It's a really anti-competitive strategy by google, because it gives users the ability to regulate permissions for single apps effectively (limiting the ability of other companies to collect personal data) and on the other hands strengthens googles own ability to collect all your data, making their marketing platform even more valuable. It is high time regulators start cracking down on this anti-competitive behavior when it comes to data collection. Either give all companies the same chance to collect users data or give users a real option to disable it for all applications (even the ones by google).
I think the oily rags metaphor applies. They collect all your data but it's not worth much individually. But yet they want all of it ignoring your needs and rights for privacy.
I know that "when it's free I am the product" but the problem is that this is not very obvious when you buy a device.
My $100,- Motorola Moto C plus is great but I can't remove the Google search box from my home screen for example.
What would be great is that producers would tell how much I am the product because Google sponsored X, Y and Z to make the phone cheaper. Then a consumer can make the choice to buy a more expensive one or just accept that "you are the product".
This was one of the grounds for the EU's recent antitrust action. If Google don't want to face another multibillion dollar fine in the very near future, we should see far more choice over whether to use Google services on Android.
Because Apple seems to get away with everything. They basically removed the ability to have other browsers on iOS by restricting the performance of other browsers, so all the other browsers became reskins of Safari. And nothing happened to them.
There are serious antitrust concerns about the iTunes Store, with a relevant case due to be heard by the US Supreme Court.
Maybe that's true globally, but it's not true of first world countries.
iPhone's market-share is over 40% in the USA, for instance. https://www.statista.com/statistics/266572/
If Apple would have a monopoly in EU and forced it's other services then I think Apple will have same issue Google and Microsoft had.
My opinion is that Apple should be forced to be repair friendly and give the user full control of his hardware(let me install what I want like in OSX) , so I am not an Apple fan.
Android is fun to tinker on but when I'm stuck on the side of the road needing help, I'm sure glad I don't have a hacking project in my pocket.
Given that Apple has no data recovery service for any of their products (even if you tell them that you'll give them a limitless pile of cash) and that they solder storage into most of their devices (that is paired to the CPU -- so you cannot remove the flash chip and put it onto a working board to recover data), this is a very bold claim.
Maybe you don't need your phone to be repaired when it is water damaged and you can no longer get photos of your children (that you should've backed up, but didn't). Maybe you want to pay US$300 to replace an out-of-warranty phone when the only thing wrong with it is that a headphone jack got stuck inside the port. Maybe you don't want to pay more than the device is worth to fix a brand-new device.
Apple devices aren't just hard to repair, Apple as a company is anti-repair -- and defending this practice is not a reasonable position to hold. I understand arguing that Apple products are easier to use, or that they are more consumer-friendly, or that consumers shouldn't have full control over their devices because they'll probably brick them, and so on. But arguing that them being irreparable is a good thing is not justifiable (even if you don't need your device repaired, someone else will, and out-right ignoring that is misinformed).
I believe Apple have the ability to read any data in an iCloud backup. The data on my phone include my password file, encrypted with an easy-to-type-on-a-screen-keyboard password, which means that it's not a high-entropy password. There's no way that I would allow a cloud provider access to that file.
Note, Apple do say on https://support.apple.com/en-us/HT202303 that it's all end-to-end encrypted and they cannot read the backup, but they also say 'To access your data on a new device, you might have to enter the passcode for an existing or former device,' which implies that if one loses a device then one can buy a new device and enter the old device's passcode — which means that Apple themselves could just try passcodes iteratively.
If it's possible for you to restore data from a lost device without typing in a high-entropy password, then it's possible for Apple to read the data without guessing a high-entropy password.
Apple's not going to violate the trust of all of its users by iteratively guessing each user's passcodes. Don't be silly.
Apple can't read your data even if they want to and the device itself is programmatically locked after a set number of attempts and wipes itself after several more. Stop spreading FUD.
This doesn't help someone who never set up iCloud, has forgotten their password and/or methods of recovery, or any other list of problems. iCloud is a form of backup, by the way, and I specifically mentioned people that didn't set up backups. If you think I'm cherry-picking or coming up with some imaginary position, watch some of Jessa Jones' videos. Many of her customers are in a position where they need data on their phones, and it's not in iCloud.
