Slashdot Mirror
Several Popular Apps Share Data With Facebook Without User Consent (ft.com)
Some of the most popular apps for Android smartphones, including Skyscanner, TripAdvisor and MyFitnessPal, are transmitting data to Facebook without the consent of users in a potential breach of EU regulations. From a report: In a study of 34 popular Android apps, the campaign group Privacy International found that at least 20 of them send certain data to Facebook the second that they are opened on a phone, before users can be asked for permission. Information sent instantly included the app's name, the user's unique ID with Google, and the number of times the app was opened and closed since being downloaded. Some, such as travel site Kayak, later sent detailed information about people's flight searches to Facebook, including travel dates, whether the user had children and which flights and destinations they had searched for. European law on data-sharing changed in May with the introduction of General Data Protection Regulation and mobile apps are required to have the explicit consent of users before collecting their personal information.
Once people get over their knee-jerk sense of outrage (if there is any), I doubt anyone will even uninstall these apps from their phones.
If you're using Android or anything Google, you clearly don't care about privacy anyway, loosers.
wow no way gasp i'm super surprised oh my stars garters amen
Calorie Counter - MyFitnessPal
Duolingo: Learn Languages Free
Family Locator - GPS Tracker
Indeed Job Search
Instant Heart Rate: HR Monitor & Pulse Checker
KAYAK Flights, Hotels & Cars
King James Bible (KJV) Free
Muslim Pro - Prayer Times, Azan, Quran & Qibla
My Talking Tom / My Talking Hank etc
Period Tracker Clue: Period & Ovulation Calculator
Qibla Connect® Find Direction- Prayer, Azan, Quran
Shazam
Skyscanner - Cheap Flights, Hotels and Car Rental (Ad Personalisation = Off)
Skyscanner - Cheap Flights, Hotels and Car Rental (Ad Personalisation = On)
Spotify Music
Super-Bright LED Flashlight
The Weather Channel: Local Forecast & Weather Maps
TripAdvisor Hotels Flights Restaurants Attractions
VK (vkontakte)
Yelp
Salatuk (Prayer time)
Bible - Audio, Daily Verse, Study & Offline, Free
BMI Calculator & Weight Loss Tracker
Candy Crush Saga
Clean Master - Antivirus, Cleaner & Booster
Dropbox
HP ePrint (No Longer in Google Play Store)
Opera Browser
Period Tracker, My Calendar
Phone Tracker By Number
Security Master - Antivirus, VPN, AppLock, Booster
Skater Boy
Speedtest by Ookla
WeChat
Beware of the Leopard.
firewalls on their android devices to block outgoing connections (especially to bookface)
NetGuard, AFWall+ (requires root)...
Because they are so fine (they are American after all) they need to be fined so these fine software mobile applications can help EU pay its way in N.A.T.O. which the Americans (very fine people) require EU pay. No more free riding. Pay. So fine the fine (American-fine) applications so to make EU pay for the fine, very fine, protection it recieves from the fine Americans.
Seems a better headline would be more along the lines of: Free apps make their money one way or the other.
I think one of the most effective privacy regs we could have would be a law that requires a plain English explanation of what data is sold or transferred to third parties, including wholly-owned subsidiaries that are operating as a separate company (ex WhatsApp and Facebook).
No legalese, something that a person with a GED or high school degree should be able to read like this:
If it were spelled out in those terms, a lot more people would notice and care.
... the worse Facebook looks.
the average person not understanding how this stuff works and the dangers therein, but anyone in IT should have declared Facebook, et al. pariahs long ago. I remember years ago when working as an IT security auditor thinking that I would never join "social media". Many people saw this coming, but people simply don't want to hear about it because it's "free". Everyone in IT understands it's not free. You (metaphorically) are paying for it. In more ways than one.
I value what little privacy is left over, and as an anecdote, I recently left Fastmail over the Access and Assistance bill. I was a paying customer, but no longer.
