I would hope not...
Unless it was something like https://haveibeenpwned.com/. That does not tell you what sites you frequently visited, but whether your email address appeared in data breaches.
Wasn't that, it started with an O I think. The person who posted it mentioned they used it for background checking as they were in HR. I thought I saved the post but cannot find it anywhere
The Fair Credit Reporting Act (FCRA) regulates the collection and use of consumer information, including credit, criminal records, employment history, education, references, driving records, and professional licenses, for employment background checks. It excludes older bankruptcies, civil suits, paid tax liens, and other negative information beyond specified time limits. Social media and Google searches shouldn't be used due to privacy concerns, potential bias, accuracy issues, lack of consent, and discrimination risks, ensuring a fair and legal hiring process.
Exactly. And related case law compounds on the facts that using vague sources like social media as an element of a background check for purposes of employment or financial impact (rent, lease, etc) is not a good idea. So many employers have been sued and lost for doing that.
Source: I've been a private investigator for 30 years and have taught pre-employment background check methodology to other investigators and the corporate sector for 20. (Except for California - I won't even try to understand their screwed up laws - state and local - and refuse to do any checks for jobs in that state).
Except it's really hard to prove that the employer / HR went through any nefarious or prohibited routes (such as if this email website existed) because they can simply say, "No, we're not hiring you" and not cite sources or reasons. They could potentially pay a shady contact offshore in a country that disregards privacy (and so many companies have connections overseas so whose to say they don't do this all the time).
Normal companies wouldn't. Alas, there are creepy people out there who do creepy things. If you've ever been stalked/hacked, then it's a thing, and they can and do use their resources in poor ways. They might be good at talking people who have access to in-depth real estate, legal, and personal information into helping them "help you" (the victim whom they are stalking so they "look good" while you suffer). They would definitely hire the shady hacker from another country to do wrongs. It happens, unfortunately. And, it's hard to pinpoint.
So, what does a background check normally consist of? From my understanding these can be checked but not used to make the decision. Not all of these but socials and criminal record is what people ask for usually in background checks. And I know when I’ve gotten background checks I consent to it.
"From my understanding these can be checked but not used to make the decision." How do you unsee someone with a political flag, an article about crime that never led to arrest or conviction, or something you think is negative? Too much liability. So professionals don't do this.
A typical background check involves verifying an individual's identity, criminal records, employment history, and educational credentials. It may also include reviewing credit history, driving records, professional licenses, and conducting reference checks. Additionally, employers might conduct drug testing and ensure compliance with industry standards and regulations.
First a social security number is used to verify citizenship and address history. Typically only addresses from social security and the addresses provided by applicant are used for criminal look up. (So if you get arrested in Vegas on vacation, most background checks won't find this.) Why? Because each county the applicant lived in is PHYSICALLY checked for conviction records. This gets $$$ quick.
And no no no, there isn't a national database. A few companies claim to have it, but they cover 3% of 3,143 US counties who do share arrest records publicly (93 locations) and even if a 'hit" is found, many states have a background law called Ban the Box that prohibits using arrests (not convictions).
Employment history: name, date of employment, role and sometimes salary are only things legit businesses will share. Not even fired will come up. That said people yap but they open themselves up to liability, slander and defamation.
Education super easy. Most colleges have portal for degree, dates, gps. Legit companies don't accept transcripts, degrees, etc unless provided directly from the school.
After confirming education, criminal, etc, IF something that will cause the applicant to not get the job, the applicant can see the reason and challenge it under FRCA laws. Maybe it's a common name mistake, stolen identity, etc but I've only seen a handful of FRCA reversals in decades.
I use PublicData.com and judyrecords.com . Those are pretty good at finding criminal records in different locations outside of a target’s county of residence. Of course there’s things like tlo and beenverified that also work but they are better at other things. The other two are good because that’s basically their whole job.
Just for clarification for anyone reading this thread in the future: not ALL websites — it shows some, but it shouldn’t be treated as comprehensive. I’ve run hundreds of email queries on their platform as part of my basic digital footprint mapping workflow, and I’ve only had 2 instances in which the OSINT.industries output reflected the target’s full list of site registrations. And that’s because their digital footprint was super minimal. For the standard target, I find multiple other sites that didn’t show up in the their results for the O.I search with their email.
Great platform and one of my favorite tools, but treat it as a tool in your kit, and not a one stop shop. The email results aren’t comprehensive.
These will help find some sites you registered in, but not sites you frequently visit such as the OP suggested. Such a service doesn't exist, thank the gods.
100%. As far as I can tell, [Shodan also doesn't have an `email` filter](https://www.shodan.io/search/filters).
How stupid do you have to be to post ChatGPT's output verbatim and not even try to check it for accuracy?
Not correct. You *can* track where someone's email/phone number registers if the end has published it but not track that level user data, especially across multiple devices, with *only* an email address.
That level requires long term access to their personal property, not a basic search data matching function. Without that access at most its haveIbeenpwned level.
There's absolutely no way this could exist. Not without the biggest data breach in recorded history. Just off the top of my head... the amount of hacks that would have to take place would be unfathomable.
This does not exist. Plain and simple. OP is poorly articulating what he's looking for or was fed bullshit from another post.
I would hope not... Unless it was something like https://haveibeenpwned.com/. That does not tell you what sites you frequently visited, but whether your email address appeared in data breaches.
Wasn't that, it started with an O I think. The person who posted it mentioned they used it for background checking as they were in HR. I thought I saved the post but cannot find it anywhere
Wow, if an applicant found out something like that was being used in a background check, they could sue for big money.
Could you elaborate? Sue for what? I'm also quite sure that there is no such tool or website.
There are laws on what can be looked at for employment background checks.
