Techniques are presented herein that enhance user data privacy in an Internet of things (IoT) environment. Aspects of the techniques introduce a third actor into such an environment – apart from a user and an IoT device – whose sole purpose is to empower a user to protect their own data. Such a data Custodian or Sanitizer may collect inputs from a user through a software as a service (SaaS) solution and then leverage the capabilities of the extended Berkeley Packet Filter (eBPF) to apply those inputs to an IoT device.