Tag Archives: privacy

12Aug / 2022

Where the data from your car flows

Jon Keegan and Alfred Ng, for The Markup, identified 37 companies that collect data from connected cars. On where it goes and how the companies profit:

Once a driver gets into a car, dozens of sensors emit data points that flow to the car’s computer: The driver door is unlocked; a passenger is in the driver’s seat; the internal cabin temperature is 86° F; the sunroof is opened; the ignition button is pressed; a trip has started from this location.

These data points are processed by the car’s computers and transmitted via cellular radio back to the car manufacturer’s servers.

As the trip continues, additional information is collected: the vehicle location and speed, whether the brakes are applied, which song is playing on the entertainment system, whether the headlights are on or the oil level is low.

The data then begins its own journey from the car manufacturer to companies known as “vehicle data hubs” and on through the connected vehicle data marketplace.

Tags: , ,

Posted by in car, Data Sharing, privacy, The Markup

Tags: , ,

Permalink

18Jul / 2022

Period trackers and legal implications

Given the current restrictions in the U.S., Kendra Albert, Maggie Delano, and Emma Weil discuss data privacy for those who track their periods:

In their investigation, police try to find evidence that someone intended to miscarry, or was otherwise endangering the viability of their pregnancy. This is because a medical abortion presents the same way as a miscarriage, and prosecutors must prove intent or willful endangerment of an embryo or fetus in order to convict someone (though being arrested at all is traumatizing and can cause severe health consequences). Prosecutors must be able to prove their case beyond a reasonable doubt — data from a period tracker app is not enough on its own to prove this, even if it’s relevant.

I think there’s understandably been nervousness around tracking your period, but it seems that from a legal perspective, there’s little risk? Albert, Delano, and Weil also recommend privacy-centric apps and discuss the more technical aspects in a companion article.

Tags: ,

Posted by in Data Sharing, period, privacy

Tags: ,

Permalink

28Apr / 2022

Facebook doesn’t seem to fully know how its data is used internally

Lorenzo Franceschi reporting for Motherboard on a leaked Facebook document:

“We do not have an adequate level of control and explainability over how our systems use data, and thus we can’t confidently make controlled policy changes or external commitments such as ‘we will not use X data for Y purpose.’ And yet, this is exactly what regulators expect us to do, increasing our risk of mistakes and misrepresentation,” the document read. (Motherboard retyped the document from scratch to protect a source.)

In other words, even Facebook’s own engineers admit that they are struggling to make sense and keep track of where user data goes once it’s inside Facebook’s systems, according to the document. This problem inside Facebook is known as “data lineage.”

Hm.

Tags: , ,

Posted by in Data Sharing, Facebook, Motherboard, privacy

Tags: , ,

Permalink

26Apr / 2022

Tracking the CIA to demo phone tracking

Sam Biddle and Jack Poulson for The Intercept reporting on Anomaly Six, a company that knows a lot about a lot of people through phone data:

To fully impress upon its audience the immense power of this software, Anomaly Six did what few in the world can claim to do: spied on American spies. “I like making fun of our own people,” Clark began. Pulling up a Google Maps-like satellite view, the sales rep showed the NSA’s headquarters in Fort Meade, Maryland, and the CIA’s headquarters in Langley, Virginia. With virtual boundary boxes drawn around both, a technique known as geofencing, A6’s software revealed an incredible intelligence bounty: 183 dots representing phones that had visited both agencies potentially belonging to American intelligence personnel, with hundreds of lines streaking outward revealing their movements, ready to track throughout the world. “So, if I’m a foreign intel officer, that’s 183 start points for me now,” Clark noted.

Tags: ,

Posted by in Data Sharing, Intercept, privacy

Tags: ,

Permalink

18Apr / 2022

Tax services want your data

Taxes are due today in the U.S. (yay). Geoffrey A. Fowler for The Washington Post on the part when tax services like TurboTax and H&R Block ask for your data:

What he discovered is a little-discussed evolution of the tax-prep software industry from mere processors of returns to profiteers of personal data. It’s the Facebook-ization of personal finance.

America’s most-popular online tax-prep service, Intuit’s TurboTax, also asks you to grant it additional access to the data in your return to “enrich your financial profile, communicate with you about Intuit’s services, and provide insights to you and others.”

