Apple, Google Collect User Data


WSJ.com

Just turn the GPS off! That stops the I-Phone and the Android. Is this actually being to paranoid at the expense of having nearest gas station, fast food, restaurant, hospital, so it’s up to the individual to make the call

That’s my story and I’m sticking to it, I’m J.C. and I approve this message:-)

By JULIA ANGWIN And JENNIFER VALENTINO-DEVRIES

WSJ.com Senior Technology Editor Julia Angwin reports Apple’s iPhone and Google’s Android regularly transmit user location data back to those companies, based on data analyzed by The Wall Street Journal.

Video Here

Apple Inc.’s iPhones and Google Inc.’s Android smartphones regularly transmit their locations back to Apple and Google, respectively, according to data and documents analyzed by The Wall Street Journal—intensifying concerns over privacy and the widening trade in personal data.

Google and Apple are gathering location information as part of their race to build massive databases capable of pinpointing people’s locations via their cellphones. These databases could help them tap the $2.9 billion market for location-based services—expected to rise to $8.3 billion in 2014, according to research firm Gartner Inc.

More

In the case of Google, according to new research by security analyst Samy Kamkar, an HTC Android phone collected its location every few seconds and transmitted the data to Google at least several times an hour. It also transmitted the name, location and signal strength of any nearby Wi-Fi networks, as well as a unique phone identifier.

Google declined to comment on the findings.

There are ways for users to block the transmission of location information by Android devices and iPhones-although doing so limits important smartphone functions such as maps. WSJ’s Jennifer Valentino explains.

Until last year, Google was collecting similar Wi-Fi data with its fleet of StreetView cars that map and photograph streets world-wide. The company shut down its StreetView Wi-Fi collection last year after it inadvertently collected e-mail addresses, passwords and other personal information from Wi-Fi networks. The data that Mr. Kamkar observed being transmitted on Android phones didn’t include such personal information.

What They Know

A Wall Street Journal investigation into the world of digital privacy.

Journal Community

Apple, meanwhile, says it “intermittently” collects location data, including GPS coordinates, of many iPhone users and nearby Wi-Fi networks and transmits that data to itself every 12 hours, according to a letter the company sent to U.S. Reps. Edward Markey (D-Mass.) and Joe Barton (R-Texas) last year. Apple didn’t respond to requests for comment.

The Google and Apple developments follow the Journal’s findings last year that some of the most popular smartphone apps use location data and other personal information even more aggressively than this—in some cases sharing it with third-party companies without the user’s consent or knowledge.

Apple this week separately has come under fire after researchers found that iPhones store unencrypted databases containing location information sometimes stretching back several months.

Google and Apple, the No. 1 and No.3 U.S. smartphone platforms respectively according to comScore Inc., previously have disclosed that they use location data, in part, to build giant databases of Internet WI-Fi hotspots. That data can be used to pinpoint the location of people using Wi-Fi connections.

View Full Image

Reuters

Apple’s iPhone.

Cellphones have many reasons to collect location information, which helps provide useful services like local-business lookups and social-networking features. Some location data can also help cellphone networks more efficiently route calls.

Google also has said it uses some of the data to build accurate traffic maps. A cellphone’s location data can provide details about, for instance, how fast traffic is moving along a stretch of highway.

The widespread collection of location information is the latest frontier in the booming market for personal data. Until recently, most data about people’s behavior has been collected from personal computers: That data generally can be tied to a city or a zip code, but it is tough to be more precise. The rise of Internet-enabled cellphones, however, allows the collection of user data tied with much more precision to specific locations.

This new form of tracking is raising questions from government officials and privacy advocates. On Wednesday, Rep. Markey sent a follow-up letter to Apple asking why the company is storing customer-location data on its phones.

“Apple needs to safeguard the personal location information of its users to ensure that an iPhone doesn’t become an iTrack,” Rep. Markey said in a statement.

Google previously has said that the Wi-Fi data it collects is anonymous and that it deletes the start and end points of every trip that it uses in its traffic maps. However, the data, provided to the Journal exclusively by Mr. Kamkar, contained a unique identifier tied to an individual’s phone.

Mr. Kamkar, 25 years old, has a controversial past. In 2005, when he was 19, he created a computer worm that caused MySpace to crash. He pled guilty to a felony charge of computer hacking in Los Angeles Superior Court, and agreed to not use a computer for three years. Since 2008, he has been doing independent computer security research and consulting. Last year, he developed the “evercookie”—a type of tracking file that is difficult to be removed from computers—as a way to highlight the privacy vulnerabilities in Web-browsing software.

The Journal hired an independent consultant, Ashkan Soltani, to review Mr. Kamkar’s findings regarding the Android device and its use of location data. Mr. Soltani confirmed Mr. Kamkar’s conclusions.

Transmission of location data raises questions about who has access to what could be sensitive information about location and movement of a phone user.

Location Matters

View Full Image

Federal prosecutors in New Jersey are investigating whether smartphone applications illegally obtained or transmitted information such as location without proper disclosures, the Journal reported in April, citing people familiar with the matter.

A spokeswoman for the Office of the Privacy Commissioner of Canada said the office “had concerns” about using cellphones to collect Wi-Fi data and has expressed those concerns to Google. “The whole issue of the tracking capabilities of new mobile devices raises significant privacy issues,” she said.

