Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror
×
Android Cellphones Google Privacy Apple

Google Collects 20 Times More Telemetry From Android Devices Than Apple From iOS (therecord.media) 113

An anonymous reader quotes a report from The Record by Recorded Future: Academic research published last week looked at the telemetry traffic sent by modern iOS and Android devices back to Apple and Google servers and found that Google collects around 20 times more telemetry data from Android devices than Apple from iOS. The research, conducted by Professor Douglas J. Leith from Trinity College at the University of Dublin, analyzed traffic originating from iOS and Android devices heading to Apple and Google servers at various stages of a phone's operation... [...] The study unearthed some uncomfortable results. For starters, Prof. Leith said that "both iOS and Google Android transmit telemetry, despite the user explicitly opting out of this [option]." Furthermore, "this data is sent even when a user is not logged in (indeed even if they have never logged in)," the researcher said.

But while the Irish researcher found that Apple tends to collect more information data types from an iOS device, it was Google that collected "a notably larger volume of handset data. During the first 10 minutes of startup the Pixel handset sends around 1MB of data is sent to Google compared with the iPhone sending around 42KB of data to Apple," Prof. Leith said. "When the handsets are sitting idle the Pixel sends roughly 1MB of data to Google every 12 hours compared with the iPhone sending 52KB to Apple i.e., Google collects around 20 times more handset data than Apple."
In response to the findings, a Google spokesperson said: "This research outlines how smartphones work. Modern cars regularly send basic data about vehicle components, their safety status and service schedules to car manufacturers, and mobile phones work in very similar ways. This report details those communications, which help ensure that iOS or Android software is up to date, services are working as intended, and that the phone is secure and running efficiently." The Android maker also disputed the paper's methodology, which they claim under-counted iOS' telemetry volume by excluding certain types of traffic, which Google believes resulted in skewed results that found Android devices collecting 20 times more data than iOS.

Apple echoed its rival's response. "The report conflates a number of items in relation to different services and misunderstands how personal location data is protected," an Apple spokesperson told The Record. "Apple is not collecting data that can be associated with individuals without a user's knowledge or consent."

Additional information about the findings can be found here (PDF).
This discussion has been archived. No new comments can be posted.

Google Collects 20 Times More Telemetry From Android Devices Than Apple From iOS

Comments Filter:
  • by AmiMoJo ( 196126 ) on Wednesday March 31, 2021 @08:07AM (#61220310) Homepage Journal

    We need to know in what jurisdiction this happened.

    In the EU the amount of data is probably a lot less because you have to opt in to everything. GDPR requires it.

    • by Alain Williams ( 2972 ) <addw@phcomp.co.uk> on Wednesday March 31, 2021 @08:17AM (#61220344) Homepage

      I would love it if you were right - but I doubt that Apple or Google care; they probably point to some obscure bit of EULA that no one has understood. The consent must be informed and cannot require consent to data processing as a condition of using the service [gdpr.eu]. Google & Apple cannot claim that they did not know of these requirements - they are well publicised.

      Basically the CEOs of Google & Apple should have their balls sued off for this - not Google & Apple but their CEOs, suing the companies will not change things, the CEOs losing their homes will.

      • Who pays for this data use? What if you have data turned off?
        • by John Cavendish ( 6659408 ) on Wednesday March 31, 2021 @09:44AM (#61220564)

          Who pays for this data use? What if you have data turned off?

          Don't tell me you're not aware that all those switches on your phone, which you think control it's features (maybe except the airplane mode) are the same as the "close door" button in elevators, i.e. they're there just to give you satisfaction of feeling in control.

          Everything, from camera to power-off/on can be overridden, except physically pulling off a battery (which is not that convenient in nowadays compact glued devices). It is the same with computers containing any Intel or AMD CPUs (this I know, not sure about others), there is a hidden core with full control of all the buses and components not detectable for the user and even kernel. EU showed the balls and trimmed corporate power in the US it'll not happen, the big brother time is upon us and we payed for it.

