Congress Weighs in on iOS Apps Collecting Address Book and Other Personal Data
Last week, controversy erupted when it was discovered that the popular iOS app Path was uploading users' entire address books to the company's servers without alerting users or asking for authorization. While Path quickly deleted all address book data on its servers and updated its app to make the data collection an opt-in service, the issue has cast a fresh light on user privacy issues on iOS.
As noted by The Next Web, U.S. Congressmen Henry Waxman and G.K. Butterfield have now weighed on in the issue, sending a letter to Apple requesting information on the company's data collection policies it imposes on App Store developers.
In a letter to Apple CEO Tim Cook, the legislators state:
"This incident raises questions about whether Apple’s iOS app developer policies and practices may fall short when it comes to protecting the information of iPhone users and their contacts."
Butterfield and Waxman then quote parts of Apple’s iOS developer website which states that Apple provides a comprehensive collection of tools and frameworks for storing, accessing and sharing data. It is then questioned whether Apple requires apps to request user permission before transmitting data about a user.
Butterfield and Waxman have requested that Apple provide answers to a series of questions by February 29, with the topics including Apple's definition of user data, how the App Store review process assesses compliance with guidelines on privacy, and data on how many apps transmit "data about a user" in general and address book data in particular. The Congressmen have also asked Apple to explain why it has not instituted a simple toggle setting for address book sharing as it has for location information.
It is not terribly unusual for Congress to request information from companies when issues related to consumer protection and privacy arise, and Apple was subject to a similar process when questions about location information arose last year. In that case, Senator Al Franken contacted Apple with questions about the company's policies, with executives from Apple and Google later testifying in a Senate hearing on the matter.
Popular Stories
Unidentified governments are surveilling smartphone users by tracking push notifications that move through Google's and Apple's servers, a US senator warned on Wednesday (via Reuters). In a letter to the Department of Justice, Senator Ron Wyden said foreign officials were demanding the data from the tech giants to track smartphones. The traffic flowing from apps that send push notifications...
iOS 17.2 has been in beta testing for over a month, and it should be released to all users in a few more weeks. The software update includes many new features and changes for iPhones, including the dozen that we have highlighted below. iOS 17.2 is expected to be released to the public in mid-December. To learn about even more features coming in the update, check out our full list. Journal ...
Apple today released new firmware update for both the Lightning and USB-C versions of the AirPods Pro 2. The new firmware is version 6B34, up from the 6B32 firmware introduced in November. Apple does not provide details on what features might be included in the refreshed firmware beyond "bug fixes and other improvements," so it is unclear what's new in the update, but prior software releases ...
Apple's Korean suppliers have begun developing smartphone under-display cameras (UDC), paving the way for the first iPhone with a true "all-screen" appearance. According to The Elec, LG Innotek has entered the preliminary development of the UDC, which sits under the display and does not result in a visible hole in the panel when the camera is not in use. A UDC differs from a typical front ...
Recently, MacRumors has received details on the battery currently being tested on the upcoming fourth-generation iPhone SE, and the information corroborates previous findings in relation to the device. The iPhone SE 4, known by its device identifier D59, is expected to use the exact same battery found in the base model iPhone 14. Partially assembled prototypes of the next iPhone SE have been ...
To boost falling iPad sales, Apple has a major refresh planned for the iPad lineup in early 2024, according to Bloomberg's Mark Gurman. Apple plans to debut new iPad Air and iPad Pro models, both of which will feature notable changes. The iPad Air will come in two sizes like the iPad Pro for the first time. The smaller model will continue to measure in at 10.9 inches, but the larger version...
Apple has shared the full release notes for iOS 17.2, which is in the final stage of beta testing and should be released to the public next week. iOS 17.2 includes a long list of new features and changes, including a Journal app, spatial video recording on iPhone 15 Pro models, several improvements to the Messages and Weather apps, a Favorite Songs playlist in Apple Music, and more. iOS...
The iOS 17.2 update that Apple is set to release to the public in the near future will bring support for the next-generation Qi2 wireless charging standard to the iPhone 13 and iPhone 14 models. Qi2 was mentioned in the release notes for the RC version of the update that came out today. With the addition of support for the new standard, iPhone 13 and iPhone 14 models will work with Qi2...
Top Rated Comments
Flashlight app wants full internet access, location and contacts? No install for you!
Example:
No. Sandboxing isn't about asking permission, it is about being able to do something or not. An app can request the ability to access your address book or not. If it requests it, it can. If it doesn't, it can't. They idea is that when deciding to accept the app or not, Apple will check whether the app has requested the ability, and if the app has any good reason to do so.
Another thing is that Apple can eventually provide sandboxed code to do things. For example, some code that lets the user choose a name from the address book and send an email to that person. That code would live in its little sandbox with access to address book and email. However, the rest of the application wouldn't be able to access the address book. So a game could allow you to send a picture to a friend that way, without itself being able to read your address book.
Isn't that what the new App Sandboxing is about in Lion?
So Congress can't do their job 9 times out of 10, and the 1 time they pressure a company to answer legitimate questions regarding consumer privacy you're equally as mad?
Slight difference I believe. If I'm using someone's services for my email and contact information - I can pretty much assume - since they are HOSTING that info - they have access to it.
However - this is completely differerent. A private device with personal data which is then being unknowingly uploaded to 3rd parties without consent.
If you don't see the difference, well....