Sign in / up

back to article Coordinates of millions of smartphones feared stolen, sparking yet another lawsuit against data broker

Gravy Analytics has been sued yet again for allegedly failing to safeguard its vast stores of personal data, which are now feared stolen. And by personal data we mean information including the locations of tens of millions of smartphones, coordinates of which were ultimately harvested from installed apps. A complaint [PDF], …

COMMENTS

Post your comment
House rules Send corrections
Add to 'My topics' unstar *
  1. Doctor Syntax Silver badge

    The data we use is already commercially available data collected via smartphone apps, purchased at scale by data brokers or aggregators, then licensed to Gravy Analytics and other organizations like ours."

    It is high time people like this were made to regard such data not as valuable but as toxic. If a business like this is sued so many times it's likely to just be bankrupted and nobody gets adequate redress. The senior management and directors should be personally liable for civil suit and also criminally liable. Perhaps that should also extend to the aggregators who licenced it to them. Make the whole supply chain liable.

    31 0 Reply
  2. Neil Barnes Silver badge
    Flame

    If you don't collect the data

    then there is no reason to worry about its security and the way it is used.

    Just stop it. Now.

    15 0 Reply
  3. Anonymous Coward
    Anonymous Coward

    Maybe there should be laws forcing smart phone OS's to have privacy switches to turn off the availability of data. Maybe they should first time boot in a privacy mode and the user can turn on what data sharing they want to allow. There should be clear warning when you turn on sharing that it's not your data anymore, you have just made it public.

    10 0 Reply
    1. Frank Bitterlich
      Reply Icon

      Privacy control

      You can typically decide which data an app can access. However, it is technically almost impossible* to enforce what an app or service does with that data, especially when the function of that app depends on that data being transferred to a server (eg. Tinder etc.) You can require app vendors to have comprehensive privacy statements, but these are mostly just "swindle sheets".

      "We value your privacy. In order to provide you with this service, we share your data with 975 partners. This is necessary because, well, um, we want the money."

      * For any references to how useless the GDPR is thanks to the concept of "reasonable interest", please refer to any one of my other rants here on this forum.

      6 0 Reply
      1. tiggity Silver badge
        Reply Icon

        Re: Privacy control

        @Frank Bitterlich

        Indeed.

        If someone uses a phone app that requires location data (e.g. beer review app I use wont find locations of pubs properly unless GPS on & it can search on proximity) then that is not the same as granting someone permission to store / sell / generally abuse that location data & companies trying to claim they have such permission are just lying. e.g. in beer review app I'm OK with users of the app to see the pub I visited & when I did a review but that does not translate to saying that gravy train can flog that location data* to all and sundry.

        * Not that any third party will get anything very exciting as only have location data turned on when use the app, then it is off again.

        0 0 Reply
  4. Frank Bitterlich

    "unjust enrichment"?

    Since when is unjust enrichment illegal in the United States?

    3 0 Reply

POST COMMENT House rules

Not a member of The Register? Create a new account here.

Forgotten password ?

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like