What is ACR (automatic content recognition) and how is it different from the TV just knowing what app I opened?

ACR is a fingerprinting system that runs at the pixel level, not the app level. Several times per second - the exact rate varies by manufacturer but published estimates range from twice per second up to thirty times per second - the TV grabs the current contents of the framebuffer (the rectangle of pixels currently being drawn to the screen), computes a perceptual hash of that image, and sends the hash to a server that matches it against a library of TV shows, films, commercials, and live broadcasts. The server returns 'this is episode 3 of The Bear, minute 18, on a Hulu stream' or 'this is the 30-second Geico ad that aired in the third break of the 6pm news'. The TV does not need to know what app you opened - it works equally well for the built-in Netflix app, an Apple TV plugged into HDMI, an Xbox running a game, or a Blu-ray. As long as something is on the screen, ACR can identify it. Vizio settled with the FTC in 2017 for $2.2 million over exactly this practice (selling the data without meaningful consent), and the practice has continued and expanded at every major TV manufacturer since.

What is my TV actually sending - and how often?

Several independent measurements published since 2019 - Princeton's Mozilla-funded study, Northeastern's IMC 2019 paper, the Markup's 2020 reporting on Vizio, and Which?'s 2023 lab work - converge on the same picture. A typical smart TV makes contact with somewhere between five and fifteen distinct third-party domains within the first minute of being powered on, even before you open an app. Samba TV, Inscape (Vizio), Gracenote, Nielsen, Alphonso, Adobe Analytics, and the manufacturer's own telemetry servers are the names that come up most often. The frequency of contact varies: ACR hashes are typically batched and sent every few seconds to a few minutes, app-usage telemetry is sent on app open and close, system telemetry runs hourly, and a steady drumbeat of advertising-network requests fires whenever the TV's home screen is on. Estimates of total daily data volume from a single TV in normal use run from a few megabytes to over a hundred, depending on model and configuration. The destinations are not a secret - if you point Wireshark at the TV's traffic or look at your router's DNS log, you will see them.

Does the TV have a microphone that is always listening?

The voice-remote case is the one where it is most clearly true: if the remote has a microphone button, holding it down sends audio to the manufacturer's voice service (Bixby on Samsung, the LG voice service, Google Assistant on Android TV/Google TV, Alexa on Fire TV). Some Samsung models from 2014-2017 had a microphone in the TV bezel itself for 'always-on' voice activation - the infamous 2015 privacy-policy line that warned users not to discuss 'personal or sensitive information' near the TV. Most TVs since then have moved the mic to the remote and require an explicit button press. The defensive posture is the same as for any smart speaker: assume the always-on case if the TV documentation does not explicitly say the mic is push-to-talk, check the privacy policy and the settings, and if in doubt, decline the voice-activation feature during setup and disable any 'voice wake word' option. The far-field mic in the bezel is a hardware question - if your model has one, you cannot software-disable it with full confidence, only configure it to a less-bad mode.

If I just turn off ACR in the settings, am I done?

You are most of the way there for ACR specifically, but not for the broader telemetry picture. Turning off the relevant setting on a Samsung, LG, Vizio, or Sony TV does, by the manufacturer's published documentation, stop the ACR hash uploads - this has been independently verified in lab measurements (the Princeton study tested both the on and off state). What it does not do is stop the system telemetry, the app-internal analytics (Netflix, Hulu, Disney+ each have their own analytics that have nothing to do with the TV's ACR), the home-screen ad requests, the OS update checks, or the third-party advertising integrations that the TV operating system runs at the platform level. To shrink the surface meaningfully you also want to turn off 'Interest-based advertising', 'Personalized recommendations', 'App usage tracking', and the equivalents under whatever names your specific model uses. The fastest practical guide is to walk through every screen under the privacy/data menu and disable everything that is not strictly required for the TV to play video.

What is a VLAN or guest network and why would I put my TV on one?

A VLAN (virtual LAN) is a way of having your router treat a group of devices as if they were on a separate physical network, even though they share the same Wi-Fi access point and cabling. A guest network on a consumer router is a simplified VLAN: it is a separate SSID with its own IP range that cannot see the devices on your main network. The reason to put a smart TV (and other IoT devices - smart bulbs, the robot vacuum, the doorbell, the printer) on a separate network is that those devices have, on average, the worst patch hygiene in the house: the firmware is rarely updated, the operating systems are old Android or Linux forks, and they spend years on the wire after the manufacturer has lost interest. Isolating them means that if one of them is compromised - via a vulnerability or a malicious app from the TV's app store - the attacker is sitting on a network with the other IoT devices, not on the network with your laptop, your NAS, your password manager's sync traffic, and your phone. Setting it up on a typical consumer router (eero, ASUS, Unifi, Fritzbox, TP-Link Deco) is a five-minute job once you know where the setting is.