          At the moment corporations know where one's going, how often, mostly what one is reading/watching, how often, which parts are paused/re-watched, what one buys, when and where, what places one hovers more when browsing, what one's watching when looking at the phone (yes, that's the reason behind the auto-face unlock), soon even what's your reaction body (cardio, sweat, skin conductivity) to events, entertainment, people passing by, etc. with coming neural implants or (simpler) promoted basic thought readers to control devices (Facebook), they will even know basic thought patterns to places, people, events, etc. One can say - companies wouldn't do this - well, they would, and have: Sony rootkit, Lenovo overridden master certificate, random mike samples from phones (for "quality purposes") - examples are numerous. I keep having massive data transfers from my android, even over the payed bandwidth, once I called them - I spend the whole day chatting with numerous people, every single person I had to explain everything from the beginning, after which they had a list of the same misleading statements, after which they connected me to yet another superior and the whole story repeated - how much time an ordinary working person has for such BS?

          Yes, I am overly cynical and dystopian here (maybe), I use these devices and I find them very convenient, but the reality is as it is.

          • I don't think anyone is claiming that these devices send this kind of information via cellular data while cellular data is turned off. They can easily store it, and send it later when they have a connection.

    • I like how Apl's all "privacy privacy privacy" but doesn't deny they collect user data. Of course the user consented to it... in the 536754 page eula
    • The jurisdiction must be Ireland, where Trinity College, the professor and Trinity's servers are based. Ireland is in the EU and enforces GDPR
    • Comment removed (Score:4, Interesting)

      by account_deleted ( 4530225 ) on Wednesday March 31, 2021 @10:48AM (#61220824)
      Comment removed based on user account deletion
  • by LenKagetsu ( 6196102 ) on Wednesday March 31, 2021 @08:10AM (#61220320)

    The fact this is probably using MY data plan, which I pay for.

    • by srichard25 ( 221590 ) on Wednesday March 31, 2021 @08:23AM (#61220356)

      Who else's data plan would it be using?

      The article says that a Pixel uses 1MB every 12 hours. That means 2MB per day, which would be 62MB over the entire month. In the US, 1GB of data costs approximately $8. So 62MB equates to about 50 cents per month.

      • by aitikin ( 909209 )

        Having RTFA, but not the paper itself, I cannot tell if it's using mobile data or exclusively wi-fi. I would suspect that it primarily/exclusively uses wi-fi, particularly based upon the chart where it explicitly indicates that Apple collects "Local IP Address" and "Nearby Wifi MAC addresses" and Google does neither of those, but does collect "Device Wifi MAC Address" whereas Apple does not.

        • Interesting...

          If vendors had limited telemetry to when wifi-connected, I wonder if it would be possible to break the upload process by using something like a DNS Sink [wikipedia.org] to kill the upload locations?

          I use a couple of Raspberry Pi's and Pi-Hole [pi-hole.net] and it's really effective, even blocking embedded commercials from my SmartTV (a Samsung).
      • Who else's data plan would it be using?

        The article says that a Pixel uses 1MB every 12 hours. That means 2MB per day, which would be 62MB over the entire month. In the US, 1GB of data costs approximately $8. So 62MB equates to about 50 cents per month.

        Or, like I do, turn off cellular data while at home and use your WIFI.

        I haven't used a byte of cellular data in over a year. I usually don't bother taking my phone with me when I leave the house. And my current internet connection doesn't have a cap.

        My current cell plan is $14 a month with 1 free gig of data. So basically it's a phone.

        • Your use-case is the opposite of mine. I rarely need to use cellphone service while at home and only need it when I'm away. Can use landline and other computer devices while at home but those are not available to me when I'm away.

          I appreciate having a cellphone with me in the event of any sort of car trouble or other emergency. There are many instances where I have been contacted while I wasn't home because my attention was needed right away and it couldn't wait for me to get home to get my messages off

          • by aitikin ( 909209 )

            Your use-case is the opposite of mine. I rarely need to use cellphone service while at home and only need it when I'm away. Can use landline and other computer devices while at home but those are not available to me when I'm away.

            I appreciate having a cellphone with me in the event of any sort of car trouble or other emergency. There are many instances where I have been contacted while I wasn't home because my attention was needed right away and it couldn't wait for me to get home to get my messages off the answering machine.

