How Can Someone Track My Location? 15 Alarming Ways You’re Being Watched Without Even Knowing It

There are numerous ways someone can use to track your location, particularly by cell phone. The list of methods is extensive, ranging from GPS tracking to smart devices and IoT-based tracking, with spyware and stalkerware being the most popular options.

Very often, it can be done without your knowledge and for disturbing reasons, such as stalking, blackmailing, or regular privacy violations.

A poll by NortonLifeLock found that 1 in 10 Americans admitted to using stalkerware to monitor a current or former partner’s devices. Meanwhile, a study within the proceedings of the Privacy Enhancing Technologies Symposium analyzed nearly 10,000 Android apps and found that 86% collected at least one sensitive data type, including GPS coordinates, Wi-Fi, and Bluetooth scan results. This type of data can be used to track movements with high precision, including indoors.

Thus, we’ve prepared this guide to ensure you maintain your safety and freedom of action while staying informed and connected with HeyLocate!

This article is intended for informational and educational purposes only. Its primary goal is to raise awareness about the various ways individuals may unknowingly be tracked or monitored in today’s digital landscape.

We do not endorse or encourage the use of any tracking methods for unlawful, unethical, or invasive purposes, including but not limited to stalking, harassment, or unauthorized surveillance. If you suspect you are being monitored without consent, we encourage you to contact legal authorities or cybersecurity professionals for assistance.

Can Someone Track Your Location?

Essentially, yes. There are many tools available to do this. The tracking can be simple, done by using your phone number, SIM card, or the Find My Device service. More advanced, through legitimate apps with location access or web trackers and IP geolocation. Or sophisticated, with the help of cell signal and tower analysis or side-channel and sensor-based attacks, for example.

All the Ways Your Location Can Be Tracked

Below, we’ll examine how tracking occurs, the signs of potential surveillance to watch for, and how to protect your device and yourself from becoming a targeted victim.

Note: Not every location tracking method is accessible to the average person. The feasibility of these techniques varies significantly depending on an individual’s technical expertise and available resources. While some methods require only basic knowledge and free applications, others demand advanced technical skills, specialized equipment, or significant financial investment.

GPS tracking

GPS tracking (Global Positioning System tracking), simply put, is a technology that determines the real-time location of a person, vehicle, or object using a network of satellites that orbit the Earth.

How does it work? GPS-enabled devices receive signals from multiple spacecraft surrounding the Earth to calculate their exact location based on signal travel time. This calculation is then transferred via the internet or mobile network to display the real-time position on a map.

This method is commonly used in apps such as Google Maps, fitness trackers, delivery tracking systems, and even personal and vehicle tracking systems. However, it can also be used for dangerous purposes that can cause potential harm to you, so it’s essential to spot this.

Wi-Fi and Cell Tower Triangulation

To stay on the network, your phone is always connected to the nearby towers (usually, to the three closest ones). The system estimates the phone’s location based on the signal strength and timing. After that, the network or device draws circles around each tower using the distance measures. The overlapping part of the circles is your approximate location. This data is shared with permitted apps or services afterward.

As for the Wi-Fi triangulation, the procedure is the same. The only difference is that your phone scans for the Wi-Fi signals available nearby, not the cell towers, and checks the signal strength. Stronger signal = closer, weaker = farther. Again, the system figures out your position by overlapping ranges, making it accessible for the enabled apps.

An automated, yet tricky process that can both guarantee safety and pose dangers.

Spyware and Stalkerware

Spyware is a specifically designed software secretly installed on your device to collect your personal information without your knowledge. Not only can it track your location, but certain apps can read your texts, monitor your calls, steal your passwords or browsing history, and even activate your microphone or camera.

Stalkerware, at the same time, is a type of spyware created to track someone’s location, phone activity, or behavior, usually by someone they know (a partner, ex, family member, or employer).

Both of them run silently in the background. Most likely, you won’t even realize you’re being controlled since these services either use your account credentials or, if installed on your device, are hidden.