Can I just block the ACR servers at the router with Pi-hole or a similar DNS filter?

Yes, and it works well as a layered defense on top of the in-TV settings. Pi-hole, AdGuard Home, NextDNS, and the DNS-level filtering built into routers like Firewalla or Unifi can all subscribe to lists that include the ACR endpoints - Samba TV's samba.tv and samba-collector.com domains, Inscape's inscape.tv and inscape-data.net, Gracenote's tribuneinteractive.com endpoints, and the manufacturer-specific telemetry hosts. The TV silently fails the request and goes on working - none of the actual video-playback functionality depends on ACR. The two things to watch for: some TVs (particularly newer Samsung and LG models) have started hard-coding DNS servers like 8.8.8.8 instead of using the router-supplied one, which bypasses Pi-hole at the DNS layer; the fix is to block outbound DNS to 8.8.8.8 and 1.1.1.1 from the TV's IP at the router's firewall. And ACR is increasingly moving to direct-IP and DoH (DNS over HTTPS) on some manufacturers - DNS blocking still helps but is no longer a complete answer. Combining the in-TV setting with DNS blocking and network isolation is the durable answer.

Your smart TV is the chattiest device on your home network - here is what it actually sends

Q: Does ACR work on content played from a device I plug into HDMI - an Apple TV, a console, a Blu-ray?

Yes. The whole point of ACR is that it reads the framebuffer, which is the final composited image being sent to the panel - it does not matter whether that image came from the built-in Netflix app, the HDMI input from an Apple TV, a Nintendo Switch, a security camera feed, or your laptop. The TV identifies the content the same way regardless. This is the part of the system that surprises people: buying an Apple TV to 'escape' the smart-TV apps does not escape ACR. The Apple TV's privacy posture is much better, but the TV underneath is still snapshotting the panel and sending hashes home. The only way to disable ACR is in the TV's own settings (varies by brand - 'Viewing Information Services' on Samsung, 'Live Plus' on LG, 'Use Info from TV Inputs' on Vizio/Inscape, 'Smart Interactivity' on Sony, 'Smart TV Experience' on Roku) or to block the TV from reaching the ACR endpoints at the network level.

The television in your living room is, by a wide margin, the chattiest device on your home network. A modern Samsung, LG, Sony, Roku, Hisense, TCL, or Vizio is a full Linux or Android computer with a permanent broadband connection, a microphone in the remote (and sometimes in the bezel), and a piece of software that nobody talks about in the showroom: a frame grabber that snapshots whatever is currently on the screen, computes a fingerprint of those pixels, and sends the fingerprint home to a server that identifies the show, the film, the advertisement, or the video game you are watching. The technology has a name. It is called automatic content recognition, ACR for short, and every major TV manufacturer does it, on by default, on almost every model sold since around 2017.

ACR is not a secret. It is documented in every TV's privacy policy, has been written about in detail by the FTC (in the 2017 Vizio settlement), the Markup, Princeton's Mozilla-funded research group, Northeastern, the Mozilla Foundation, and consumer organizations like Which? and Consumer Reports. The reason it does not feel widely-known is that the user-facing setting is buried four menus deep, given a deliberately bland name like "Viewing Information Services" or "Live Plus" or "Smart Interactivity" or "Use Information from TV Inputs", and turned on by default during setup with a screen designed to look like a software update.

This piece walks through what the TV actually captures, where it sends the data, how often, what the named settings do (and what they do not do), and the two practical defenses that handle the realistic risk: turn the in-TV settings off, and put the TV on its own network so that whatever it does or does not send is at least not sharing a wire with your laptop, your phone, and your work files.

What ACR actually does

Smart TVs run a small loop in the background that does approximately this: every fraction of a second, grab a copy of the framebuffer (the bitmap currently being drawn to the screen), compute a perceptual hash of that bitmap, append the hash plus a timestamp to a local queue, and periodically flush the queue to a server. The published rates differ by manufacturer and model - measurements have observed everything from twice per second to thirty times per second - but the order of magnitude is "constantly, while the screen is on".

