Oh, and will it inform users about the Apple Ad network?
Apple wants privacy 'nutrition labels' on all new and updated apps in its software store from next month
Apple on Thursday advised developers they need to clarify the privacy practices of apps distributed through its App Store, a requirement previewed earlier this year. The iPhone maker said software makers can now start creating standardized summaries, via its App Store Connect interface, that clearly define to users what kinds …
COMMENTS
-
Saturday 7th November 2020 07:10 GMT Giles C
For some apps it will just read your device belongs to us.... (f book)
This sort of privacy information is really needed, although what bugs me are the apps (mostly games) that bombard you with adverts and don’t give you an option to buy an add free version.
If an app is useful to me then I will pay for the no advert option
-
Saturday 7th November 2020 13:37 GMT Jurassic Hermit
And not just games apps. I recently discovered the navigation app ViaMichelin and there are the ads at the bottom of most screens which are easily accidentally presed on a 4.7" screen.
I searched for an ad-free paid version and there's none available. So I contacted ViaMichelin and they told me they'd pass on the suggestion to the developers...I wonder who they are and why they rely only on ads.
I guess I'll get to see their data disclosure shortly and possibly will be alarmed by it. Something Apple are getting right at least.
-
-
Saturday 7th November 2020 13:25 GMT ThatOne
Loopholes you can drive a truck through
> if collection is infrequent, unrelated to the app's primary function
So, if some game collects your contacts and call history (unrelated to its primary function), it doesn't have to say so? If some app only uploads your private data once a week (infrequent), it doesn't have to tell it?
That will be a relief to those app makers so compulsively honest they can't just simply not say what information their app is collecting...
-
Saturday 7th November 2020 13:42 GMT Jurassic Hermit
Re: Loopholes you can drive a truck through
On iOS an app can't explicitly grab your contacts without you getting a prompt to allow it.
When I used Android for donkeys years there was no such ability to restrict, but I gather it may be better in very recent versions.
At the end of the day, I'm not enthralled by any tech giant, but I tend to trust a device maker with my privacy slightly more than I do a data-slurping-behemoth whose sole purpose for its existence is to slurp data in a behemoth manner.
-
Saturday 7th November 2020 14:26 GMT ThatOne
Re: Loopholes you can drive a truck through
> On iOS an app can't explicitly grab your contacts
All right, I stand corrected, bad example. But there is surely something of value they can grab, else this whole announcement would be pointless. If iOS alerts you each time some app wants to sift through your stuff there would be no point in this whole debate, would it.
.
> I tend to trust a device maker with my privacy slightly more than I do a data-slurping-behemoth
While you're of course right, on a purely theoretical level, I'm sorry to say there are only data slurping behemoths left these days. The industry's (any industry's) battle cry is "No cow will go unmilked".
That been said, the point here are the external apps, not the OS itself. The stores try to check the apps, but we've a long list of instances where bad stuff got through, especially since the frontier between acceptable and not acceptable is fuzzy. I guess the iOS store faces the same difficulties as the Google Play Store keeping its contents safe to use, else, once again, this whole announcement would be pointless.
-
-
Saturday 7th November 2020 19:31 GMT Brewster's Angle Grinder
Re: Loopholes you can drive a truck through
It seemed the reverse of what you want. If the collection is for the primary purpose of the app, you can probably infer it happens (and probably don't mind); for example, an app that's going to show you local beauty spots needs your location. All you want is reassurance it isn't logged on servers or shared with "partners". It when a trumpet simulator decides to take your location that you want to know.
-
-
Saturday 7th November 2020 16:19 GMT Anonymous Coward
Naughty advertising SDK's
The advertising SDK embedded in an app that came pre-installed on some Android phones has code to record using the devices Microphone, access the devices Clipboard and access the devices Text-to-Speech functions.
Ironically, the app is supposed to protect the users privacy and security.
82caa03c3b533a2ddce4905b1a3a7a7b
-
Saturday 7th November 2020 19:15 GMT RobHib
Bright flashing red and yellow striped icons needed!
I've monitored the amount of user data many of those apps send home and often it's considerably more than the foreground channel. I'd suggest some are so bad the only appropriate way to warn uses would be to alternately flash/flicker the program's icon with another one that consists of bright red and yellow stripes (perhaps every time user metadata is sent it could flicker madly).
That said, Android apps are generally much worse than Apple's. There's one consolation though with Android, if you've a rooted phone you can nuke an app's ability to use its internal broadcast/receive messages subsystem—that's the app's hidden signaling system that tells it to listen/wake and broadcast home, etc. That's achieved by tampering with (nuking parts) of the program's manifest data that contains the 'what-to-do' instructions.
It's an amazing experience to watch one's network logger fall silent after one's nuked all the call-home infrastructure on one's phone. Up goes the battery life too.
-
-
Sunday 8th November 2020 14:19 GMT ThatOne
"You hereby agree to henceforth be our bitch, and grant us a perpetual right to do to you, to your family, to your friends and to your belongings anything we deem either necessary, useful, or amusing, with absolutely no regard to potential harm done to you, your family, your friends or your belongings."
See, it takes much less than 100 lines.
-