            For your situation of never taking your wireless phone with you, I would drop your wireless service and just use your home computer. Would save you $14/month.

            I believe you misunderstood GP (or I did). I read that as they only use their cell phone as a cell phone (for calls only), and use Wi-Fi for data when at home or elsewhere.

            • Thanks but I got the idea he didn't take his phone with him when he left the house from this sentence, "I usually don't bother taking my phone with me when I leave the house."

      • Comment removed based on user account deletion
      • The amount is irrelevant, it's the principle.

      • Assuming sanity limits have been implemented and are working correctly. Reminds me of people who got shocking bills on their metered Internet due to forced Win10 updates, or Teslas dying due to excessive SSD wear.

        Don't get too comfortable with the idea that doing something in the background is okay as long as it's "non-intrusive". We've been fighting off crapware problems for decades and they just keep coming.

    • The fact this is probably using MY data plan, which I pay for.

      Oh it's better than that. You also paid for the device which is explicitly designed to spy on you. You also pay for applications which are also designed to spy on you. Also, the entire ecosystem is designed so that you will pay to buy a new smartphone that will also spy on you every couple years. In fact, the only thing you've done with your smartphone is continually pay other people for the privilege of being spied on.

      • It is astonishing that anyone with a clue about technology ever bought one of those telescreens, isn't it? Some of us have lived our entire lives without a spy in our pocket.
        • by Gravis Zero ( 934156 ) on Wednesday March 31, 2021 @11:52AM (#61221172)

          At a certain point people just accept it as being unavoidable. I myself am guilty of carrying a feature phone. I know my approximate location can be tracked at all times and I accept that as being unavoidable. I really wish at least one congressperson would fight to make it illegal to share that information without a warrant but here we are.

          • Absolutely any cellphone can be tracked using DTOA, if it can see or by seen by at least two cell sites.

            • Even if there is only one cell site you can still get an approximate location, it's just a larger area. However, when you exclude areas that would most likely have multiple cell site coverage, it drastically reduces the area of that approximate location. Apply basic logic using the direction you are heading and it's not hard to tell where you are.

              It's possible to combat DTOA based detection but that's never going to be a feature for consumer grade products.

        • I find it astonishing that Apple can't simply allow direct filesystem access and instead force itunes.
    • by SirSlud ( 67381 )

      Yes, which you bought, paid for, and use. You've got dozens of devices in your house that use electricity that you pay for when they're not on too. Grown adults who can't handle the idea of not being in 100% control of everything - a beautiful ideal with staggeringly annoying consequences in practice - is funny.

      • Yes, which you bought, paid for, and use. You've got dozens of devices in your house that use electricity that you pay for when they're not on too. Grown adults who can't handle the idea of not being in 100% control of everything - a beautiful ideal with staggeringly annoying consequences in practice - is funny.

        Unfalsifiable argument, bandwagon and appeal to snobbery. Good job.

    • by AmiMoJo ( 196126 )

      Android phones by default wait for a wifi connection before sending that kind of data, and doing stuff like cloud sync. You can adjust it in the settings but the default is to wait.

    • by fermion ( 181285 )
      This is where the lawsuits come in. This is why when the mobile company sends you a text they say it is free and why everyone else makes sure you are opting in to pay any possible costs. It is not that it only costs a nickel, but that you know about the nickel.

      Both apple and Google are stealing users money. Apple much less so, apparently, and maybe more defensible. But even if Google is only stealing 50 cents, this could contribute to their already sizable e exposure.

  • by AmiMoJo ( 196126 ) on Wednesday March 31, 2021 @08:11AM (#61220324) Homepage Journal

    It's the type of data too.

    TFA says that Apple iOS sends your location, local IP address and nearby Wifi MAC addresses. So everything needed to track you with great precision, and build a database of Wifi APs in your location too. Google does not collect that data at all.

    Some of the data is stuff you probably want too, like an anonymous ID used by Google's anti-malware tech. Apple relies only on removing stuff from its app store, which is helped by the fact that you can't install apps from anywhere else.