[…]

The good news is because of Internal Revenue Service rules, this is one data request you can actually say “no” to while continuing to do your taxes online. And if you already clicked “agree” and now have changed your mind, there are some steps you can take, too.

Tags: , ,

Posted by in Data Sharing, privacy, taxes, Washington Post

Tags: , ,

Permalink

04Mar / 2022

Unregulated location data industry

For The Markup, continuing their reports on data privacy, Alfred Ng and Jon Keegan discuss the non-regulation of the location data industry:

Without government regulation, the current approach from Apple and Google is to play catch-up with data brokers for each new way that location data can be shared, experts said.

For example, while app developers could potentially lie to Apple and Google without any way to audit the companies, they face a bigger risk if they violate laws like the European Union’s General Data Protection Regulation.

The law, which requires companies to disclose all third parties who could receive a person’s data, could be a stronger check on direct server transfers than app store scrutiny.

Tags: , ,

Posted by in location, privacy, The Markup, Visualization

Tags: , ,

Permalink

02Feb / 2022

Crisis Text Line and data sharing

Crisis Text Line was sharing data with a for-profit business started by its founder. Given the sensitivity and nature of the data, this relationship understandably seemed questionable at best. Danah Boyd, who serves on the board for Crisis Text Line, provides a detailed view into what happened and why:

The practice of non-profit governance requires collectively grappling with trade-off after trade-off. I have been a volunteer director of the board of Crisis Text Line for 8 years both because I believe in the mission and because I have been grateful to govern alongside amazing directors from whom I constantly learn. This doesn’t mean it’s been easy and it definitely doesn’t mean we always agree. But we do push each other and I learn a lot in the process. We strived to govern ethically, but that doesn’t mean others would see our decisions as such. We also make decisions that do not pan out as expected, requiring us to own our mistakes even as we change course. Sometimes, we can be fully transparent about our decisions; in other situations – especially when personnel matters are involved – we simply can’t. That is the hardest part of governance, both for our people and for myself personally.

Tags: , ,

Posted by in Crisis Text Line, Ethics, privacy, statistics

Tags: , ,

Permalink

29Dec / 2021

Anonymized data is rarely anonymous

Justin Sherman for Wired points out the farce that is anonymized data:

Data on hundreds of millions of Americans’ races, genders, ethnicities, religions, sexual orientations, political beliefs, internet searches, drug prescriptions, and GPS location histories (to name a few) are for sale on the open market, and there are far too many advertisers, insurance firms, predatory loan companies, US law enforcement agencies, scammers, and abusive domestic and foreign individuals (to name a few) willing to pay for it. There is virtually no regulation of the data brokerage circus.

Tags: ,

Posted by in privacy, statistics, Wired

Tags: ,

Permalink

24Dec / 2021

Virtual proctoring simulation

Many colleges use virtual proctoring software in an effort to reduce cheating on tests that students take virtually at home. But the software relies on facial recognition and assumptions about the proper testing environment. YR Media breaks down the flaws and even provides a simulation so that you can see what it’s like.

Tags: , , ,

Posted by in Bias, Infographics, privacy, proctoring, YR Media

Tags: , , ,

Permalink

07Dec / 2021

Family safety app sells location data to third parties

Life360 is a service that lets families keep track of where members are based on phone location data. For The Markup, Jon Keegan and Alfred Ng report on how Life360 then sells that data to third parties for millions of dollars:

Through interviews with two former employees of the company, along with two individuals who formerly worked at location data brokers Cuebiq and X-Mode, The Markup discovered that the app acts as a firehose of data for a controversial industry that has operated in the shadows with few safeguards to prevent the misuse of this sensitive information. The former employees spoke with The Markup on the condition that we not use their names, as they are all still employed in the data industry. They said they agreed to talk because of concerns with the location data industry’s security and privacy and a desire to shed more light on the opaque location data economy. All of them described Life360 as one of the largest sources of data for the industry.

You kind of expect this from a free app, but Life360 is a paid service that collects children’s location data. Seems questionable.

Tags: , ,

Posted by in Data Sharing, Life360, privacy, The Markup

Tags: , ,

Permalink