Find My Device Services

These tools are built-in tracking features provided by most phone software companies. Although their primary goal is to help you locate your phone, tablet, laptop, etc., someone can log in using your credentials to access your movements in real-time.

It’s best to have two-factor authentication enabled; however, even if you don’t, you will be notified about someone signing in to your iCloud.

The notification I got after my account was accessed from another device; keep in mind that I had two-factor authentication enabled in advance.

• for iOS users, Apple created the Find My app, and if someone has your iCloud account login and password, they can use iCloud’s web version or another device to trace the position of your devices and therefore, you;
• Samsung offers SmartThings Find, which functions similarly, so if your devices are linked to this service, a person with your data can log in and get your geoposition;
• finally, if someone shares your Google account information, they can log in to Google Maps from any device and check your timeline (the history of your locations); however, for this to work, Timeline should be enabled previously, so check your settings in advance.

SIM Swap and Phone Number-Based Tracking

SIM swap involves tricking your mobile carrier into giving access to your phone number by transferring it to a SIM card controlled by a bad actor and then using it to hijack your identity or track your location. Having this replacement done, they can:

• track your location via carrier tools;
• log in to messengers (WhatsApp, Telegram) using your number (unless you have two-factor authentication previously enabled);
• reset passwords to your iCloud, Google, or social accounts and use them for blackmailing you, scamming others, and other dangerous reasons;
• receive your texts and calls.

Phone-number-based tracking, at the same time, can be done in various ways, including:

• using online phone number trackers – usually by hidden location request;
• triangulating your position using nearby cell towers with the help of corrupt insiders at telecom companies, spyware apps that piggyback on tower data, or by exploiting SS7 vulnerabilities (SS7 is a set of protocols that allows carriers worldwide to communicate. It also has known vulnerabilities that hackers, governments, and private intelligence firms can abuse).

Finally, a phone number allows someone to compile your social profiles (if you’ve published your number online) and home address (if your number is linked to them in public records or places you frequently visit, based on check-ins or photos).

Moreover, they can get info about your employment (if your number is available on your LinkedIn profile or other records).

In addition to this, there can be more subtle indicators that still require your attention:

• your battery drains abnormally; constant background processes related to location tracking use up a significant portion of your battery;

• you see frequent Location Access signs;

  On Android: look for the location icon in the status bar when you’re not using any map or app that needs it.

  Additionally, you can check if an app has access to your location directly in Settings, to do so:

  Go to Settings > Location > tap App Permissions. Now you can see what apps are enabled to see and use your geoposition on different levels (all the time, only while using the app, requesting your permission every time or never).

  

  On iPhone: check for the location arrow in the status bar when you’re not using any map or app that needs it.

  Note: In Settings, watch for location arrows next to apps in Privacy & Security > Location Services.

  

• messaging apps (WhatsApp, Telegram) show activity at times you’re not using them;

• messages that you didn’t open are marked read;

• you see Logged in from another device or devices you don’t recognize.

Pay close attention, as even the smallest detail can mean a great deal for your safety.

Tracking Without SIM Card (IMEI, Wi-Fi)

Even without a SIM card in your phone, you’re visible to potential trackers. Your device still emits signals and leaves digital traces that can be used to track your identity. For instance, your phone still broadcasts:

• IMEI number (a unique device ID hardcoded into your phone);
• MAC address (a unique hardware ID tied to your Wi-Fi or Bluetooth chip);
• Nearby Wi-Fi networks and connection history;
• Bluetooth signals that beacons can pick up;
• Device name and OS version (even when in airplane mode!).

All summed up, this means that if your phone is on, it can be tracked, profiled, and logged by routers, scanners, and surveillance tools.

Here’s how it works:

• IMEI (International Mobile Equipment Identity): This is a permanent hardware identifier. Typically, only law enforcement and some mobile carriers can use it; however, malicious actors with access to cellular tools can also use it to identify and trace a specific device across networks.
• Wi-Fi tracking: When Wi-Fi is turned on (even if you’re not connected), your device regularly sends probe requests to find known networks. Nearby routers or scanners can capture these to pinpoint your location and link it to a behavioral pattern, like how often you visit a store, how long you stay, or which route you took (often used by retailers, malls, and public venues).
• MAC address tracking: Can be used similarly. Some newer devices randomize their MAC address for privacy, but older phones still broadcast a fixed MAC, making tracking easier over time.

