Apple now collecting some ResearchKit data from users for its own research
Apple has started collecting some of the research data that users submit through apps using the company’s ResearchKit platform for the first time.
Apple has started collecting some of the research data that users submit through apps using the company’s ResearchKit platform for the first time.
Spotify’s CEO Daniel Ek published a blog post today apologizing and attempting to clarify its recently updated privacy policy that proved to be controversial among some users and press. In the post, Ek explains that updated terms granting Spotify access to more of users’ personal information is only to further customize the Spotify experience and that giving up that data will be entirely an opt-in experience for users:
In our new privacy policy, we indicated that we may ask your permission to access new types of information, including photos, mobile device location, voice controls, and your contacts. Let me be crystal clear here: If you don’t want to share this kind of information, you don’t have to. We will ask for your express permission before accessing any of this data – and we will only use it for specific purposes that will allow you to customize your Spotify experience.
The post goes on to clarify exactly why Spotify is requesting each new type of data and for what it will be used. While most of the data is being used to personalize the listening experience for users, the caveat is that it does reserve the right to share data with advertisers, rights holders, and mobile networks:
Sharing: The Privacy Policy also mentions advertisers, rights holders and mobile networks. This is not new. With regard to mobile networks, some Spotify subscribers sign up through their mobile provider, which means some information is shared with them by necessity. We also share some data with our partners who help us with marketing and advertising efforts, but this information is de-identified – your personal information is not shared with them.
But how does that compare to other music services? Wired put together a good breakdown of exactly what user data competing music services reserve the right to access via their privacy policies. The majority of the services all request similar data, although a few differ on accessing contacts and media files and sharing with third-parties, while others don’t have much disclosure regarding location tracking.
A review of 1,211 apps carried out by a coalition of privacy officials across 19 countries found that 60 percent of them failed at least one basic privacy test, reports the WSJ.
The officials found that 60% of apps raised privacy concerns, based on three criteria: They did not disclose how they used personal information; they required that the user give up an excessive amount of personal data as a condition of downloading the app; and their privacy policies were rendered in type too small to be read on a phone’s screen …
Apple has strengthened its App Review Guidelines to require greater protection of children under 13 years and to clamp down on gambling apps that involve real money.
Some of the changes were required in order to comply with tougher requirements in the newly-expanded Children’s Online Privacy Protection Act (COPPA), which prohibits apps from collecting personal data from children under 13 without ‘verifiable parental consent.’ Personal data initially meant name, address, phone numbers, email address and present location, but has now been expanded to include photos, video and audio. Apple has, however, gone further …
Expand
Expanding
Close
Apple published an open letter late Sunday night responding to recent allegations that the company had given customers’ personal information, including phone call logs, to the U.S. government as part of the National Security Agency’s secret “PRISM” program.
In the letter, Apple notes that the government had in fact issued several thousand requests for such information, but that Apple’s legal department had carefully examined each request and turned over only the smallest amount of information necessary, sometimes rejecting requests outright.
From December 1, 2012 to May 31, 2013, Apple received between 4,000 and 5,000 requests from U.S. law enforcement for customer data. Between 9,000 and 10,000 accounts or devices were specified in those requests, which came from federal, state and local authorities and included both criminal investigations and national security matters. The most common form of request comes from police investigating robberies and other crimes, searching for missing children, trying to locate a patient with Alzheimer’s disease, or hoping to prevent a suicide.
Apple has placed a link to the full letter at the bottom of their home page, or you can read the entire thing after the break.
Expand
Expanding
Close
Bloomberg reports that the Berlin Regional Court in Germany has told Apple to change its policies for managing customer’s data on its website after ruling that Apple’s terms for data use go against German laws. According to a statement posted by a German consumer group Verbraucherzentrale Bundesverband (VSBV), the courts have ruled that Apple cannot request “global consent” for use of a customer’s data” without informing the user of where and how the data will be used. It will also no longer be able to use German users’ data to “promote location-based services and products” or deliver the data to third-parties for advertising purposes:
Expand
Expanding
Close
The Federal Trade Commission released a report today that recommends how owners of mobile platforms can better inform consumers about how their data is being handled. The FTC named a number of companies in its report, including: Amazon, Apple, BlackBerry, Google, and Microsoft, as well as “application (app) developers, advertising networks and analytics companies, and app developer trade associations.”
The recommendations follow the FTC updating its online child privacy law to require parental consent before collecting data from children under the age of 13. It also came as Path agreed to pay an $800,000 settlement to the FTC forviolations of the Children’s Online Privacy Protections Act. Path posted a response to the FTC settlement on its website.
In the report, titled “Mobile Privacy Disclosures, Building Trust Through Transparency,” the FTC issued a number of recommendations. The FTC recommended that all platform owners “Provide just-in-time disclosures to consumers and obtain their affirmative express consent before allowing apps to access sensitive content like geolocation.” It recommended app developers take the same measures in addition to having “a privacy policy and make sure it is easily accessible through the app stores.” The report also suggested that companies implement a ” a one-stop “dashboard” into their operating systems so consumers can easily view how their data is being handled by specific apps.
Other recommendations the FTC asked Apple and others to implement include new icons that “depict the transmission of user data” and a “Do Not Track” option for users to easily opt out of their data being sent to third parties.
“FTC staff strongly encourages companies in the mobile ecosystem to work expeditiously to implement the recommendations in this report. Doing so likely will result in enhancing the consumer trust that is so vital to companies operating in the mobile environment. Moving forward, as the mobile landscape evolves, the FTC will continue to closely monitor developments in this space and consider additional ways it can help businesses effectively provide privacy information to consumers,” the report states.
A full list of the recommendations made by the FTC for mobile platform owners, advertising agencies, and app developers is below:
Expand
Expanding
Close
Manage push notifications