holy shit, I just checked, and this is ridiculous! my web browsing data, app usage AND FUCKING LOCATION??? I hope that between using a VPN 99% of the time and graphene os I stopped most of that, but come on! how is this shit legal?
I just requested a copy of all my data, curious what they have on me. would be funny I’d there was a constant stream of data until the day I switched to graphene, where it drops off to none lol
T-Mobile’s privacy policy says that it collects app usage data from its customers and shares it with advertisers for ‘Relevant Ads,’ unless the customers opt out. Notably, this only affects Android users, as Apple users are spared. Mobile advertising ID (MAID) of iOS users — which is an identifier that is used to track user behavior and preferences for ad purposes — is not so readily available anymore since 2021, when Apple introduced App Tracking Transparency (ATT) feature. The feature made it much easier for iOS users to opt out of third-party tracking, which made iOS devices less useful for advertising.
I have so many more questions now.
On the Apple side
How does Apple provide data to T-Mobile? I assumed connections to their servers would be encrypted and the advertising ID, along with everything else, would be unusable.
On the Android side
How does Android provide an advertising ID to T-Mobile, and how do you opt out of giving it to them? There seems to be a “simple” opt-out available on it too:
Settings > Google > All Settings > Ads > Delete Advertising ID
And if this doesn’t work, why does it work for Apple but not Android?
You have to debloat your android. It takes a lot of time, dedication and search to find the specific things to delete or desactivate on your specific model.
It seems confusing to say “Apple users aren’t affected by this” and immediately follow it up with “…and you can disable your Apple tracking ID”, isn’t it? It implies T-Mobile is tracking you through the ID.
I’m probably overthinking this, and the article is just written a bit poorly.
Not like the T-Mobile user agreement is much more specific… Like all privacy policies, it makes you guess where things are collected
Yeah they skipped past some likely questions. I can try to fill in a little.
Apple users are assigned an advertising ID, but the user can reset (not disable IIRC) the ID whenever they want, so it might not be as useful to the carrier for profiling purposes. All that would give them is fragments of profiles that, without other identifiers like phone or email, might be impossible to associate with their customer.
Android users tend to have numerous and more persistent identifiers available for profiling, and manufacturers have been permissive with carrier partners re: daemons, kernel extensions, and custom telecom apps. I think that’s what the article meant was unique to Android. Carrier tracking can just be more deeply embedded in these systems, beyond the obvious bloatware apps and widgets.
Interestingly, Apple sells similar tracking functionality for custom provisioned commercial devices IIRC, complete with the uninstallable apps, enhanced telemetry, etc. So it’s not like they can’t or won’t track users as a paid service, they just have no reason to let carriers do it on their equipment.
Agreed, though I might add that a number of manufacturers have been known to dabble in data brokerage as well.
It might sound paranoid, but Android is built around data collection, and in practice it’s just a feeding frenzy. The carrier, the manufacturer, the ad platforms, the advertisers, the app developers, everyone gets pieces of you and none take responsibility for the pieces the others take, since it’s outside the scope of their offering.
The best bet is a clean flash, Lineage or the like, and strictly open source apps. I’d encourage any user who can’t or won’t go through that process to stick to iOS. It’s not perfect but it has the best default privacy protections by a significant margin and the refurb market has many affordable units. Factory Android these days is a privacy nightmare.
I use the free AdGuard DNS for my phone, which has worked beautifully for me. At home I do my own DNS filtering.
Glad this was posted, because I double-checked my privacy settings on Visible (Verizon’s MVNO) and I was opted in to marketing bs even though I thought I did a full sweep when I switched to their service.
You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !privacyguides@lemmy.one
In the digital age, protecting your personal information might seem like an impossible task. We’re here to help.
This is a community for sharing news about privacy, posting information about cool privacy tools and services, and getting advice about your privacy journey.
You can subscribe to this community from any Kbin or Lemmy instance:
Check out our website at privacyguides.org before asking your questions here. We’ve tried answering the common questions and recommendations there!
Want to get involved? The website is open-source on GitHub, and your help would be appreciated!
This community is the “official” Privacy Guides community on Lemmy, which can be verified here. Other “Privacy Guides” communities on other Lemmy servers are not moderated by this team or associated with the website.
Moderation Rules:
We prefer posting about open-source software whenever possible.
No soliciting engagement: Don’t ask for upvotes, follows, etc.
Surveys, Fundraising, and Petitions must be pre-approved by the mod team.
Be civil, no violence, hate speech. Assume people here are posting in good faith.
Don’t repost topics which have already been covered here.
News posts must be related to privacy and security, and your post title must match the article headline exactly. Do not editorialize titles, you can post your opinions in the post body or a comment.
Memes/images/video posts that could be summarized as text explanations should not be posted. Infographics and conference talks from reputable sources are acceptable.
