Big Tech is in serious danger of losing our trust when it comes to our data. For the longest time, they have sold consumers on a bargain: in return for providing convenience and services, they claim our personal data and sell them to the highest bidders.
That bargain requires consumers to trust Big Tech as good custodians of the data.
A number of recent revelations has eroded that trust. And I'm not talking about Cambridge Analytica.
Here are two recent examples that have not received the attention that they deserve.
Android phones found to track users even if they turn off Location History.
The Associated Press first broke this story, which was later verified by Princeton researchers. Android users who choose to turn off Location History obviously do so intending that they not be tracked.
In the same story, it is also disclosed that iPhone users who have installed Google apps are also being tracked at all times. When these users disable location tracking for the Google app, the app stops saving locations in the folder called Location History and saves the location data in a different folder instead. (Note also: the phone itself would not know how to do this; software engineers wrote code to enable this feature.)
This revelation is highly damaging. There have always been suspicion that your phone (or TV or other devices) is spying on you even if it is turned off. There are no technical obstacles to making this capability. The only reason why customers are not worried is that they trust Big Tech when they claim their phones (or other devices) do not have that capability.
Google does not deny this is happening, and in fact, argues that it is transparent in dealing with users.
***
Facebook found to have taken users' phone numbers provided for "two-factor" authentication and sold them to advertisers.
For a number of years now, Big Tech and small tech alike have bombarded us with security warnings, and made claims that "two-factor" authentication is the ultimate solution to online security issues. Setting up two factor requires the user to provide a cell phone number, which immediately removes any semblance of online anonymity (unless you get your hands on a burner phone).
It's been known in the marketing world forever that the key to unlocking anyone's data is your phone number. That's because the cell phone is almost always a personal device.
I don't typically consent to two factor for fear that the phone number could then become marketing fodder. This story, by Gizmodo, confirms that my worst fear is real. Similar to Google above, Facebook confesses to coopting those phone numbers, and even maintains that users have consented to such use.
This revelation is also highly damaging. In fact, it damages the reputation of the security industry. How are we to trust them when they tell us to use things like phone numbers, fingerprints, eye scans, etc. for security purposes when we cannot trust that such private data would not be transferred to other entities?
In the same story, it is disclosed that Facebook also harvests phone numbers for advertisers under a variety of other pretexts. For example, when you provide your phone number to receive alerts about new log-ins to your account, that number ends up on marketing lists. Further, when you upload your contact list to Facebook, you have exposed all of your friends' phone numbers, turning them into fair game for Facebook's advertising clients!
This further relevation is even more damaging. Lots of websites ask for our phone numbers under the pretext of servicing our accounts, but we can no longer trust any of them that they would not turn our personal data over to advertisers.
***
Judging by their subsequent pronouncements when caught red-handed, we fear that Big Tech is not sensing the importance of "trust" in their business model. If the trust goes away, these businesses will be in for a nasty surprise.
Recent Comments