The server on the other end has a library of pre-computed hashes for essentially every commercial film, every TV show episode, every aired commercial, every cable and satellite channel feed, and (on the more aggressive systems) every major video game's menu screens and gameplay segments. The match returns a structured record: "this is episode 3 of The Bear, minute 18, originally aired on FX, currently being consumed via Hulu", or "this is the 30-second Geico ad that aired in the second commercial break of CBS Evening News on Tuesday".

The match works at the pixel level. The TV does not need to know which app is open, which input is active, or what the DRM stream is reporting. It does not need cooperation from Netflix, the Apple TV, the Xbox, or the Blu-ray player. As long as something is on the panel, ACR identifies it. The first surprise for most people is that buying an Apple TV to escape the smart-TV apps does not escape ACR. The Apple TV's privacy posture is genuinely good. The Samsung or LG television it is plugged into is still snapshotting the screen and sending hashes home.

Where the data goes

ACR data is the high-value piece, but it is not the only thing leaving the TV. A typical smart TV, in the first minute after being powered on for the first time, makes contact with somewhere between five and fifteen distinct third-party domains. The names that come up across every independent measurement are a small list:

Samba TV (samba.tv, samba-collector.com). Embedded in many Sony, Sharp, Hisense, TCL, Philips, and some Toshiba models. Samba is one of the largest pure-play ACR vendors and monetises the data by selling audience-measurement and ad-targeting products to broadcasters and advertisers.
Inscape (inscape.tv, inscape-data.net). Owned by Vizio. The Inscape data set is the one the FTC sued Vizio over in 2017; Vizio settled for $2.2 million, kept the business, and renamed it.
Gracenote (gracenote.com, several Tribune-era domains). Originally a music-fingerprinting company, now Nielsen-owned and a major supplier of ACR-adjacent metadata.
Alphonso (alphonso.tv). Acquired by LG in 2021 and now the engine behind LG's "Live Plus" ACR feature.
Manufacturer telemetry: Samsung's samsungcloud.tv and samsungelectronics.com endpoints, LG's lgsmartad.com, Roku's scribe.logs.roku.com, Fire TV's amazon.com analytics, Google TV's play.googleapis.com and similar.
Generic ad networks: doubleclick.net, scorecardresearch.com, googlesyndication.com, adobedtm.com. These fire on the TV's home screen, the app picker, and inside individual apps.

Volumes are not dramatic in raw bandwidth terms - a few megabytes a day for a TV that is mostly idle, into the low tens of megabytes for one in heavy use - but the signal-to-noise is unusually high. ACR identifies what you watched, when, on what input, in which household, cross-referenced with whichever identifiers the TV manufacturer sells alongside it (typically a stable device ID, the home IP, and on some manufacturers the Wi-Fi BSSID, which is enough to fingerprint your household even if the IP changes).

The settings that actually turn it off

Every manufacturer has a setting that, by their own documentation and by independent measurement, stops the ACR hash uploads. The names are different on every brand because there is no industry standard and because the names are deliberately bland. The current ones, as of mid-2026:

Samsung (Tizen): Settings → General & Privacy → Terms & Privacy → Viewing Information Services. Disable. Also disable "Interest-Based Advertising" in the same menu, and "Voice Recognition Services" if you do not use the voice remote.
LG (webOS): Settings → General → System → Additional Settings → Live Plus. Disable. Also disable "Advertisement" (which controls the LAD - LG Ad Decisioning - personalised ad ID) and "User Agreements".
Sony (Google TV/Android TV): Settings → Privacy → Samba Interactive TV. Decline (or revoke if you accepted at setup). Also turn off "Usage and Diagnostics" and "Ads Personalisation" in the parent Google TV settings.
Vizio (SmartCast): Menu → Admin & Privacy → Viewing Data. Disable. This is the post-FTC- settlement renamed setting; it controls Inscape.
Roku: Settings → Privacy → Smart TV Experience. Uncheck "Use Information from TV Inputs" (this is Roku's ACR toggle) and "Personalize my experience" under Advertising.
Hisense / TCL (Google TV or VIDAA):Settings → System → Privacy → Viewing Information Services. Disable.
Fire TV: Settings → Preferences → Privacy Settings. Disable "Device Usage Data" and "Collect App Usage Data". Fire TV's "Interest-Based Ads" setting controls the personalised ad ID.

Two things to know about these settings. First, they revert. Major firmware updates have, on multiple brands and multiple occasions, re-enabled the ACR toggle as part of a "Terms of Service update" presented as a single Accept button. The defensive posture is to check the privacy menu after every major TV update, and to treat any new "Accept" screen during boot as a thing to read rather than dismiss.

