There’s an old axiom that’s popular amongst privacy advocates: “If you’re not paying, you’re the product.” Your age, interests, purchasing habits, frequented locations, health, and social map are all valuable pieces of information that comprise a digital shadow, which can be packaged, bundled, and sold to the highest bidder.
It’s very inconvenient for one to try figuring out what data an app is collecting before they download. However, many apps engage in irresponsible practices that are worth understanding. Having known how to spot them, you can decide which apps are worth the potential invasion of privacy, and which should be banished from your devices forever.
Take for instance a flashlight app, it’s basically meant to do one simple thing: turn on the LED flash of mobile phones. However, many end up having access to a lot of unnecessary data and phone functions, including users’ calendars, location, and camera.
You ought to be wary of the cartoon game that wants to access your personal photos or the weather app that requires access to your microphone. Uber, for instance, requires access to your location data even when you are not using it unless you turn off location data entirely on your phone.
Although there is a wealth of literature about how terms of service agreements and privacy policies are not often read, they are still critical features as they spell out company commitments and are legally enforceable.
Google has plans underway to eliminate apps that handle personal or sensitive data from Google Play Store if they don’t have privacy policies. SafeGraph was effectively able to look at and analyze 10 million individual mobile phone users and track every one of their locations over the course of Thanksgiving Day 2016. It’s funny how they got 10 million smartphone users to consent to a data-collection firm tracking all their moves.
But the truth is that they didn’t have to do so. This is because of SafeGraph partners with a wide variety of app makers—and leaves the issues of data collection notification and user privacy to the third-party partners.
App makers only disclose what they’re tracking if they feel like it. In 2013, the U.S. Commerce Department unrolled a purely voluntary, not legally enforceable “privacy code of conduct” for app makers.
It’s unfortunate that we’re accepting the idea that any app maker can track us without our knowledge and consent. We are also accepting the idea that businesses can take our personal data whenever they want and resell it when it suits them—again, without ever telling us.
Uninstalling the apps on our phones isn’t going to keep you out of any of these databases. At this point, what we can do is start looking at consequences.