tap the three-dot menu and select Edit in Google Photos
3. Save a copy (the saved copy may retain metadata depending on the version)

For reliable removal, use Photo Metadata Remover (free on Google Play) or Scrambled Exif, which strips all metadata and lets you share the cleaned file directly. You can also disable geotagging in your camera app's settings to prevent GPS data from being recorded.

Command Line (Any OS)

ExifTool by Phil Harvey is the gold standard for metadata manipulation. It is free, open source, and works on Windows, Mac, and Linux:

exiftool -all= photo.jpg

That single command strips every EXIF, IPTC, and XMP tag from the file. For bulk processing an entire folder:

exiftool -all= -overwrite_original /path/to/photos/

ExifTool handles JPEG, PNG, TIFF, HEIF, WebP, PDF, and dozens of other formats. Professional photographers who need to strip GPS data but keep copyright info can use selective removal:

exiftool -gps:all= -overwrite_original *.jpg

Share Files Without Exposing What You Shouldn't

Fast.io gives you branded share links with download tracking, access controls, and audit trails. Strip your metadata, upload clean files, and know exactly who accessed them. Built for exif data removal before sharing photos workflows.

Sign Up Free

Where you share matters as much as what you strip. Different platforms handle photo metadata in different ways.

Platforms that strip EXIF on upload:

• Facebook, Instagram, and Twitter/X remove GPS and most EXIF data from photos posted to feeds
• Reddit strips EXIF data from uploaded images
• Signal removes all metadata from photos before sending
• Snapchat strips EXIF from photos sent through the app

Platforms that preserve EXIF:

• Email attachments (Gmail, Outlook, Apple Mail) send the original file untouched
• Cloud storage links (Google Drive, Dropbox, OneDrive) share the original file with all metadata intact
• WhatsApp preserves full metadata when you send a photo as a "document" instead of a regular photo message
• Telegram keeps EXIF data on photos sent in their default mode, despite its privacy reputation
• Discord removes GPS coordinates but may keep camera model and settings

The risky middle ground:

Several platforms strip EXIF in some modes but not others. WhatsApp strips metadata from regular photo messages but preserves everything when you send as a document. Telegram compresses and strips regular photos but keeps full metadata on document-mode sends. If you are not sure which mode you used, assume the metadata survived.

The safest approach is to strip metadata yourself before sharing through any channel. That way, platform behavior does not matter.

If you are sharing dozens or hundreds of photos with clients, manually stripping each one is not practical. Here are the best options for batch processing.

ExifTool (free, command line)

The powerful option. Process an entire directory recursively, stripping all metadata while preserving copyright notices:

exiftool -all= -tagsfromfile @ -copyright -overwrite_original -r /path/to/client-delivery/

This removes everything except the copyright tag from every image in the folder and its subfolders.

ExifCleaner (free, desktop app)

A drag-and-drop desktop app built on ExifTool. It handles photos, videos, and PDFs. Drop a folder of files and it processes them all at once. Available for Windows, Mac, and Linux.

EXIF Purge (free, Windows)

A lightweight Windows app designed specifically for batch EXIF removal. Select a folder, click purge, and every photo in that folder gets cleaned.

ImageOptim (free, Mac)

Primarily an image optimizer, but it strips all metadata as part of its compression pipeline. Useful if you want smaller files and clean metadata in one step.

Using Fast.io for client delivery

When delivering cleaned photos to clients, consider using a workspace platform like Fast.io that gives you control over how files are shared. Fast.io's branded Share links let you package a folder of cleaned photos into a single delivery URL with download tracking and access controls. The audit trail shows exactly who downloaded which files and when, which is useful for licensing and usage tracking. With Intelligence Mode enabled, uploaded photos are automatically indexed for semantic search, so clients can find specific images by describing what they need rather than scrolling through folders. Before sharing, you can also use Metadata Views to audit your batch: extract GPS, camera model, and timestamp fields across all files into a filterable checklist, confirming that location data has been stripped from every photo before it reaches the client.

The most reliable way to protect your privacy is to build metadata removal into your sharing routine so it happens automatically rather than as an afterthought.

Step 1: Disable GPS at the source

Turn off location services for your camera app on both your phone and tablet. This prevents GPS data from being written in the first place. You can always add location data back to specific photos later if you need it for organization.

Step 2: Set up a clean export folder

Create a dedicated folder on your computer called something like "Share-Ready" or "Clean Exports." Before sharing any photo, copy it to this folder first.

Step 3: Run a batch strip on the folder

Set up ExifTool or ExifCleaner to watch this folder, or run a strip command before you share. On Mac or Linux, you can add a shell alias:

alias cleanphotos='exiftool -all= -overwrite_original ~/Share-Ready/'

Step 4: Share from the clean folder

Always attach or upload from your clean folder, never from your camera roll or photo library directly. This creates a consistent habit that eliminates the risk of forgetting to strip metadata from a particular photo.

Step 5: Verify before sending

Spot-check a cleaned file to confirm the metadata is gone. On any platform, you can verify with:

exiftool photo.jpg

If the output shows only basic file properties (file size, image dimensions, color space) and no GPS, device, or timestamp fields, the file is clean.

For teams sharing photos through a central workspace, Fast.io's granular permissions let you control who can download originals versus view-only access. Combined with audit trails that log every download, this adds a second layer of control beyond metadata stripping alone.