Second, the ACR toggle stops the ACR uploads specifically. It does not stop the rest of the telemetry: the app-internal analytics that Netflix, Disney+, Hulu, and YouTube each run independently of the TV; the operating-system telemetry that the manufacturer collects; the home-screen ad requests; or the third-party advertising integrations on the platform itself. Each of those has its own toggle, and the only durable answer is to walk through the privacy menu and turn everything off that is not strictly required for video playback. Nothing in that list is required for video playback.

The microphone question

The voice-remote case is the simplest one. If the remote has a microphone button, holding it down sends audio to the manufacturer's voice service - Bixby on Samsung, the LG voice service, Google Assistant on Google TV, Alexa on Fire TV. The audio is sent on purpose, on press, and is the feature working as designed. If you do not use it, the protection is to disable the corresponding voice service in settings, which on most platforms also stops the remote from sending the audio in the first place.

The harder case is the small group of TVs - notably the higher-end Samsung models from 2014-2017, but the category has not entirely disappeared - that have a microphone in the bezel of the TV itself, intended for always-on voice activation without picking up the remote. The 2015 Samsung privacy policy line that warned users "please be aware that if your spoken words include personal or sensitive information, that information will be among the data captured and transmitted" became famous because it was so directly stated. Most newer TVs have moved away from the bezel mic, but if you have a model that has one, the only complete defenses are physical: cover the mic with opaque tape (the mic hole is usually marked in the manual), or unplug the TV from the network entirely when not in use. The software-disable option exists in the settings menu but is harder to verify; if the threat model warrants the question, the physical cover is the answer that holds.

Why network isolation is the next layer

The in-TV settings get you most of the way there for ACR specifically. They do not address two larger questions: what happens when the TV firmware is out of date and contains a known vulnerability (which is the normal state for any device older than three years from a manufacturer that has lost interest), and what happens when an app installed from the TV's app store turns out to have been compromised or sold to a less reputable owner.

Smart TVs share, with smart bulbs, robot vacuums, doorbells, baby monitors, network printers, and connected speakers, the worst patch hygiene of any device category on the consumer market. The operating system is an old Android or Linux fork. The CVE list is long. The manufacturer's incentive to ship updates ends when the model is discontinued, which on most brands is around three years from launch. Sitting on the same network as one of these devices means that a compromised TV is on the same broadcast domain as your laptop, your phone, your NAS, your password- manager's sync traffic, and (in many setups) the SMB shares your work files live on.

Network isolation moves the TV - and the rest of the IoT devices - onto a separate logical network that cannot reach the trusted devices. There are three levels of how to do it, in increasing order of thoroughness:

Guest network on the existing router.Every consumer router shipped in the last five years (eero, Google Nest Wifi, ASUS, TP-Link, Netgear, Fritzbox, Linksys) supports a separate guest SSID with its own IP range and "client isolation" toggled on. Move the TV and every other IoT device onto the guest SSID. The setup is a five-minute job in the router's app: create a guest network, give it a memorable name (e.g. "Home IoT"), enable client isolation, and re-pair each device. From that point on, the IoT devices can reach the internet but cannot reach your laptop, your phone, or each other - and from your laptop's perspective the IoT devices simply do not exist on the network.
True VLAN on a router that supports it.A Unifi Dream Router, a Firewalla Gold, a Fritzbox, a MikroTik, or an OPNsense/pfSense box lets you create a tagged VLAN with its own subnet, its own firewall rules, and explicit allow/deny statements between VLANs. The advantage over a guest network is granularity: you can allow exactly the cross- network connections you want (your phone to the Chromecast for casting, for example) and block everything else. The Unifi UI in particular has made this a 20-minute setup that used to require a weekend.
DNS filtering on top. A Pi-hole, AdGuard Home, NextDNS, or the DNS filtering built into Firewalla or Unifi can subscribe to lists that include the ACR endpoints (Samba's domains, Inscape's, Gracenote's, manufacturer telemetry hosts) and silently fail those requests. The TV keeps playing video; the hashes never leave. Combine this with the in-TV settings and the network isolation, and the three layers cover each other's failures - if a firmware update re-enables the ACR toggle, the DNS layer still blocks it; if the TV starts using hard-coded DNS to 8.8.8.8 to bypass the Pi-hole, the firewall on the IoT VLAN blocks outbound DNS to anything except your own resolver.