> You take the device apart and damage it in the process then why should the company stand by that?
They wouldn't repair it at all -- they were willing and wanted to pay for the repair. There were many arguments online why they didn't want to repair it (including that the Apple store couldn't get the parts from Apple, they weren't certified to repair it because they were still on the certification waiting list, etc). And of course you can't buy replacement parts because it's Apple (though eventually they managed to get replacement parts, it definitely was not by following the rules). Other manufacturers don't act this way.
> fine consumers sue them for every little thing they do
"little things" like manufacturing defective keyboards and denying that it's defective and refusing repairs or returns until enough people get together to sue them so that they fix a defective product? Or "little things" like using the wrong kind of capacitor near a GPU, causing GPUs to fry in almost every edition of the Macbook -- prompting recalls (or as they call them: "extended warranty programs") only after lawsuits?
I can't imagine why consumers would ever sue such a lovely company. /s
> Your first source is just some guy talking and nobody has the time to watch that BS.
The tl;dr is that 3rd-party (unauthorised) repair shops appear to be far more knowledgeable and reasonable about repairing iPhones and other Apple devices than authorised repair shops. If you'd like the longer form summary, watch the video.
As an iPhone and Macbook user I agree with you that repairability is an issue. To be honest it is something I am taking seriously in my next laptop purchase and might be the issue that tips me back over to PC/Android. I definitely will not be "upgrading" to the new touchbar, keyboard and trackpad.
Oh, I didn't know that. I haven't used an Apple device in more than half a decade.
However, there are still many people that use the data recovery service offered by people like Jessa Jones -- so I imagine that this is still an issue people have even with newer devices.
So if you use the device incorrectly, it doesn't work? How exactly is Android better if whatever you happen to need is stored on the device and not an SD card?
[EDIT: Apparently iCloud backups are enabled by default since iOS 9. TIL.]
iCloud is optional, is it not? The last time I used an iDevice (maybe 6 years ago) I didn't set up iCloud and I don't remember being forced to use it -- has that changed? If it is still optional, then I don't see how not using iCloud is "using the device incorrectly". Is this the new "you're holding it wrong"? Or "you should've bought AppleCare"?
Of course people should have backups, but I'd like to see you tell someone they should've known better when they've potentially lost their child's baby photos, or photos of their recently-deceased child. I'm not sure you'd be capable of being so callous in that sort of situation.
> How exactly is Android better if whatever you happen to need is stored on the device and not an SD card?
With most Android phones (such as Samsung ones) you can desolder the flash chip from the device and solder it onto a known-working board (or place it in a device that acts as a known-good board -- those devices can be bought from China relatively cheaply).
With iPhones you cannot do this because the data is encrypted and paired with the CPU (and a few other components on the board are paired to the CPU like the SMC). Now, you could reasonably argue that this is for security, but you couldn't argue that this is not anti-repair.
In addition, the new Macbooks have their soldered-in SSDs paired to the CPU as well. So you can't do data recovery on those without fixing the board (and apparently on those devices if a single USB-C controller dies, all of the USB-C ports die -- so you have to bring the board back to a completely working state in order to do data recovery).
I'm arguing for Joe Public. Whether or not you can desolder or resolder a flash chip impacts whether Joe Public will be able to find a repair shop (run by a Dave Hacker) that can recover his data -- I wasn't arguing that Joe Public should be desoldering chips from his phones motherboard.
There are repair shops that recover data from Apple devices, but the fact that the chip is paired to the CPU means that (in the case of water damaged devices) you need to get the board to boot successfully with a working touch-screen in order to pull the data off via USB. If the CPU is dead then your data is gone, even if the flash chip is still fully functional. If you had the same situation with a Samsung device, you can remove the flash chip and place it into an "enclosure" that pulls the data off without needing to fix the broken phone.
And I completely agree that pairing the flash chip to the CPU is more secure against attackers taking your data if they've got hold of your phone. But it does mean that the phone is inherently less repairable -- which consumers should be aware of because it does affect them (even if they are just "a user").