The Security Derangement Complex: Technology Companies And Australia’s Anti-Encryption Law
In the end, I think people will not be able to trust companies. 99% of people will never encrypt their missives or online content before storing them. That's crazy, despite not having anything to hide. That old chestnut people love to trot out saying, "If you have nothing to hide, you have nothing to fear.", is garbage. We all have things to hide or would prefer to remain under wraps.
I drive a grey car with no bumper stickers. I wear plain shirts. I don't advertise. I pay cash for booze and tobacco, buy certain things face to face, and generally don't put myself out there for the data miners. My browsing is all done as privately as I can make it. More and more companies are selling, unbeknownst to end users, their data to insurance companies, banks, credit companies, and various governments. We are entering an age where everything is going to be transparent. Those who use encryption that is not "backdoored" will stand out brightly. The cold war between clever end users and the powers that be is coming. VPN/VPS traffic is routinely being deep packet inspected (already a thing) in many places. They are not the panacea people think they are. You cannot trust what you do not control. The Australian AA Bill has really nailed this down for me, and as my only paid account save my ISP, I'm thinking about how to address this in a way that works for me going forward with the friends and family I do communicate with on a regular basis. I'm not paranoid, I just see the patterns being matched around the world with control closing in.
*IF* you're going to flaunt the law and send info your app collects to Facebook without the phone owner's consent, doing it from the phone is stupid. It allows the phone owner to check on the data your app is transmitting, and catch it sending info to Facebook as TFA did.
The smart way to do it would be to have your app send the info to you, then you send it to Facebook directly. That way there's no way for the user to detect that you're sharing data with Facebook. I wouldn't at all be surprised if this is what most apps do.
Why do plebs use that trash? Oh yeah, because they are too cheap to buy a phone that's not trash.
The thing I can't stand about most Android developers is their laziness and stupidity. So many apps want complete access to my phone. Why the fuck do so many apps want access to my contacts?
Immediate cancel on the install.
Same goes for access to photos, camera, calendar and location. I just assume the developer wants to do some nefarious things with my phone.
Do they have to have that kind of access for certain functionality?
Then the Android team needs to get their act together and make Android more secure.
I just use my Android phone for plain calls and work schedule. My bank wants me to use their app and I just say, "NFW because Android is an insecure cheap piece of shit."
If I could afford an iOS phone, I'd get it because it is much more secure.
But Apple's ridiculous prices are another rant.
Nothing good ever came from the Financial Times
"Oh my God. This is terrible. This is the end of my Presidency. I'm fucked."; ~ Donald J. Trump
Shazam is a case that would be quite useful (and used to be in the past), if it wasn't for this shit.
I don't see there being a free alternative anytime soon, given how the human livestock follows the Content Mafia's criminal delusions.
if they have enough to waste 5+ billion on trumps Folly - whats an extra billion in fines ,t they can just consider it more corporate welfare.
You can't e.g. tell Shazam to not use Facebook, but still use the very music identification service you're using it for.
If only, because they can still share things server-side.
There needs to be penalties.
If CEO's get some jail time this stuff will stop right now!
There is no motivation to self police.
They are like "Ooopsie someone made a mistake" "thats against our policy"
Meanwhile once the cat is out of the bag it's a done deal.
And if someone doesn't call them out they will keep on with the butt sniffing.
Hopefully they will be fined large amounts of money and Facebook as well for accepting the data...
Its just harmless telemetry and metadata. Just like you get on windows 10 that everyone loves and the likely equivalent on OSx. Everywhere now we can run a good firewall, adblock, etc until they patch the OS with new leaks. Maybe you spill a little data here or there when you have to turn off that firewall to troubleshoot something. Maybe you don't hear about something for a week or two like Stylish sending every URL you visit to somebody. Its not that nobody cares... it's that nobody who matters cares, except to take your shit.
I've seen numerous sites "debunk" the idea that your phone listens to your conversations and sends data to advertisers. The problem with every one of them is that they were analyzing the behavior of specific applications, typically the Facebook app. Because Facebook gets data from other application vendors, none of those tests were meaningful.