Web Trackers and IP Geolocation

Every time you visit a website, it receives a lot more information than you think, for instance:

• your IP address;
• your device type, browser, and OS;
• your ISP (Internet Service Provider);
• information about cookies, trackers, and browser fingerprinting.

These digital breadcrumbs can build a profile of you and your movements. For example, your IP address reveals your general location, approximate physical location (usually within 1-10 miles), time zone, city, and ISP. This information can be put in online IP trackers and used by stalkers.

Note: If you’re on mobile data or home Wi-Fi, your IP changes, but it’s always trackable unless you’re masking it. If you want to see what your IP address is showing, visit https://ipleak.net/.

Cookies are, in fact, tiny files stored in your browser. They track where you go, what you click, and how long you stay.

Additionally, invisible 1×1 pixels (called tracking pixels) can secretly report back that you opened an email, detect your device IP, OS, and location, and reveal the time and place you accessed the message. These are widely used in email newsletters, scam links, and even resumes/job documents sent via email.

What also matters is your browser fingerprint. It’s created when your device and browser send a unique combination of data (e.g., fonts installed, timezone, device ID, and more). All of it identifies you, even if you block cookies or use incognito mode.

Note that stalkers or hackers can receive your data through malicious or tracking URLs. A single click on a shady link can reveal all the information mentioned earlier and forward you to another site while silently reporting back to the sender.

Legitimate Apps with Location Access

When you install a new app and agree to its permissions, you may give it access to your exact real-time location, even when you’re not using it (we strongly advise reading Terms & Conditions and checking the guaranteed permissions carefully).

In most cases, after you check the required box and click Agree, apps can access your GPS coordinates, Wi-Fi and Bluetooth connections, your frequently visited locations and routes, and sometimes even more advanced information, such as your movement patterns (including speed, direction, and altitude).

This data is then quietly shared with advertisers, data brokers, and third-party trackers to create a behavioral profile of you, often including your workplace, home, favorite stores, and daily routines.

Some apps even share your location in the background every few seconds. That’s how they serve you “relevant” ads or push targeted content to your feed. The more apps have access, the more complete the map of your life becomes.

⭐ HeyLocate recommends ⭐

The Social Dilemma

Movie

In 2020, Netflix released a groundbreaking documentary-drama hybrid. This movie can be fascinating for those who want to learn more about the topic.

Your location data can be used to:

• predict where you’ll potentially go next;
• identify your home and work addresses based on time patterns;
• analyze your habits, including visits to medical clinics, banks, or religious centers;
• determine when you’re not home (useful for burglars or stalkers).

Note: this tracking doesn’t just happen through shady apps. Popular weather apps, ride-sharing platforms, retail apps, dating apps, and even some mobile games have been caught collecting and selling user location data, even when “anonymous.”

Bluetooth Trackers (AirTags, Tiles, etc.)

Ironically enough, you don’t need to own a Bluetooth tracker to be tracked by one. Devices like Apple AirTags, Tile trackers, and similar tools were initially designed to help people locate lost items. Still, they’ve also become a stealthy way to track people without their knowledge. These small devices can easily be slipped into a backpack, coat pocket, purse, or car. Once planted, they silently report their location via nearby phones using Bluetooth.

Apple’s AirTags utilize the massive network of iPhones worldwide to determine their location, which is then transmitted back to the tracker’s owner. This system works even if you don’t own an iPhone, have no app installed, or aren’t connected to the internet.

Bluetooth trackers can offer:

• your real-time location, even across cities;
• your travel history and routine movements;
• timestamps of where you were and for how long;
• detailed movement patterns over time.

