Guest WiFi Tracking: Can Your Visits Be Seen?

TL;DR

Yes, a company’s guest WiFi *can* track the websites you visit on your phone. However, it depends on how they set up their network. Here’s what to know and how to protect yourself.

Understanding How Guest WiFi Works

Company guest WiFi networks are often designed with some level of monitoring for security reasons (preventing abuse, legal compliance) or marketing purposes (understanding usage). Here’s a breakdown:

• Captive Portal: This is the login page you see when connecting. It collects your email address and sometimes other information.
• Firewall & Content Filtering: These block access to certain websites or types of content (e.g., gambling, adult sites). They also log which sites are attempted.
• Traffic Logging: The network administrator can see the domains you visit (e.g., www.example.com) even if they don’t see the specific pages.
• Deep Packet Inspection (DPI): More advanced networks can inspect the *content* of your traffic, but this is less common on guest WiFi due to privacy concerns and performance impact.

Steps to Check If Your Activity Is Being Tracked

1. Review Terms & Conditions: Before connecting, carefully read the terms and conditions (if any). Look for mentions of data collection or monitoring. This is often buried in legal text.
2. Check for an HTTPS Connection: Websites using https:// encrypt your traffic, making it harder to see what you’re doing. Look for the padlock icon in your browser’s address bar. However, even HTTPS doesn’t hide the domain name.
3. Use a WiFi Analyser App (Advanced): Apps like ‘WiFi Analyzer’ (Android) or built-in tools on macOS can show you network details and sometimes indicate if traffic is being actively monitored. This requires some technical knowledge to interpret.

How to Protect Your Privacy on Guest WiFi

1. Use a Virtual Private Network (VPN): A VPN encrypts all your internet traffic and routes it through a server in another location, hiding your IP address and browsing activity from the network administrator. This is the most effective solution.
   • Choosing a VPN: Select a reputable VPN provider with a no-logs policy.
   • Connecting to a VPN: Download the VPN app for your phone and connect before using the guest WiFi.

   # Example of connecting to a VPN using OpenVPN (command line)

   openvpn --config /path/to/your/vpn.conf

2. Use HTTPS Everywhere: This browser extension automatically forces websites to use HTTPS whenever possible.
   • Install the Extension: Search for ‘HTTPS Everywhere’ in your browser’s extension store (Chrome, Firefox, etc.).
3. Avoid Sensitive Activities: Don’t access banking apps, email accounts, or other sensitive information on public WiFi networks.
4. Disable File Sharing: Make sure file sharing is disabled on your phone to prevent others from accessing your files.
5. Use a Privacy-Focused Browser: Browsers like Brave or DuckDuckGo have built-in privacy features that can help block trackers and protect your data.

What the Company Can See (Even with Precautions)

Even with a VPN, the company can still see:

• That you’re connected to their WiFi: They know your device’s MAC address (which can sometimes be used to identify your phone model).
• The amount of data you use: They can track how much bandwidth your device consumes.
• The time you connect and disconnect: They have a record of when you were on their network.

However, they *cannot* see the specific websites you visit or the content you access if you’re using a VPN.