We all know that apps gather our knowledge. Yet one of many few methods to seek out out what an app does with our info entails studying a privateness coverage.
Let’s be actual: Nobody does that.
So late final yr, Apple launched a brand new requirement for all software program builders that publish apps via its App Store. Apps should now embody so-called privateness labels, which checklist the sorts of knowledge being collected in an simply scannable format. The labels resemble a diet marker on meals packaging.
These labels, which started showing within the App Store in December, are the most recent try by tech designers to make knowledge safety simpler for all of us to know. You may be conversant in earlier iterations, just like the padlock image in an online browser. A locked padlock tells us web site is trusted, whereas an unlocked one suggests web site may be malicious.
The query is whether or not Apple’s new labels will affect the alternatives folks make. “After they read it or look at it, does it change how they use the app or stop them from downloading the app?” requested Stephanie Nguyen, a analysis scientist who has studied consumer expertise design and knowledge privateness.
To put the labels to the check, I pored over dozens of apps. Then I targeted on the privateness labels for the messaging apps WhatsApp and Signal, the streaming music apps Spotify and Apple Music and, for enjoyable, MyQ, the app I take advantage of to open my storage door remotely.
I discovered a lot. The privateness labels confirmed that apps that seem equivalent in perform can vastly differ in how they deal with our info. I additionally discovered that a number of knowledge gathering is going on whenever you least count on it, together with inside merchandise you pay for.
But whereas the labels had been usually illuminating, they often created extra confusion.
How to Read Apple’s Privacy Labels
To discover the brand new labels, iPhone and iPad customers with the most recent working system (iOS and iPadOS 14.three) can open the App Store and seek for an app. Inside the app’s description, search for “App Privacy.” That’s the place a field seems with the label.
Apple has divided the privateness label into three classes so we will get a full image of the varieties of data that an app collects. They are:
Data used to trace you. This info is used to comply with your actions throughout apps and web sites. For instance, your electronic mail deal with will help establish that you simply had been additionally the individual utilizing one other app the place you entered the identical electronic mail deal with.
Data linked to you: This info is tied to your id, reminiscent of your buy historical past or contact info. Using this knowledge, a music app can see that your account purchased a sure tune.
Data not linked to you: This info is just not straight tied to you or your account. A mapping app may gather knowledge from movement sensors to offer turn-by-turn instructions for everybody, as an illustration. It doesn’t save that info in your account.
Now let’s see what these labels revealed about particular apps.
WhatsApp vs. Signal
On the floor, WhatsApp, which is owned by Facebook, appears to be nearly identical to Signal. Both offer encrypted messaging, which scramble your messages so only the recipient can decipher them. Both also rely on your phone number to create an account and receive messages.
But their privacy labels immediately reveal how different they are under the hood. The first one below is for WhatsApp. The next one is the one for Signal:
The labels immediately made it clear that WhatsApp taps far more of our data than Signal does. When I asked the companies about this, Signal said it made an effort to take less information.
For group chats, the WhatsApp privacy label showed that the app has access to user content, which includes group chat names and group profile photos. Signal, which does not do this, said it had designed a complex group chat system that encrypts the contents of a conversation, including the people participating in the chat and their avatars.
For people’s contacts, the WhatsApp privacy label showed that the app can get access to our contacts list; Signal does not. With WhatsApp, you have the option to upload your address book to the company’s servers so it can help you find your friends and family who are also using the app. But on Signal, the contacts list is stored on your phone, and the company cannot tap it.
“In some instances it’s more difficult to not collect data,” Moxie Marlinspike, the founder of Signal, said. “We have gone to greater lengths to design and build technology that doesn’t have access.”
A WhatsApp spokeswoman referred to the company’s website explaining its privacy label. The website said WhatsApp could gain access to user content to prevent abuse and to bar people who might have violated laws.
When You Least Expect It
I then took a close look at the privacy label for a seemingly innocuous app: MyQ from Chamberlain, a company that sells garage door openers. The MyQ app works with a $40 hub that connects with a Wi-Fi router so you can open and close your garage door remotely.
Here’s what the label says about the data the app collected. Warning: It’s long.
Why would a product I paid for to open my garage door track my name, email address, device identifier and usage data?
The answer: for advertising.
Elizabeth Lindemulder, who oversees connected devices for the Chamberlain Group, said the company collected data to target people with ads across the web. Chamberlain also has partnerships with other companies, such as Amazon, and data is shared with partners when people opt to use their services.
In this case, the label successfully caused me to stop and think: Yuck. Maybe I’ll switch back to my old garage remote, which has no internet connection.
Spotify vs. Apple Music
Finally, I compared the privacy labels for two streaming music apps: Spotify and Apple Music. This experiment unfortunately took me down a rabbit hole of confusion.
Just look at the labels. First is the one for Spotify. Next is the one for Apple Music.
These look different from the other labels featured in this article because they are just previews — Spotify’s label was so long that we could not display the entirety of it. And when I dug into the labels, both contained such confusing or misleading terminology that I could not immediately connect the dots on what our data was used for.
One piece of jargon in Spotify’s label was that it collected people’s “coarse location” for advertising. What does that mean?
Spotify said this applied to people with free accounts who received ads. The app pulls device information to get approximate locations so it can play ads relevant to where those users are. But most people are unlikely to comprehend this from reading the label.
Apple Music’s privacy label suggested that it linked data to you for advertising purposes — even though the app doesn’t show or play ads. Only on Apple’s website did I find out that Apple Music looks at what you listen to so it can provide information about upcoming releases and new artists who are relevant to your interests.
The privacy labels are especially confusing when it comes to Apple’s own apps. That’s because while some Apple apps appeared in the App Store with privacy labels, others did not.
Apple said only some of its apps — like FaceTime, Mail and Apple Maps — could be deleted and downloaded again in the App Store, so those can be found there with privacy labels. But its Phone and Messages apps cannot be deleted from devices and so do not have privacy labels in the App Store. Instead, the privacy labels for those apps are in hard-to-find support documents.
The result is that the data practices of Apple’s apps are less upfront. If Apple wants to lead the privacy conversation, it can set a better example by making language clearer — and its labeling program less self-serving. When I asked why all apps shouldn’t be held to the same standards, Apple did not address the issue further.
Ms. Nguyen, the researcher, said a lot had to happen for the privacy labels to succeed. Other than behavioral change, she said, companies have to be honest about describing their data collection. Most important, people have to be able to understand the information.
“I can’t imagine my mother would ever stop to look at a label and say, ‘Let me look at the data linked to me and the data not linked to me,’” she said. “What does that even mean?”