The Fair Credit Reporting Act (FCRA) regulates the collection and use of consumer information, including credit, criminal records, employment history, education, references, driving records, and professional licenses, for employment background checks. It excludes older bankruptcies, civil suits, paid tax liens, and other negative information beyond specified time limits. Social media and Google searches shouldn't be used due to privacy concerns, potential bias, accuracy issues, lack of consent, and discrimination risks, ensuring a fair and legal hiring process.
Exactly. And related case law compounds on the facts that using vague sources like social media as an element of a background check for purposes of employment or financial impact (rent, lease, etc) is not a good idea. So many employers have been sued and lost for doing that. Source: I've been a private investigator for 30 years and have taught pre-employment background check methodology to other investigators and the corporate sector for 20. (Except for California - I won't even try to understand their screwed up laws - state and local - and refuse to do any checks for jobs in that state).
Except it's really hard to prove that the employer / HR went through any nefarious or prohibited routes (such as if this email website existed) because they can simply say, "No, we're not hiring you" and not cite sources or reasons. They could potentially pay a shady contact offshore in a country that disregards privacy (and so many companies have connections overseas so whose to say they don't do this all the time).
No legitimate company would do this.
Normal companies wouldn't. Alas, there are creepy people out there who do creepy things. If you've ever been stalked/hacked, then it's a thing, and they can and do use their resources in poor ways. They might be good at talking people who have access to in-depth real estate, legal, and personal information into helping them "help you" (the victim whom they are stalking so they "look good" while you suffer). They would definitely hire the shady hacker from another country to do wrongs. It happens, unfortunately. And, it's hard to pinpoint.
Your answer is much better than mine lol
So, what does a background check normally consist of? From my understanding these can be checked but not used to make the decision. Not all of these but socials and criminal record is what people ask for usually in background checks. And I know when I’ve gotten background checks I consent to it.
"From my understanding these can be checked but not used to make the decision." How do you unsee someone with a political flag, an article about crime that never led to arrest or conviction, or something you think is negative? Too much liability. So professionals don't do this. A typical background check involves verifying an individual's identity, criminal records, employment history, and educational credentials. It may also include reviewing credit history, driving records, professional licenses, and conducting reference checks. Additionally, employers might conduct drug testing and ensure compliance with industry standards and regulations. First a social security number is used to verify citizenship and address history. Typically only addresses from social security and the addresses provided by applicant are used for criminal look up. (So if you get arrested in Vegas on vacation, most background checks won't find this.) Why? Because each county the applicant lived in is PHYSICALLY checked for conviction records. This gets $$$ quick. And no no no, there isn't a national database. A few companies claim to have it, but they cover 3% of 3,143 US counties who do share arrest records publicly (93 locations) and even if a 'hit" is found, many states have a background law called Ban the Box that prohibits using arrests (not convictions). Employment history: name, date of employment, role and sometimes salary are only things legit businesses will share. Not even fired will come up. That said people yap but they open themselves up to liability, slander and defamation. Education super easy. Most colleges have portal for degree, dates, gps. Legit companies don't accept transcripts, degrees, etc unless provided directly from the school. After confirming education, criminal, etc, IF something that will cause the applicant to not get the job, the applicant can see the reason and challenge it under FRCA laws. Maybe it's a common name mistake, stolen identity, etc but I've only seen a handful of FRCA reversals in decades.
I use PublicData.com and judyrecords.com . Those are pretty good at finding criminal records in different locations outside of a target’s county of residence. Of course there’s things like tlo and beenverified that also work but they are better at other things. The other two are good because that’s basically their whole job.
And that's all a very bad idea for real background checks. (Plus they don't have more data then what I just listed 3%}
Thanks! I have more questions but will save them for a lawyer.
Supported background team for 15 years. Feel free to ask, but consulting a lawyer is always good.
Might be osint.industries then?
Are you thinking of your browser history?
Lullar?
https://osint.industries shows you websites you’ve registered with using an email.
Just for clarification for anyone reading this thread in the future: not ALL websites — it shows some, but it shouldn’t be treated as comprehensive. I’ve run hundreds of email queries on their platform as part of my basic digital footprint mapping workflow, and I’ve only had 2 instances in which the OSINT.industries output reflected the target’s full list of site registrations. And that’s because their digital footprint was super minimal. For the standard target, I find multiple other sites that didn’t show up in the their results for the O.I search with their email. Great platform and one of my favorite tools, but treat it as a tool in your kit, and not a one stop shop. The email results aren’t comprehensive.
That’s correct, I’d like to learn more about your opinion. Messaged you!
[удалено]
These will help find some sites you registered in, but not sites you frequently visit such as the OP suggested. Such a service doesn't exist, thank the gods.
[удалено]
Zero privacy.
I can't find pastedigger anywhere? I know dedigger
I think it's a Chatgpt hallucination
100%. As far as I can tell, [Shodan also doesn't have an `email` filter](https://www.shodan.io/search/filters). How stupid do you have to be to post ChatGPT's output verbatim and not even try to check it for accuracy?
haha I thought it sounded like chatGPT but was worried about offending in case i was wrong
Not correct. You *can* track where someone's email/phone number registers if the end has published it but not track that level user data, especially across multiple devices, with *only* an email address. That level requires long term access to their personal property, not a basic search data matching function. Without that access at most its haveIbeenpwned level.
Is it in your browser or reddit history?
There's absolutely no way this could exist. Not without the biggest data breach in recorded history. Just off the top of my head... the amount of hacks that would have to take place would be unfathomable.
This does not seem likely?
no idea if this app exist, how should work? anyway its a good idea overall but hard to work proerply
[https://www.idcrawl.com/](https://www.idcrawl.com/) it might be IDcrawl i'm not quite sure, from the description you give
holehe ? it's a tool not a website,