No help vampires: This is not a tech support subreddit, don’t abuse our community’s willingness to help. Questions related to privacy, security or privacy/security related software and their configurations are acceptable.
No misinformation: Extraordinary claims must be matched with evidence.
Do not post about VPNs or cryptocurrencies which are not listed on privacyguides.org. See Rule 2 for info on adding new recommendations to the website.
General guides or software lists are not permitted. Original sources and research about specific topics are allowed as long as they are high quality and factual. We are not providing a platform for poorly-vetted, out-of-date or conflicting recommendations.
holy shit, I just checked, and this is ridiculous! my web browsing data, app usage AND FUCKING LOCATION??? I hope that between using a VPN 99% of the time and graphene os I stopped most of that, but come on! how is this shit legal?
I just requested a copy of all my data, curious what they have on me. would be funny I’d there was a constant stream of data until the day I switched to graphene, where it drops off to none lol
You’re currently on grapheneos? Curious to what that have.
yea they said 45 days for them to get it to me. like how long does it take to scrape some files from your database?
Did they get back to you?
I have so many more questions now.
On the Apple side
How does Apple provide data to T-Mobile? I assumed connections to their servers would be encrypted and the advertising ID, along with everything else, would be unusable.
On the Android side
How does Android provide an advertising ID to T-Mobile, and how do you opt out of giving it to them? There seems to be a “simple” opt-out available on it too:
Settings > Google > All Settings > Ads > Delete Advertising ID
And if this doesn’t work, why does it work for Apple but not Android?
Important note about Apple:
Apple is making a living by being a gatekeeper to your data. They do not keep it private to only you, they do not keep it to themselves.
However they do not share it for free with other companies. Make no mistake: they are not doing this out of the goodness of their hearts.
You have to debloat your android. It takes a lot of time, dedication and search to find the specific things to delete or desactivate on your specific model.
2 ways of doing exactly that:
Universal debloater with adb for non rooted phones.
De-bloater more advanced but requires a rooted phone with magisk
removed by mod
Clean-custom roms are better sure, but depening your phone’s model, either it works great or it’s just a quirky mess :/
With my samsung a53 5g there isn’t any good clean official rom. Just some random unofficial, wich you either trust or not…
I wish I could install grapheneOS on mine, but as a non dev, it’s not in my power nor my capcity to do so !
deleted by creator
It seems confusing to say “Apple users aren’t affected by this” and immediately follow it up with “…and you can disable your Apple tracking ID”, isn’t it? It implies T-Mobile is tracking you through the ID.
I’m probably overthinking this, and the article is just written a bit poorly.
Not like the T-Mobile user agreement is much more specific… Like all privacy policies, it makes you guess where things are collected
Yeah they skipped past some likely questions. I can try to fill in a little.
Apple users are assigned an advertising ID, but the user can reset (not disable IIRC) the ID whenever they want, so it might not be as useful to the carrier for profiling purposes. All that would give them is fragments of profiles that, without other identifiers like phone or email, might be impossible to associate with their customer.
Android users tend to have numerous and more persistent identifiers available for profiling, and manufacturers have been permissive with carrier partners re: daemons, kernel extensions, and custom telecom apps. I think that’s what the article meant was unique to Android. Carrier tracking can just be more deeply embedded in these systems, beyond the obvious bloatware apps and widgets.
Interestingly, Apple sells similar tracking functionality for custom provisioned commercial devices IIRC, complete with the uninstallable apps, enhanced telemetry, etc. So it’s not like they can’t or won’t track users as a paid service, they just have no reason to let carriers do it on their equipment.
It does. If you purchase a device from the carrier, it’s guaranteed to be preloaded with their apps. Verizon currently states
https://www.verizon.com/legal/notices/customer-agreement/
The solution is to get a phone from the manufacturer themselves. They don’t come with carrier bloat.
Agreed, though I might add that a number of manufacturers have been known to dabble in data brokerage as well.
It might sound paranoid, but Android is built around data collection, and in practice it’s just a feeding frenzy. The carrier, the manufacturer, the ad platforms, the advertisers, the app developers, everyone gets pieces of you and none take responsibility for the pieces the others take, since it’s outside the scope of their offering.
The best bet is a clean flash, Lineage or the like, and strictly open source apps. I’d encourage any user who can’t or won’t go through that process to stick to iOS. It’s not perfect but it has the best default privacy protections by a significant margin and the refurb market has many affordable units. Factory Android these days is a privacy nightmare.
I use the free AdGuard DNS for my phone, which has worked beautifully for me. At home I do my own DNS filtering.
Glad this was posted, because I double-checked my privacy settings on Visible (Verizon’s MVNO) and I was opted in to marketing bs even though I thought I did a full sweep when I switched to their service.