The business of collecting location information began in 2003, when Boston-based Skyhook Inc. launched and began the practice of “wardriving”—cruising around in cars to collect information about Wi-Fi hotspots. Comparing the names and signal strengths of nearby Wi-Fi hotspots against a database allows for a cellphone’s location to be determined within 100 feet, in many cases, Skyhook says.

“For the first four or five years, people thought we were nuts,” said Ted Morgan, Skyhook’s founder and CEO. “We invented this whole concept of driving around and scanning for Wi-Fi and tuning these algorithms.”

In 2007, Google began building its own Wi-Fi database, using the StreetView cars. Last year, Apple switched from using Skyhook and began creating its own database of Wi-Fi points for use on its newest phones, although it still uses Skyhook data for older phones and Macintosh computers.

Skyhook’s Mr. Morgan says the company attempts to protect users’ privacy by collecting data via cellphone only when a person requests location from its servers—for instance when they are actively looking at a map. Each time a user requests location, the information is encrypted and gathered without any identifying user numbers, Mr. Morgan says. That means Skyhook can’t follow a person from one location to the next, he says.

Experience WSJ professional

Editors’ Deep Dive: The Battle Over Online Privacy

Yahoo Reverses Data-Retention Policy

  • National Journal

Consumer Privacy Bill Loses ‘Do Not Track’ Option

  • Mondaq Business Briefing

Four FTC Settlements

Access thousands of business sources not available on the free web. Learn More

More Tech News

Google seems to be taking a different approach, to judge from the data captured by Mr. Kamkar. Its location data appears to be transmitted regardless of whether an app is running, and is tied to the phone’s unique identifier.

In its letter to Congress last year, Apple said that it only collects location data from people who use apps that require location. It doesn’t specify how often a person must use the app for intermittent collection to occur.

Apple also said in the letter that it collects Wi-Fi and GPS information when the phone is searching for a cellular connection. Apple said the data it transmits about location aren’t associated with a unique device identifier, except for data related to its mobile advertising network

Apple gathers the data to help build a “database with known location information,” the letter says. “This information is batched and then encrypted and transmitted to Apple over a Wi-Fi Internet connection every twelve hours (or later if the device does not have Wi-Fi Internet access at that time),” the company wrote in the July letter to Congress.

The letter, which is available on Rep. Markey’s website, became newsworthy this week in light of findings from two researchers who uncovered a file on iPhones that keeps a record of where the phone has been and when it was there. The file is unencrypted and stored by default.

The discovery of this location file touched off a furor among iPhone owners who could see for the first time a trove of location data about themselves stored on their phones. The researchers, Alasdair Allan and Pete Warden, said that they had no evidence that the file was being transmitted to Apple.

Write to Julia Angwin at julia.angwin@wsj.com
Read more: http://online.wsj.com/article/SB10001424052748703983704576277101723453610.html#ixzz1KNyUlmva

About these ads

7 responses to “Apple, Google Collect User Data

  1. thx jimbo,,ur always a great asset,,,have a happy easter.

  2. “Is this actually being to paranoid at the expense of having nearest gas station, fast food, restaurant, hospital,”: AND what did all those lost souls do BEFORE GPS systems….my gawdddd, they must have starved to death, run totally out gas, and never found the hospital. And worst of all, they may never have gotten home either.

    For all the high tech toys that are made available with all this tracking ability, one might almost ask if there is a sinister intent behind it. Oh well, my cell phone bill is only about $15.00 a month; I can live without almost 22 hours out of every day, and I can find the gas station and fast food joints…but one has to look up and loof ofr what are called signs.

    Can’t wait to see how patheticlly dependent the next generation will become; on second thought I really don’t want to be here to see it.

    • On the nails Richard on all accounts, try talking on the phone to kids, forget it they text total social isolation. I’ve got mine turned off on the phone and of course on when I’m traveling. I’ve got nothing to hide. Blocking Google on the other hand from mining your data and being able to search anonymously. Software available gratis for that. But of course it pisses of the FCC which last time I checked wasn’t tasked with following “normal run of the mill citizens” Thanks for taking the time to visit and comment appreciate it, J.C.

  3. Want to have some fun and screw with, in a small way the I-phone’s tracking one everywhere/ Turn it off when you’re out and about, and wrap it in two layers of aluminum foil; no signals can go out, nor any come into the unit…tell this to any firends who don’t like being tracked.

    OR, everyone with an Apple toy can tell Apple to stick this invasion and submit to Apple, since one may have a contract, a legal challenge to void said contract in view of the this tracking issue, and buy a burn phone….Net 10 is pretty good.

    UNLESS somewhere in one’s contract with Apple it states they can track you, then any tracking they do is a legal violation. But then the contract may have something to that effect in it, and, in the time I’ve assisted people with legal matters I’ve found no ONE reads the entire contract; whetehr it’s for a cell phone or a credit card. If one doesn’t, one has no room to complain.

    FYI; READ the damn paperwork.

  4. cindy wilkerson

    Great information Jim!! Big brother is very present.. It is scary to think that our gov has this ability with the aid of private tech companies..

    • Yep Cindy, and if you decide to forget the GPS function of your phone easily dealing with it, and I found two ways to search without being watched. Be advised that the RDF chips in our charge cards and all new passports will contain them. Easily blocked I’m told but not yet confirmed. Thanks for your comment, J.C.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s