    • > "Google does not collect that data at all"

      [Citation needed]

      There was a rumour that the Street View cars listened out for and logged WiFi APs as they drove around every public street, thus tying them to GPS coordinates. It wouldn't surprise me if that was true. It also wouldn't surprise me if this happened with phones and tablets.

      • by Geoffrey.landis ( 926948 ) on Wednesday March 31, 2021 @08:41AM (#61220402) Homepage

        There was a rumour that the Street View cars listened out for and logged WiFi APs as they drove around every public street, thus tying them to GPS coordinates. It wouldn't surprise me if that was true. It also wouldn't surprise me if this happened with phones and tablets.

        More than a rumor. Yes, Google's Street View cars were collecting wifi info as they went. https://www.bbc.com/news/techn... [bbc.com]

          https://www.wired.com/2012/05/... [wired.com]

          https://www.theregister.com/20... [theregister.com]

        • Fun fact: the company I worked for relocated to the 10th floor of a building in a different but nearby place, from street level offices before the move. Whenever anyone used Google / Android location with WiFi on at the new location, where the WiFi network wasn't detectable from street level the phone suddenly jumped a few miles to the old location...
      • by swillden ( 191260 ) <shawn-ds@willden.org> on Wednesday March 31, 2021 @09:04AM (#61220464) Journal

        > "Google does not collect that data at all"

        [Citation needed]

        There was a rumour that the Street View cars listened out for and logged WiFi APs as they drove around every public street, thus tying them to GPS coordinates. It wouldn't surprise me if that was true.

        Google Street View cars do listen for WiFi APs as they drive around, creating/maintaining a geo-database of WiFi locations. Your phone actually uses this database to augment and refine location for Google Maps, etc., especially in dense city environments and indoors, where WiFi triangulation can be much more precise and reliable than GPS.

        This is all known, intentional and well-documented, and creates no privacy problems. There was a related privacy issue, which was identified and self-reported by Google under the terms of the privacy consent decree that Google operates under (subsequent to Google's other major privacy faux pas, the Buzz thing). Specifically, the Street View cars were logging not just SSIDs and MACs, but also Wifi packet contents, which means potentially-sensitive user data from unencrypted Wifi networks. I'd argue that if someone is broadcasting plaintext they have no expectation of privacy, but Google opted to view this as a serious problem and It was the motivation for creating all of the privacy reviews that happen in all Google products now. The collection of packet contents had been added by the engineer that implemented the logging, but not as part of any product plan, and the data was never actually used for anything

        It also wouldn't surprise me if this happened with phones and tablets.

        I don't know for sure, but I also wouldn't be surprised if Wifi geolocation data is gathered from Android devices with location sharing turned on. It would make sense, to help refine the Wifi location database.

        • by AmiMoJo ( 196126 )

          It's also not unique to Google, everyone is at it. Apple, Mozilla and there was even an open source effort... Wifi SSIDs seem to be considered like house numbers, public information that anyone nearby is free to observe and record.

          Mozilla does offer an opt-out, but you have to change your SSID to end in _nomap.

          • Mozilla does offer an opt-out, but you have to change your SSID to end in _nomap.

            Can't you just not broadcast your SSID? I thought none of these services were sniffing for SSIDs, only receiving broadcasts. Insofar as admitted, anyway. It seems to me like if you want to keep your SSID private, step one is not to broadcast it. That won't stop everyone, but it will stop the casuals.

            • Mozilla does offer an opt-out, but you have to change your SSID to end in _nomap.

              Can't you just not broadcast your SSID? I thought none of these services were sniffing for SSIDs, only receiving broadcasts. Insofar as admitted, anyway. It seems to me like if you want to keep your SSID private, step one is not to broadcast it. That won't stop everyone, but it will stop the casuals.

              You can stop broadcasting your SSID, but you can't stop broadcasting your MAC, and MACs are more useful for geolocation anyway. I'm not sure if SSID is even used, frankly.

          • by ceoyoyo ( 59147 )

            Wifi SSIDs are explicitly designed to be like that. You're broadcasting an ID. There's also an option to turn it off.