Does your phone listen to your conversations? Probably. Could be your laptop/desktop computer, too.
Mod parent up!
Everything you do on that smartphone you are sending data to Google you cannot even download "apps" without giving them your name e-mail address and your phone number to go with it.
To counteract the power of information gathering we need better tools for creating, managing and using fake identities. Ideally these tools will allow us to silo various parts of our lives while frustrating data gathering efforts and attempts to link gathered information together, either between fake identities or worse back to the real one. Perhaps somebody is aware of existing tools that accomplish these objectives in which case please be generous with your advice.
If not, then they shouldn't care. I know that the GDPR has a provision stating that personal data concerning EU citizen's fall under its jurisdiction, they can't really enforce it eg in a US based company. The US based company is obligated to follow the US laws only. It's another matter if the foreign company has a branch opened in an EU country.
Not really.
By the end of Q2. Sheryl Sandburg to write juicy tell all best seller. Fb stock to be first to trade at negative value. Musk and gates and bbc all to say stupid things.
Satan will be revealed as real owner of fb. Yet my stupid family will still post baby pictures.
Putin is amused. Xi and macron both got bigger fish. Trudeau Is a fool. Canadian dollar to go to .25 cents us. Oil will do whatever it wants and gold will do nothing.
As for trump, hah, i predict lots of screaming by pretty much everyone.
Only crAPPy crAPPS can crAPP all over your privacy.
I'm not repeating myself
I'm an X window user; I'm an ex-Windows user
See? That's why Cdreimer left /. after 20 years and posted 100+ videos in 2018. His trolls are still butthurt that he left them alone with APK.
The thing to do for him: post more videos :)
Well you do have a choice to either accept what Facebook and other free services do with your data. Or you can simply choose not to use their services. I personally decided that I cannot trust a Facebook to provide a fair amount of privacy options with my personal data. So I choose not to use their products or any other product that does not respect that privacy. This is the only way to make these entities start respecting users privacy is to stop using their products. Otherwise, don't complain about privacy and continue to use their products.
http://altwissenschaft.ddnss.de/AlternativListe.html
(use yandex translate if required)
Actually yandex does not get this one translated, use the borg instead.
In this day and age I distrust by default any website which keeps my personal data like name, address, etc. and if I have to use such a website I open a private(incognito) tab in my web browser.
Shocked I tell you. And saddened, yes definitely saddened. And shock. Mostly shocked, but also somewhat saddened. Yes that's it, shocked and saddened.
putting the 'B' in LGBTQ+
After reading this article I have disabled Facebook servers in my router. I added a rule to the router's firewall disabling 157.240.21.* (reject). Then, Thunderbird stopped sending mails to my ISP server. It would resume sending ONLY after I erased that rule!!!!!
The problem is the FACEBOOK API. When you call Initialize() it sends all kind of data to the Facebook servers! Many applications do that so that you can click in "login with Facebook" or in a "like" button. Every time you arrive to a web site with that ki,nd of crap, you are sending to Facebook all kind of data, even if you do not have any Facebook account (what is my case)
This is NOT only in Android. Windows PCs and Macintosh are affected too.
jacob navia
If they're still using it after all the s**t in the news lately, they definitely don't care about apps sharing their info. Or their IQ is too low to understand what the problems are. Or both.
Don't use the Facebook app. Access ot only using a web browser.
Sayonara Duolingo. Your Japanese lessons hadn’t been updated in years anyway.
Btw I’m on iOS.
Facebook grabs all the data it can, it's really not dependent upon your contacts.
I don't use Facebook and have it very well blocked with a HOSTS file on my personal Computer.
I run "Noroot Firewall" on mobile devices. This Christmas a Parrot Drone was gifted, and "FreeFlight mini" software installed
on a mobile phone; Two packets going to Google and one to Facebook were blocked.
installed netguard. within the first hour it logged:
Glympse
Pandora,
Fing
Accuweather
Waze
all trying to contact graph.facebook.com.