Slashdot Mirror

← Back to Stories (view on slashdot.org)

Google Makes It Harder For Marketers To Collect User Data

Posted by timothy on from the no-peeking-now dept.

cagraham writes "In a seemingly minor update, Google announced that all Gmail images will now be cached on their own servers, before being displayed to users. This means that users won't have to click to download images in every email now — they'll just automatically be shown. For marketers, however, the change has serious implications. Because each user won't download the images from a third-party server, marketers won't be able to see open-rates, log IP addresses, or gather information on user location and browser type. Google says the changes are intended to enhance user privacy and security."

8 of 195 comments (clear)

  1. And google will retain that info exclusively. by Spamalope · · Score: 5, Insightful

    While I applaud the move, it is about competitive advantage for Google.

    1. Re:And google will retain that info exclusively. by jaseuk · · Score: 4, Insightful

      Yes and the point the summary misses, is that the images are used to verify that you have received and viewed the e-mail. This is far more important than browser types / locations etc.

      It also prevents some evil things, such as first time you hit the page you get a drive by, the second time (with cookie set) you get the actual image and all seems fine.

      Jason.

    2. Re:And google will retain that info exclusively. by pradeepsekar · · Score: 5, Insightful

      The article does not state of all images would be cached automatically even if you have not read your mail. It only says that images would be served through a Google proxy server, which caches the images.

      So if Google proxies and caches the images when you open the mail, there is no protection added from marketers, except for the fact that Google can scan the images for exploits.

      And if Google proxies and caches the images as soon as the service receives the mail, marketers can verify if the address is a valid gmail address or not by just sending mails and waiting for Google to cache the image. Expect more spam if this is the case.

      There will be true protection from email tracking only if Google caches the images in all emails it receives, even if the email address is invalid - and that would increase the load on Google servers quite a bit.

    3. Re:And google will retain that info exclusively. by KiloByte · · Score: 4, Insightful

      And if Google proxies and caches the images as soon as the service receives the mail, marketers can verify if the address is a valid gmail address or not by just sending mails and waiting for Google to cache the image. Expect more spam if this is the case.

      Verifying that foobar@gmail.com is a valid address doesn't give spammers any real information: the namespace is so full even most pwgen outputs point to existing names, as long as you don't have embedded numbers (on gmail, addresses seem to have numbers at the end).

      Thus, that check can be quite simplified to "does a Markov chain say this string of letters is pronounceable?". Not a big benefit to a spammer. On the other hand, they don't get told anything about the recipient anymore.

      While for a small mail provider this change might leak some info, for Gmail it seems to be nearly entirely positive.

      I for one don't use Gmail for privacy reasons, and don't fetch remote images, but good luck training aunt Lucy about that.

      --
      The creatures outside looked from Alt-Right to Antifa; but already it was impossible to say which was which.
    4. Re:And google will retain that info exclusively. by mrt_2394871 · · Score: 4, Insightful

      If you want to know if I've read an email:
      request a return receipt
      If I want to give you that information, I will.

      Goodness, there's an existing, non-scummy way of working all this out which preserves user expectations of privacy and provides you with the information you actually want, not a poor proxy of it.

    5. Re:And google will retain that info exclusively. by gsslay · · Score: 4, Insightful

      How would you feel about your customers sending tracking images to you with orders/complaints/queries? Just to "fine-tune" whether they deal with you again? I imagine it could be statistically enlightening to see how quickly you open emails, how often, and how long the response takes. Not so keen?

      I appreciate your efforts to ensure that your emails lists are on target and not spammy, many companies are not so diligent. (Particularly with confirmed opt-ins.) But you have no automatic right to collate any further information about your customers unless they intentionally provide it. Tracking images are sneaky and most certainly not used by your customers intentionally. There is a reasonable expectation of privacy when reading your own email on your own computer.

      You're right about two things though. The days are long gone when spammers cared about whether an address was valid or not. They are not incurring any costs spamming to invalid addresses. All they care about is how many suckers they hook with a response. And yes, the cached image hits are yet more information being sucked up by google, that will inevitably be sold in some way in the future.

  2. Harder for **Other** Marketers by perpenso · · Score: 4, Insightful

    Yeah. The move is to make things harder for **other** marketers. For the marketer named Google it confers advantages.

  3. Awesome for spam/tracking by saikou · · Score: 4, Insightful

    Actually, this is rather awesome for spam/tracking of "real" addresses.
    Before silly users could refuse to load external tracking pixels with unique IDs, assigned to each email.
    And now? It's auto-downloaded for everyone. Yay!

    While absence of IP address, Referral (if tracking image was loaded via https) and Browser info is sad, "everyone now auto-loads images" waaaay outweighs it :P You won't hide from confirming that email address that easily ;)

    --
    Hyperom.com