If you have searched for photo privacy tools, you have probably found a confusing pile of options: command-line utilities, mobile apps, browser extensions, online uploaders, and the half-hidden "remove location" toggle in your operating system. They all promise to clean EXIF data. They do not all do the same thing, and a few do things you should know about before you trust them with your photos.
This article walks through the categories, what to look for, and what the trade-offs really are. The goal is not to crown a winner but to give you a framework for picking the right tool for your situation.
The Four Questions That Matter
Before comparing any specific tool, four questions decide whether it is fit for purpose:
- Where does the processing happen? On your device, or on someone else's server? On-device tools never see your photos. Server-side tools do, even if only briefly.
- What does it actually remove? All EXIF? Only GPS? IPTC and XMP too? Maker notes? Embedded thumbnails? The differences are large and most tools are not specific.
- Does it support your file formats? JPEG support is universal. HEIC, RAW, PNG, and video support is not.
- Does it batch? Stripping one photo is easy. Stripping a hundred is the case that matters in practice.
Hold these four questions in your head as you evaluate options. Many tools that look serviceable fail on one of them.
Category 1: Operating System Built-ins
Modern operating systems include some metadata-removal capability, mostly for GPS data. They are convenient because they are already on your device, and they are free.
iOS Photos app. When sharing a photo from Photos, the share sheet has an Options button that lets you toggle off Location. This removes the GPS coordinates from the shared copy. It does not remove the device make and model, the camera settings, the timestamp, or anything else. It is also opt-in for every share, which means you will forget some of the time.
macOS Preview. The Inspector has a Remove Location Info button on the GPS tab. Same limitation as iOS: GPS only.
Windows File Explorer. Right-click a photo, choose Properties, click Details, then click "Remove Properties and Personal Information" at the bottom. This is more aggressive than the Apple options and strips most EXIF, but it does not handle XMP fully and is awkward for batches of more than a few files.
Android (varies). Stock Android, Samsung One UI, and Pixel each handle metadata differently, and the behavior has changed across OS versions. Coverage of Android specifics lives in a separate guide on this site.
OS built-ins are reasonable for the occasional one-off share. They are not a strategy.
Category 2: Command-Line Utilities
If you are comfortable in a terminal, the command-line tools are the most powerful and the most predictable.
ExifTool. Phil Harvey's ExifTool is the universal reference. Free, cross-platform, scriptable. To strip all metadata from a directory of JPEGs: exiftool -all= -overwrite_original *.jpg. To strip everything but keep IPTC copyright: exiftool -all= -tagsfromfile @ -iptc:all -overwrite_original *.jpg. Reads and writes nearly every metadata format that ships on a photograph.
jhead. Smaller, JPEG-focused. jhead -purejpg *.jpg strips all non-image segments. Fast for batches but limited in format coverage.
ImageOptim (macOS). Technically a GUI, but it is included here because it is essentially a command-line pipeline wrapped in a drag-and-drop window. Removes metadata while also losslessly recompressing images. Free and well-maintained.
Command-line tools are the right choice for photographers, journalists, and anyone with large batches. The downside is the learning curve and the lack of a mobile workflow. You cannot ExifTool a photo from your phone before posting it to Instagram in a coffee shop.
Category 3: Mobile Apps
Mobile is where the privacy question gets sharpest, because mobile is where most photos are shared. The category divides cleanly into on-device apps and server-side apps.
On-device apps process photos locally. The image never leaves your phone. StripIt is in this category and exists precisely because the alternatives are mostly server-side or feature-poor. Look for clear claims about local processing, no required account, no required network connection, and ideally a Network entitlement that is visibly absent or minimal in the app's privacy report.
Server-side apps upload your photo to the developer's cloud, strip the metadata there, and send it back. They are convenient because they can offer features that are hard to implement on-device. They are also a worse fit for the actual privacy use case, because you are handing the photo, complete with all its metadata, to a third party. Even if the developer is trustworthy, the photo has now traveled outside your control.
Before you install any photo privacy app, look at its permissions and its privacy report. An app that needs network access to strip metadata locally needs to explain why. An app that requires sign-in to remove EXIF is being too clever. The honest pattern is: photo library access, no network, no account.
Category 4: Online Uploaders
Browser-based EXIF strippers are the most convenient option and the worst privacy fit. You upload your photo to a stranger's web server, they strip the metadata, and they send back a clean copy. In the gap between upload and download, the operator has a complete copy of your original file, including the GPS coordinates and the camera serial.
This is fine for a meme. It is not fine for a photo of your home, a photo of your child, a photo of a sensitive location, a photo from a date, a photo of anything you would not paste into a public forum. The convenience is not worth the trade.
Some online tools claim to do the stripping in the browser via JavaScript, which would mean no upload. A few actually do. Most do not. There is no easy way to verify the claim without inspecting their network traffic. The safer rule: do not use them.
Category 5: Browser Extensions
Extensions exist that strip EXIF before you upload to a site, or that scan downloaded images for metadata. They work, but they have a narrow use case: photos you handle through a desktop browser. Most photo sharing happens on mobile, so extensions only cover a slice of the workflow.
What to Look For: A Shortlist
Across all categories, these are the features that matter most for serious privacy use:
- On-device processing. Non-negotiable for photos that matter.
- Full metadata coverage. EXIF, IPTC, XMP, GPS, maker notes, embedded thumbnails. Not just GPS.
- Selective preservation. The ability to keep copyright and authorship tags while stripping location, useful for professional photographers.
- Scramble mode. The ability to randomize metadata rather than remove it, useful when you need to preserve the appearance of EXIF for journalism, photo contests, or chain-of-custody purposes.
- Batch processing. Real workflows involve dozens or hundreds of photos.
- Format breadth. JPEG, HEIC, PNG at minimum. RAW if you shoot with a proper camera.
- No required account. An app that needs you to register before stripping metadata is wrong about what business it is in.
StripIt fits the privacy-first pattern
On-device processing, full EXIF and GPS removal, optional scramble mode, no account required, no network calls. Built for the case where the photo actually matters.
Download StripItHow To Choose
For most people the answer is simple: a dedicated on-device mobile app for the photos you share from your phone, ExifTool or ImageOptim for batch desktop work, and the OS built-ins as a backup when you have nothing else. Avoid online uploaders. Be skeptical of any tool that asks for an account or network access.
The deeper point is that no tool solves the problem if you do not actually use it. The reason mobile on-device apps matter most is that they fit the workflow where the photos are actually being shared. The best tool for stripping metadata is the one you reach for in the two seconds before you tap Send.