The two things to watch in the DNS-blocking layer. First, several manufacturers (Samsung and LG in particular, on 2023 and newer firmware) have started hard-coding DNS servers like 8.8.8.8 or 1.1.1.1 instead of using the router-supplied one. This bypasses any DNS-level filtering. The fix is a firewall rule on the router that drops outbound UDP and TCP port 53 from the TV's IP to anything except your own DNS server (or your Pi-hole). Second, some ACR endpoints have moved to DNS-over-HTTPS, which encrypts the lookup inside an HTTPS connection and is much harder to filter at the DNS layer. The firewall answer there is to block known DoH endpoints (a list of them is maintained by the NextDNS and AdGuard projects) from the IoT VLAN, or - more durably - to put the TV on a VLAN with no internet access at all for the periods you are not actively streaming, if your router supports time-based rules.

The cast-and-AirPlay question

A frequent objection to putting the TV on a separate network is that Chromecast, AirPlay, and DLNA discovery use multicast DNS (mDNS) and broadcast protocols that, by design, do not cross subnets. Move the TV to the guest network and your phone cannot find it. This is a real and annoying side-effect, and there are three reasonable answers:

On Unifi, eero, and a growing number of consumer routers, there is now an "mDNS reflector" or "Bonjour gateway" setting that forward discovery traffic between specific VLANs. Turn it on for the IoT VLAN and your trusted VLAN; the TV becomes visible to your phone again without giving the TV access to your other devices.
For TVs that support AirPlay 2 (most newer LG, Sony, and Samsung), the discovery now uses Apple's own mechanisms which work across subnets if both ends can reach the internet - usually fine in this setup.
For Chromecast specifically, plugging an Apple TV or a dedicated Chromecast dongle into the trusted side of the network (and accepting that this one device straddles both worlds) keeps casting working without giving the rest of the TV's stack the same access.

What this looks like in practice

The end state for a household that wants to keep ownership of what its TV does looks something like this. The TV itself is set up with a throwaway email for any required account, the privacy menu is walked once at setup and re-walked after every firmware update, ACR and personalised advertising are off, voice services are off unless used. The TV lives on a guest network or a dedicated IoT VLAN that cannot reach the household's laptops, phones, and storage. A Pi-hole or NextDNS subscription includes the ACR and TV-telemetry block lists. Casting works because the router is set up to reflect mDNS between the two networks for the specific TV. Streaming works because none of the above has anything to do with video playback.

The cost is one evening of setup. The benefit is that the chattiest device in the house stops being on speaking terms with the most sensitive ones, and the identification of what gets played on the screen stops being uploaded to a chain of advertising intermediaries on a five-second loop.

A short checklist

Walk the privacy menu on your specific TV and disable the ACR toggle by whatever name it has (Viewing Information Services, Live Plus, Smart Interactivity, Use Info from TV Inputs, Viewing Data). While you are there, turn off personalised advertising, app usage tracking, and voice services you do not use.
Re-check after every firmware update.Major updates have re-enabled these toggles on every major brand at least once. Treat the post-update "Accept the new terms" screen as something to read.
Put the TV on a guest network or IoT VLAN.Five minutes in the router app on any modern consumer router. Enable client isolation. The TV can reach the internet; it cannot reach your laptop.
Add DNS filtering with Pi-hole, AdGuard Home, or NextDNS, subscribed to the ACR and TV-telemetry lists. Combine with a firewall rule blocking outbound DNS from the TV's IP to anything except your own resolver.
If the model has a bezel microphoneand you do not use the always-on voice feature, cover the mic hole with opaque tape. The setting to disable it in software exists but is harder to verify than a physical cover.
For HDMI sources you care about,remember that ACR sees the panel, not the input - the Apple TV or PlayStation plugged in does not escape ACR, only the in-TV settings and the network controls do.

Where this fits

The smart TV is the household version of a pattern that shows up everywhere on a modern network: a device with a permanent connection, a long list of third-party integrations, and a setup screen that treats permission as a default. The same pattern applies to a browser, which is covered in five things your browser sends to every site, and to the cables that move data between devices, covered in the USB-C cables piece. The question of what is end-to-end encrypted over the network (and what is not) is in the E2EE article, and what happens to the recordings, screenshots, and viewing history once you press delete is in the delete piece.

Privvert's tools all run locally in the browser - no upload, no server in the middle, no telemetry. The reasoning is on the privacy page, and the rest of the practical guides are on the blog.