Technical Surveillance Countermeasures

TSCM Bug Sweeps and Surveillance Detection in Colorado

Structured electronic and physical examinations for authorized vehicles, residences, offices, meeting spaces, and specific objects where unauthorized surveillance or tracking is a credible concern.

Authorized access Layered examination Documented limitations

Scope of Examination

More than scanning with a detector.

The examination is adapted to the reported concern, location, access history, client authority, available time, and the types of surveillance or tracking reasonably at issue.

Electronic and RF Assessment

Review of observable radio-frequency activity, signal behavior, detectable electronics, and suspicious or unexplained emissions present during the examination.

Physical and Visual Inspection

Systematic examination of accessible areas, fixtures, power sources, openings, objects, common concealment locations, and physical anomalies.

Tracker and Device Review

Evaluation of AirTag or tracker alerts, suspicious devices, vehicle concerns, wireless trackers, unknown electronics, and reported indicators.

Environmental and Connected-Device Review

Identification of unexpected equipment, access points, sightlines, exposure patterns, and concerns that may require cybersecurity, digital forensics, or another specialist.

Findings and Documentation

Written documentation of the concern, areas examined, equipment and method categories, observations, limitations, findings, and practical recommendations.

Security Recommendations

Proportionate risk-reduction guidance based on verified conditions, including monitoring, environmental changes, repeat examination, evidence preservation, or professional referral.

When a Sweep May Be Appropriate

Specific facts should guide the examination.

A consultation helps determine whether a physical sweep is appropriate or whether the concern requires safety planning, mechanical inspection, digital forensics, law enforcement, or another response.

  • Tracker or device alert: a phone or vehicle reports an unknown tracker or suspicious device.
  • Known access or intrusion: an unauthorized person had access to a sensitive location or vehicle.
  • Stalking, harassment, or domestic concern: tracking or monitoring is suspected in connection with a documented safety issue.
  • Business or legal confidentiality concern: sensitive information, meetings, negotiations, or strategy may have been exposed.

Common Environments

Scope depends on the location and access.

Construction, clutter, existing electronics, environmental RF activity, shared occupancy, and inaccessible areas affect what can be examined and what conclusions can reasonably be reached.

Passenger vehicles Work vehicles Homes Living spaces Offices Meeting rooms Specific objects Suspicious devices

A mechanic, property representative, network specialist, or digital-forensics professional may be needed when areas or systems fall outside the authorized examination.

Examination Process

A controlled, layered examination.

Exact methods vary by concern and environment, but accepted engagements follow the same three-part discipline.

Confidential intake and scope

Review the concern, alerts, timeline, access history, immediate safety issues, client authority, examination areas, exclusions, evidence handling, and preparation.

Electronic and physical examination

Evaluate observable signal activity, trackers, detectable electronics, accessible concealment points, physical anomalies, and conditions relevant to the reported concern.

Findings and recommendations

Explain what was examined, what was observed, material exclusions, limitations, evidence-preservation concerns, and proportionate next steps.

Reporting and Limitations

More useful than a verbal “all clear.”

The client should understand what was examined, what was observed, what could not be examined, and the basis for any recommendation.

Areas and methods documented

The report identifies the general areas examined, method and equipment categories used, and material exclusions.

Observations separated from allegations

Client-reported concerns are attributed as reported; technical and physical observations are stated separately.

Limitations stated directly

Inaccessible areas, environmental interference, time limits, equipment limits, and dormant or advanced-device risks are identified.

Proportionate next steps

Recommendations may include monitoring, repeat examination, environmental changes, counsel, law enforcement, mechanical inspection, or digital forensics.

Describe the facts that created the concern.

Include the location, relevant alert or access event, approximate timeline, and who controls the property. Do not send passwords, account credentials, intimate images, or suspected-device files through the general contact form.

Request TSCM Consultation