    • TFA says that Apple iOS sends your location, local IP address and nearby Wifi MAC addresses. So everything needed to track you with great precision, and build a database of Wifi APs in your location too. Google does not collect that data at all.

      Wait, what? They do if you have location services turned up to 11. That's literally how Google provides location services without GPS, collecting that data. You can turn it off, though.

    • Funny, through an odd quirk in the way youâ(TM)ve phrased your comment it reads like Apple are the ones whoâ(TM)s business is based 100% on knowing as much information about you, your whereabouts, your likes, dislikes, connections with others, etc, and not Google.

    • by swillden ( 191260 ) <shawn-ds@willden.org> on Wednesday March 31, 2021 @09:37AM (#61220538) Journal

      It's also worth noting that Google actually needs a lot more telemetry, because the team at Google who builds Android doesn't build the devices. We (I work on Android at Google) throw the code over the wall to Android device makers who proceed to modify our code in a variety of ways, then put it into devices and sell the result. We don't get to test the final devices, OEMs run a test suite that we provide then give us the results, and that's the basis for approving their builds. But they run the tests on a small number of "golden" devices, which are representative of the production devices they build, but are a tiny sample, in a lab environment, running a test suite. Very artificial.

      Apple, in contrast, makes all iOS devices. They know exactly how they're built and what code is running on them. They can make "dogfood" builds that implement massive telemetry (well beyond what anyone would put in a consumer device) and deploy those to their employees, with employee permission. Google does the same -- but only with Pixel devices, and that doesn't help us understand the broader ecosystem.

      It should be no surprise to anyone that Google collects a lot more telemetry than Apple. We have to, because we not only need to understand how the system is used and what's working well and what's not, but we also have to check up on the device makers, to ensure they're not messing things up with their modifications, in ways that our test suites didn't envision and so don't catch.

      Of course, all Android telemetry has to be vetted by privacy engineers, and the software engineers are pretty careful as well. For example, I own the Android Keystore, which provides cryptographic services to the system and apps. Keystore gathers and reports metrics describing what kinds of keys apps use and how they use them, including algorithms, key sizes and other parameters, such as block cipher modes. It also gathers metrics on various kinds of failures. This is to help us understand what features are and are not being used and what sorts of cryptographic decisions app developers are making (largely so when we discover anti-patterns being used, we can get the developer relations team to help fix them, though documentation, tutorials and libraries). It also helps us identify patterns of failures that could indicate bugs that reduce reliability. This latter point is very important because prior to my taking it over, Keystore was notoriously unreliable [github.io].

      What we do not collect is any information about the data processed by Keystore. We don't record message sizes and we don't record operation timings. This is because this information might provide a clue to the data contents being processed, and we don't want that. We do have performance tests, but they're part of the test suites. We're contemplating adding some logging of message sizes, because knowing whether apps encrypt/decrypt/sign large messages or small ones can help us to optimize the design, but if we do it we'll make sure it's very coarse (e.g. power-of-two buckets) and probably add some random noise. The noise will make it impossible to determine the actual (coarse) message sizes on any one device, but can be statistically removed on aggregated data to reveal broad usage patterns.

      And, of course, anyone who wants to see exactly what we collect can look at the source code [googlesource.com]. (Note: That link is to the unreleased version of the code. If you want to see the current, deployed, code, it's in here somewhere [googlesource.com]. It's not so nicely isolated in a single file.)

    • TFA says that Apple iOS sends your location, local IP address and nearby Wifi MAC addresses.

      Yes, but with nothing to tie any of that back to you.

      Meanwhile all of the data Google sends, is tied to you personally and probably some of it tied to anyone around you!

  • BS

    "Apple is not collecting data that can be associated with individuals without a user's knowledge or consent."

    • If Apple is sending the IMEI then yes "BS". The IMEI et the IMSI is often used to spy on users. Do a quick google serach for IMEI catcher [google.com]. So the IMEI is very much personal data.

      D.

  • by VAElynx ( 2001046 ) on Wednesday March 31, 2021 @08:34AM (#61220386)
    capitalism is that in socialism, the secret police installed a bug in your house for free, whereas in capitalism you have to buy one yourself, and it isn't cheap, either.
  • Now I actively try to use them as little as possible because I don't want to feed more data to the motherships
  • Modern cars regularly send basic data about vehicle components, their safety status and service schedules to car manufacturers, and mobile phones work in very similar ways.

