SoylentNews is people
SoylentNews
Submitted via IRC for AnonymousCoward
Robocall blocking apps caught sending your data without permission – TechCrunch
Robocall-blocking apps promise to rid your life of spoofed and spam phone calls. But are they as trustworthy as they claim to be?
One security researcher said many of these apps can violate your privacy as soon as they are opened.
Dan Hastings, a senior security consultant at cybersecurity firm NCC Group, analyzed some of the most popular robocall-blocking apps — including TrapCall, Truecaller and Hiya — and found egregious privacy violations.
[...] many of these apps, said Hastings, send user or device data to third-party data analytics companies — often to monetize your information — without your explicit consent, instead burying the details in their privacy policies.
One app, TrapCall, sent users’ phone numbers to a third-party analytics firm, AppsFlyer, without telling users — neither in the app nor in the privacy policy.
He also found Truecaller and Hiya uploaded device data — device type, model and software version, among other things — before a user could accept their privacy policies. Those apps, said Hastings, violate Apple’s app guidelines on data use and sharing, which mandate that app makers first obtain permission before using or sending data to third-parties.
Many of the other apps aren’t much better. Several other apps that Hastings tested immediately sent some data to Facebook as soon as the app loaded.
(Score: 0) by Anonymous Coward on Monday August 12 2019, @06:47AM
You should also be able to give random data to the apps, rather than letting them access your real data.