Note: These devices don’t rely on your SIM card, GPS, or Wi-Fi. Instead, they piggyback off other people’s phones, which makes them incredibly hard to detect.

Apple and some Android devices now feature basic alerts, such as “Unknown AirTag is moving with you,” but these alerts aren’t always timely or reliable. In numerous instances, a tracker can follow someone for hours or even days before any warning appears (if it appears at all).

If you find a tracker on you, act immediately. ​​Take a photo of the device as evidence, then take it with you. Instead of going straight home, go to a public place or a police station.

Crowdsourced Bluetooth Mesh Networks

Crowdsourced Bluetooth mesh networks use a swarm of devices (phones, trackers, smart gadgets) to detect and report the location of nearby Bluetooth-enabled items. Prominent examples of such systems include Apple’s Find My network, Tile’s network, and Samsung’s SmartThings Find.

Here’s the process of how it happens:

• your phone’s Bluetooth signal is constantly scanning and being scanned;
• other nearby phones (even strangers’) relay your device’s presence to a central network;
• the system builds a location trail using crowd data.

The most disturbing fact is that the procedure doesn’t need you to install an app or give explicit permission; just being in the same area as someone else’s device is enough for your Bluetooth-enabled device to be detected and reported.

Although the above-mentioned systems are created for safety purposes, it is quite alarming that they track people passively through their own or nearby devices, and operate in crowdsourced silence, without many users realizing their phones are relaying data.

Power Consumption Tracking (PowerSpy)

While it might sound mindblowing and alarming, professional security research has found that even your phone’s power usage can be used to track your location. This method is called PowerSpy, and it works by analyzing how your phone’s battery efficiency changes in different environments.

Simply put, in each case, when your phone connects to a cell tower, streams data, or switches networks, it consumes power in a specific pattern. These fluctuations can be measured by certain apps or background services that have access to one of the following:

• your phone’s battery level;
• charging and discharging rates;
• screen on/off times;
• CPU/network usage trends.

From this data, an attacker can infer your movement, estimate your distance from towers, or track your commuting route, even if you’ve disabled traditional location services.

Note: Unlike GPS tracking, which usually triggers permission alerts, power consumption tracking doesn’t require special permissions, which makes it harder to detect or block.

Cell Signal and Tower Analysis

So, you’ve turned off your GPS, Wi-Fi, and Bluetooth, but guess what? You’re still not completely safe due to the cell tower triangulation.

As we’ve explained before, every mobile phone constantly communicates with the nearest cell towers to stay connected, meaning that, in fact, your location is always being estimated by your signal’s interaction with these towers. The “interaction” covers your real-time distance from nearby cell towers, the signal strength and ping time between you and the towers, your device ID and IMEI (tied to your physical phone), and the timestamps of movement between towers (called “cell handoffs”).

This data can pinpoint your location with surprising accuracy, often down to a few hundred feet in urban areas.

Note: Your carrier always has access to it, and so do law enforcement (with a warrant), intelligence agencies, or even cybercriminals using fake towers (called IMSI catchers or stingrays) to intercept and track devices nearby.

What’s more concerning is that you don’t need to use your phone; just having it turned on is enough.

Note: You can’t altogether avoid cell tower analysis unless your phone is off or in airplane mode.

Clues you might be near one:

• sudden signal drop or unusually strong signal in an area with poor coverage;
• your phone heats up for no reason;
• you receive strange SMS codes, blank texts, or missed calls from odd numbers;
• the battery drains faster than normal;
• vary your routes and times when leaving the house.

Photo Metadata (EXIF)

Did you know that when you take a photo with your phone or digital camera, you’re not just capturing an image but also storing hidden data in the EXIF metadata file (Exchangeable Image File Format)? This data can include the exact GPS coordinates where the photo was taken, the date and time the photo was captured, your device make and model (e.g., “iPhone 14 Pro” or “Samsung Galaxy S22”), and even camera settings, like exposure, ISO, flash use, and more.

This means that anyone who receives your photo or finds it online can potentially extract this metadata and learn all that about you.

