Mozilla Scraps Data Broker Removal Service After Founder’s Ties to Industry Exposed

SAN FRANCISCO – Mozilla, the non-profit organization behind the popular Firefox web browser, is officially pulling the plug on its data broker removal service, Monitor Plus, next month. The decision comes sixteen months after revelations surfaced linking Onerep, the service’s provider, to its founder’s extensive involvement in the very data broker industry it purported to fight against. The move underscores the complex challenges facing companies attempting to navigate the murky world of personal data privacy and the growing consumer demand for control over their online footprint.

A Tarnished Promise: The Onerep Controversy

Mozilla initially partnered with Onerep to offer Firefox users a service designed to remove their personal information from hundreds of “people-search” websites – online repositories that aggregate publicly available data, often used for background checks or marketing purposes. The service, marketed as a privacy enhancement, quickly gained traction among users concerned about data security. However, the partnership began to unravel in March 2024 when KrebsOnSecurity, a respected cybersecurity blog, published an investigation revealing that Onerep’s founder and CEO, Dimitri Shelest, had simultaneously created and operated dozens of these very same people-search services.

Shelest acknowledged maintaining an ownership stake in Nuwber, a data broker he founded in 2015, around the same time he launched Onerep. This revelation sparked immediate criticism, raising questions about the ethical implications of a company profiting from both the collection and removal of personal data. The inherent conflict of interest severely undermined trust in the service and prompted Mozilla to initially announce a review of the partnership.

Economic Realities and the Data Broker Ecosystem

While Mozilla initially attempted to find a way to continue offering Monitor Plus, the company ultimately concluded that maintaining its “high standards for vendors” within the data broker ecosystem proved unsustainable. “We explored several options to keep Monitor Plus going, but our high standards for vendors, and the realities of the data broker ecosystem made it challenging to consistently deliver the level of value and reliability we expect for our users,” Mozilla stated in an official advisory.

The data broker industry is a multi-billion dollar market, fueled by the increasing demand for data-driven insights across various sectors, including marketing, finance, and human resources. According to a 2023 report by The Information, the US data broker market is estimated to be worth over $240 billion, and is projected to continue growing as data collection becomes more sophisticated. This growth is driven by the proliferation of data sources, including social media, public records, and online tracking technologies.

The economic incentives at play make it difficult for companies like Mozilla to effectively compete. Data brokers often employ aggressive tactics to collect and retain data, and the legal landscape surrounding data privacy remains fragmented and complex. The absence of a comprehensive federal data privacy law in the United States, similar to the General Data Protection Regulation (GDPR) in Europe, further complicates matters, creating a regulatory patchwork that favors data collection over individual privacy rights.

Impact on Consumers and Mozilla’s Strategy

Current Monitor Plus subscribers will retain full access to the service until December 17, 2025, after which they will receive a prorated refund for any unused portion of their subscription. Mozilla is emphasizing its commitment to privacy by continuing to offer its free data breach monitoring service, integrated into Firefox’s credential manager. The company also plans to integrate more of its privacy and security features, including its VPN, directly into the Firefox browser at no cost to users.

This shift reflects a broader trend among tech companies towards offering basic privacy tools for free, while reserving premium features for paid subscriptions. However, the Onerep debacle serves as a cautionary tale, highlighting the importance of thorough due diligence and transparency when partnering with third-party vendors.

The Future of Data Privacy Services

The failure of Monitor Plus doesn’t necessarily signal the end of data broker removal services, but it does underscore the challenges inherent in the business model. Consumers are increasingly aware of the risks associated with their personal data being exposed online, and demand for privacy-enhancing tools is likely to continue growing. The Federal Trade Commission’s (FTC) recent crackdown on data brokers, including proposed orders against companies selling sensitive location data, suggests a growing regulatory scrutiny of the industry.

Moving forward, successful data privacy services will likely need to prioritize transparency, ethical data handling practices, and a commitment to protecting user privacy above all else. The Mozilla case demonstrates that simply offering a technical solution is not enough; building trust and maintaining integrity are paramount in this sensitive and rapidly evolving market.