    Must be some expensive "modern cars" since a lot don't even have a cellular modem.

    • Some of them have one and don't expose it to the user. Loads of GMs and even Subarus (which can also have OnStar preinstalled) have the OnStar equipment installed whether you paid for it or not; there isn't much to it really. I haven't looked it up but I presume it just taps into the vehicle data bus (probably CAN, but it doesn't have to be) in order to gather the information it needs to know things about car condition. You could likely build the equivalent yourself by wiring together modules for under a hu

  • by Voyager529 ( 1363959 ) <voyager529@@@yahoo...com> on Wednesday March 31, 2021 @08:52AM (#61220430)

    So, I read the PDF for a bit to get a better idea of their methodology, and it's even more concerning than I thought.

    That number for Android phones is based on a Pixel phone, set up offline, with all the opt-out toggles set to the opt-out setting, and without signing into a Google account on the device. This amount of data is being exfiltrated from the phone even if one does everything reasonably possible to avoid giving Google data.

    Seriously, the fact that it takes rooting and installing an AOSP ROM to opt-out of data collection, and that companies are allowed to lock bootloaders that make it nearly impossible to do even this much for dedicated individuals, is abhorrent.

    • Capitalism means it's all about money, and the fact that someone will pay for your data means someone will try to collect it. The failure of unregulated capitalism is that no one is held to account when this information is abused.

      The broad majority of websites' rapid responses to laws like the GDPR and California's [rather more limited] privacy laws prove that the situation can be changed through legislation, or at least improved.

      • what would you propose as an alternative to capitalism?
        • what would you propose as an alternative to capitalism?

          Capitalism with more oversight, and effective laws in place to prevent or at least greatly retard corporate influence in politics.

          Capitalism works pretty well, but the devil is in the details, and we need to tie up those loose ends because pretty well is not good enough when we're talking about externalities upsetting the relative ecostasis of the biosphere we all depend upon for life.

    • by AmiMoJo ( 196126 ) on Wednesday March 31, 2021 @09:53AM (#61220588) Homepage Journal

      Worth noting that they had to jailbreak the iPhone and root the Pixel in order to install their own certificate for a MITM attack on the encrypted data.

      I don't know about iOS but Android certainly notices when you root it and does behave slightly differently, e.g. the OS verification system flags it up to apps that care like some banking apps and streaming video services.

      Something else went wrong with the tests. Their data indicates that their location was identified as Dublin in Ireland. Ireland is a GDPR country and all optional data sharing default to off, but the paper claims that they saw it all default to on. I can confirm that when I set up my Pixel 5 not too long ago it all defaulted to off.

      Android respects the user's choices, e.g. they opted out of location data and it did not send any. Apple iOS did send location data regardless of any opt-outs.

    • That number for Android phones is based on a Pixel phone, set up offline, with all the opt-out toggles set to the opt-out setting, and without signing into a Google account on the device. This amount of data is being exfiltrated from the phone even if one does everything reasonably possible to avoid giving Google data.

      Seriously, the fact that it takes rooting and installing an AOSP ROM to opt-out of data collection, and that companies are allowed to lock bootloaders that make it nearly impossible to do even this much for dedicated individuals, is abhorrent.

      Typically Google Play services can be disabled which should stop the bulk of this however without root or a third party ROM with app firewalling you are still basically fucked.

      Personally what I find most appalling is the predatory behavior of Google Play services. In retaliation for disabling Google play even basic functionality like contacts and messaging apps continuously nag you to enable Google play even though they continue to provide basic functionality they are rendered effectively unusable due to i

  • I very seldom have either mobile data or WiFi enabled on my Android phone. I enable one of them on when I need it, then immediately turn it off again. Is my phone queuing 'spy data' and sending it back to the mothership when I DO enable data or WiFi? I'm running CyanogenMod on a rooted phone with a firewall configured to disable as much Google crap communication as possible.