Note: Social media platforms like Instagram and Facebook typically strip out metadata when you upload photos. However, if you send an image directly via email, messaging apps, cloud links, or file-sharing platforms, the EXIF data often remains intact.

Side-Channel and Sensor-Based Attacks

If you’ve followed all of our previous advice, here’s one more shocking fact: your phone’s internal sensors can still leak information about you through a method known as side-channel attacks. They don’t rely on direct access to your files, apps, or location data. Instead, they gather clues from the physical behavior of your device, including:

• your accelerometer (movement and orientation);
• gyroscope (rotational motion);
• magnetometer (compass/direction);
• ambient light sensors, microphone, or barometer.

From these sensors, attackers can figure out:

• what you’re typing (some attacks can detect keypress patterns just from motion data);
• whether you’re in a car, elevator, plane, or lying in bed;
• the room you’re in based on acoustics, light levels, or air pressure;
• which app or screen you’re looking at, based on how the phone moves or tilts.

Note: These sensors typically don’t require user permission in mobile operating systems. That means any app, even a calculator or game, can potentially access them.

This opens the door for harmful applications, websites, or ad trackers to perform complex profiling.

Note: Android’s Developer Options menu may also include toggles to reduce sensor data access, useful for advanced users.

Smart Devices and IoT-Based Tracking

Smart devices encompass a wide range of products, including smart TVs, voice assistants, security cameras, smart thermostats, doorbells, refrigerators, and even light bulbs. They are designed for our comfort; however, they also listen, watch, and collect more data than we realize (habits, movements, conversations, and routines). Together, these devices become a part of the Internet of Things (IoT).

Each connected device in your home or workplace sends and receives data. Often, this data is stored in the cloud by third-party companies. Like some methods before, its purpose is to analyze and build a behavioral profile, then share the collected information with advertisers and partners.

What can IoT-based tracking reveal?

• when you’re home, away, or asleep (based on thermostat or motion sensor data);
• what you’re watching or listening to (via smart TVs and speakers);
• your voice, speech patterns, and even stress level (via voice assistants like Alexa or Google Home);
• when you open your fridge, turn on the lights, or use appliances;
• which devices and people connect to your Wi-Fi network.

Note: Most smart devices are always on and passively listening for commands. Even when not actively in use, they often collect background data or audio snippets. Some devices have been found to record hours of unintended audio and store it on remote servers.

Privacy checklist for IoT devices:

• change default passwords and disable unused features (especially microphones or cameras);
• turn off cloud backups and logging where possible;
• use a separate guest Wi-Fi network for smart devices to isolate them from your personal devices;
• regularly update firmware to patch known vulnerabilities;
• check privacy settings in companion apps, disable location, voice logging, or unnecessary access.

Overall Tips to Prevent Location Tracking

Although we realize that it’s nearly impossible to eliminate all forms of digital tracking, we would like to point out that there are proven steps you can take to significantly reduce how much of your location is exposed.

The most basic action is to disable location services for apps that don’t need them and regularly review app permissions. Remember to turn off Bluetooth and Wi-Fi when not in use, and enable MAC address randomization to prevent long-term tracking on public networks.

Use airplane mode or power off your phone entirely in sensitive situations, and avoid connecting to public Wi-Fi without a VPN. It’s better to turn off ad personalization settings on your device. Be cautious with unknown links and QR codes, and consider using a VPN to mask your IP address.

If you want to get more advice from authoritative sources, Federal Trade Commission created consumer advice instructions on stalkerware to fight this massive issue.

Conclusion

To conclude, we hope our article gave you a better understanding of how profound and deeply rooted tracking methods can be. Obviously, you don’t need to go off-grid to protect your privacy.

Even a few small, consistent changes can reduce your digital footprint, make you harder to track, and give you more control over your own data.

Additionally, not all methods can be used by regular people, only by law enforcement and advanced hackers. Here’s what you should actually be careful about:

⚠️ Remember, privacy in today’s world is important as never. Use our tips to enhance your protection and stay safe and connected with HeyLocate!