3. Researcher shows how popular app ES File Explorer exposes Android device data

Researcher shows how popular app ES File Explorer exposes Android device data

If you started asking permission for every little detail

Sure, but the permissions at the moment are not granular enough, like getting the IMEI number, or listening to certain broadcast intents like when you plug in your device. They may seem 'small', but can build a nice profile of the end user. Android can track when you switch from WiFi to LTE, and they can use various location features even when disabled (there were a few articles about that recently).

This is as intuitive it gets.

I think if users knew what that permission really meant we'd see a different attitude, if they knew it was being uploaded to some russian server they'd feel different.

iOS is TOO restricted

Yet Apple is known as the 'privacy' company which isn't actually true, I mean they do more than Google but they're just as bad in other ways (go read r/apple at times, Apple sometimes does things that would violate the whole 'privacy first' thing).

What has GDPR to do with Android in this case?

GDPR was supposed to give users their privacy back, or at least put users 'in control', and code (kernels, OS and applications) should respect the regulations like this. If you think of the contacts permission, if I gave you my phone number, you added it as a contact and had Facebook installed, they're getting that data, and I did not consent to that (I consented giving you my number, not Facebook).

Android fundamentally doesn't respect the GDPR in this way, I can't imagine it wouldn't apply to the kernel or operating system yet for websites it does. Even VSCode (a text editor) had to implement various GDPR compliance features, so Android should do the same.

Android shouldn't be in control of my data, I should be

Yes, an individual should, but Android is the platform that stands between you and the application and your data. That's why it needs to allow users as much control as required. Simply tapping 'allow' to location without context (brand new install, first start up) is not ideal.

Allowing apps to do as they please with this data is also not ideal. For example, if an app was based in russia, collected much data and uploaded to a server, whose to blame? Google (Android), the app, the end user for tapping 'allow'?

Google should be more proactive here, actually reviewing apps/SDKs and ensuring GDPR compliance, which I'd imagine is no easy task, but when you can just include Facebook SDK and they're collecting that data without the user even knowing...

...You know somethings fucked.

/r/Android Thread Parent Link - techcrunch.com
Previous
Next

Recently removed from /r/Android

[Louis Rossman] I was wrong about Samsung Daily Superthread (Nov 30 2022) - Your daily thread for questions, device recommendations and general discussions! Dimensity 9200 tops current mobile GPUs in early GFXBench test, even the Apple A16 The SIM card as we know it is as good as dead Google Pixel 6a Review: A Refreshing $449 Phone Sunday Rant/Rage (Jul 17 2022) - Your weekly complaint thread! Samsung has staggering 50 million smartphones in stock Daily Superthread (Apr 12 2022) - Your daily thread for questions, device recommendations and general discussions! Samsung Expands Customer-First Care Experience with New Self-Repair Program Maybe It’s Time We Let Nokia Phones Die Google Infringed on Speaker Technology Owned by Sonos, Trade Court Rules Google Power Abuse Prevention Act has been passed in Korean national assembly Camera shootout: Samsung Galaxy S21 Ultra vs iPhone 12 Pro Max What should I buy Thursday (Feb 04 2021) - Your weekly device inquiry thread! Samsung is the King of Android Updates

More Random Comments

The Hunt for Red Jenny ELI5: Why do we continue reading while we are thinking about something other than what we are reading? Is anyone watching the Stanford lectures (CS193p) and doing the assignments? The real culprit Zed match-up questions: vs. Yasuo/Leblanc [WP] From birth, everybody has a word imprinted on their left arm. This is the last word they will ever say. I am 20 years old, $70k in debt and make about $24,000 a year. What can I do? What is the worst/best cockblock you have ever given, gotten, or witnessed? What's something that your SO does that you know about, but they don't know you know? TIL Weird Al turned down $5 million, in the late 80s, to endorse a beer company. He thought it was ethically wrong because, "a lot of his fans were young and impressionable." Lets talk raid leading and being a productive raid member Some of your favorite soundtracks to listen to while playing WarFarm First seizure ever, Went to doctor, questions unanswered Microsoft pulls the plug on its last Windows RT tablet Opinions on heel hooks in BJJ