  • by dmay34 ( 6770232 ) on Wednesday March 31, 2021 @08:59AM (#61220444)

    Maybe Apple is just better at compressing the telemetry data?

  • From the article: “both iOS and Google Android transmit telemetry, despite the user explicitly opting out of this [option].”. This is certainly no reason to buy apple over google. If a serial killer murdered 20 times less people than the next you still wouldn't invite him to your home for tea and biscuits. It's almost worse that apple pretend to champion user privacy. We all know that google is the undisputed leader in personal data rape so no news there.
  • Bullshit excuse (Score:5, Insightful)

    by smooth wombat ( 796938 ) on Wednesday March 31, 2021 @09:19AM (#61220492) Journal
    "This research outlines how smartphones work. Modern cars regularly send basic data about vehicle components, their safety status and service schedules to car manufacturers, and mobile phones work in very similar ways."

    Car manufacturers do not need to know any of this. None. It is not the responsibility of car manufacturers to determine if someone installed a non-OEM part or if the person has been maintaining their vehicle. If Google is claiming this is the reason for car snooping then car manufacturers should operate in the same manner as Google: updating of components free of charge.

    But that's not what Google is trying to claim. All they're claiming is car manufacturers do it so we can too. Which is a bullshit excuse since Google is not trying to see if a person's phone is updated or has issues but rather, what is the person looking at? Where are they near? Can we sell this information to someon? All without asking the person's permission.
    • Re:Bullshit excuse (Score:4, Insightful)

      by Thelasko ( 1196535 ) on Wednesday March 31, 2021 @02:14PM (#61221752) Journal

      It is not the responsibility of car manufacturers to determine if someone installed a non-OEM part or if the person has been maintaining their vehicle.

      The EPA says it is. That's the whole point of OBD. [epa.gov]

      Remove your catalytic converter and install a "test pipe"? The "check engine" light will light up, and fail an inspection if one is required in your area. The only reason your car doesn't notify the authorities immediately is because the technology didn't exist when OBDII was developed.

    • Which is a bullshit excuse since Google is not trying to see if a person's phone is updated or has issues but rather, what is the person looking at? Where are they near? Can we sell this information to someon? All without asking the person's permission.

      What you're alleging would be a violation of the Google FCC consent decree, and would cause Google to be fined and, more importantly, would be publicly disclosed.

      Here's a more realistic view, from an insider (me): https://slashdot.org/comments.... [slashdot.org]

  • Google gives the OS away for free and only tangentially makes money off the hardware (Pixel is less a business endeavor and more them making sure there's at least 1 good phone on the market). Apple is a hardware company.

    The better question is, why is Apple collecting *any* telemetry data? I understand Google is spying on me in exchange for free software. It's why I can get a competent smartphone for $250 bucks. But the cheapest Apple is $400 unless I go refurb.
    • The better question is, why is Apple collecting *any* telemetry data?

      Um, perhaps to see how well their phones are actually working under various conditions in the field. Ya know, the kind of data that really can't be determined until the product is out in the field...

      And Apple may be a hardware-centric company. But every single one of their products above the cable and adapter level are running a lesser or greater amount of software, too.

  • by MikeDataLink ( 536925 ) on Wednesday March 31, 2021 @09:26AM (#61220518) Homepage Journal

    OMG, This is Slashdot! It's supposed to be a technology forum. Why do so many not understand that telemetry can be all kinds of thinks, much of which has nothing to do with you privacy.

    For example, they could be sending data back on your cell signal strength so that ATT knows which towers need upgrades or where new towers need to be built. Or they send back data on which items in the settings screen are used the most so they can move those higher up on the UI. Etc. Etc.

    Telemetry CAN be privacy violating, but its not by default.

    • If it has the potential to violate your privacy because of the data being collected, then it's wrong.

      If that sort of data collection is going on without the user being notified with clear and understandable language, then it's doubly wrong.

      This sort of thing can be done while respecting privacy, but often isn't, whether intentionally or incompetently.

    • You're using the word 'could' a lot because you cannot actually make an assertion about how safe the data is to one's privacy. Think about it.

      • You're using the word 'could' a lot because you cannot actually make an assertion about how safe the data is to one's privacy. Think about it.

        That's not the point and you know it. The article title says google collects more telemetry and infers that's a terrible thing for you! But without knowing what that telemetry is the truth is Apple could be way worse. It's just media sensationalism without hard data.

        • It's just media sensationalism without hard data.

          Yeah? Okay so it's MORE data than Apple, you don't know what it is, and it's from a company that makes billions off ... data. But that's all sensationalism, let's glare solely at Apple.

          • let's glare solely at Apple.

            That's not what I said, but you just go ahead and keep putting words in my mouth.

            • But without knowing what that telemetry is the truth is Apple could be way worse.

              That's a very different statement than: "Amount of data does not directly correlate with sensitivity of data."

              • That's a very different statement than: "Amount of data does not directly correlate with sensitivity of data."

                Ostensible
                1: intended for display
                2: being such in appearance : plausible rather than demonstrably true or real

    • Telemetry CAN be privacy violating, but its not by default.

      I see, so we should assume that none of it is privacy-violating?

      Btw, most wired plans still gave data caps. Aren’t they stealing from you?

    • Most of these things can be determined by communicating with your community and usability testing. However, it's far easier to sack the testing teams to save money, and nobody really cares what users want because the marketeers will figure out what the most profitable direction for the device is.

      Telemetry isn't about making things better. It's just the lazy way of developing products when you seriously believe your users are stupid and don't know what they want, so it's not worth even trying to connect wi

    • It's supposed to be a technology forum. Why do so many not understand that telemetry can be all kinds of thinks, much of which has nothing to do with you privacy.

      When it comes to consumer technology containing the word 'SMART' telemetry effectively means spying.

      Imagine for example a heating plant collects pressure and temperature data from a specific boiler.

      Google collects pressure and temperature data from a specific smart phone.

      Same data collected in both instances however political implications vastly different between the two. Content of the data that is not a relevant factor rather it is the utilization and control of the data that determines privacy character

    • On the other hand, Use for Something Useful != Privacy Violation. Just because the telemetry might be used for useful things like planning out new towers and UI design, that doesn't mean that it can't violate people's privacy at the same time.

  • by AmazingRuss ( 555076 ) on Wednesday March 31, 2021 @09:33AM (#61220530)
    rectal thermometer, so they can really KNOW you.
  • Most of the "traffic" is just Google Maps or Waze.
  • That's the data usage I was seeing each month on an idle Android phone.
  • Yeah, all y'all who thought buying Android was either cheaper or a way to stick it to Apple, sucks to be you.

    • Telemetry CAN be privacy violating, but its not by default.

      You realize the study said that Apple collects more data types? You can fit a lot of privacy-violations in 86k/day.

      • Telemetry CAN be privacy violating, but its not by default.

        You realize the study said that Apple collects more data types? You can fit a lot of privacy-violations in 86k/day.

        I could have brought my arrowhead collection! But I didn't... --George Carlin

        Coulda, Woulda, Shoulda.

        Prove that Apple is actually violating your privacy, or STFU.

        Arrowheads or it didn't happen!

  • 1)despite the user explicitly opting out of this [option]

    2) . "Apple is not collecting data that can be associated with individuals without a user's knowledge or consent."

    Wait, I know, the 27 pages of legalese == “knowledge and consent’”. The “agree with this or your iPhone is a $1,400 brick” clause is “knowledge and consent” too.

  • What's missing is transparency. I (partially) believe Google when they say the data is used to improve the device, ensure services are working, fix bugs, etc. But, if that's all it is sending, then there should be a detailed accounting of exactly what is sent, when it is sent, and why. Providing that data should not be a big deal at all if their response to this is truthful and accurate.

    I work in third party risk and its very interesting to see the massive difference between the assurance companies can e

  • So how much of this can be turned off? I'm using an Android phone without Google account, and I turned data usage of for all apps where possible, and I disabled all Google apps that I could disable. Barely ever run anything Google. I know that there are some parts that I can't turn off (Google services). So how much does my phone still pass to Google? Oh, and on the go I typically turn off data...

The unfacts, did we have them, are too imprecisely few to warrant our certitude.

Working...