One has a broken keyboard that I'm desperately trying to hold together with tape and one hasn't. Hint: the not broken device was a third of the price of a new iPhone X, while the broken one is more than 3 times as expensive. I want you to be right so bad..
Just sticking to phones: I switched from iPhone to android years ago and honestly things are more stable over here (the legacy iOS I used back than VS any android version I tried).
For comparison, in the USA, from the same source: Android 47.39%, iOS 52.19%.
I think that’s an accurate description of how Apple became a big phone company in the first place: Exploiting their monopoly of the MP3 player market.
Second, I question the mechanism by which Apple parlayed this into making the iPhone as strong a player in the cell phone market as it is (and it is certainly not in anything like a commanding position). Buying an iPhone would pretty much mean replacing your iPod. It wasn't a situation where having an iPod meant you would only be able to effectively use them together by buying an iPhone.
The only part of the puzzle I could see even remotely contributing to a "lock-in" factor was the DRM on the iTunes store. But by the time that was removed, in 2009, Apple still hadn't had a single quarter where they sold more than 8 million iPhones.
No; I dispute your conclusion entirely.
Apple became a big phone company by making a phone that people actually enjoyed using. It was the user-friendliness of the capacitive touchscreen and the overall iOS UI that made the difference, and continues to do so, not the long-since-defunct iTunes Store DRM or some other handwavy effect of their "monopoly of the MP3 player market".
Second: Good argument! :)
My line of reasoning was: iPod+iTunes -> lots of people with big music collections tied into iTunes -> release of iPhone, which requires iTunes to sync with desktop -> iPhone becoming a major player in phone world.
There was a point where I got a Touch version of the iPod because it was much cheaper (thinner) than the equivalent iPhone at that time, and I was fine with whatever other phone I had. I'm pretty sure this was at a time when the iPhone was already extremely popular.
Sharing Android with other manufacturers is absolutely ok, that's not what the EU fined them for. It was the anti-competitive contractual clauses they used to strong-arm licensees on order to get preferential treatment in other ways that were deemed illegal.
Apple isn't using it's market position to coerce anybody though. There's no law telling Apple that they have to provide an App Store at all. The equivalent case would be if Apple were to make approving a company's App on the App Store conditional on the company agreeing to some other contractual conditions preferential to Apple, using app store approval to hold companies ransom. That sort of extortion would clearly be an abuse. For example Apple only approving App Store apps showing ads if they used Apple's own ad network might be a step too far.
In the case of browsers, Apple isn't using approval of other browsers on the App Store as leverage to extort anything out of anyone. They are simply selling a product that has this feature (a browser) and not this other feature (the ability to install browsers based on a different rendering engine). It's the extortion that's the problem.
This isn't accurate, and Chrome and Firefox are viable, performant, alternatives to Safari. All browsers are using WKWebView engine, and at least for the last 2.5 years, all have access to Nitro JS engine, so there is no performance penalty for third party browsers.
> all the other browsers became reskins of Safari.
That's what he's saying. You can't implement your own JIT on iOS. Even if you have a better idea/algorithm than Nitro JS, you're limited to how fast safari is.
It's funny how in a different discussion, it will be crowed that Android runs on 84% of smartphones world-wide. But when it's time to pull out the whataboutisms, Apple is first against the wall as a monopolist, while poor, beleaguered Android tries to fight them off.
I just pulled that number out my arse, but Apple has nowhere a monopoly on smartphone operating systems, so they can do what ever they please. Don't like it? They have competitors that would love for you to buy one of their phones.
really? didn't know that. and I've been using Chrome thinking it's better than Safari. Little did I know...
You can disable Google News feed, you can remove Google Search from home screen, you can even use Bing as Assist app (long press on Home icon) in place of Google. Everything on stock Android Oreo on Sony Xperia.
Hey, you can even disable location services. Use VPN with split tunelling for Google Play Services.
Google is no saint but it ain't a devil either.
The constant nagging to enable Location History is the worst though.
You can remove it if you disable "Google Play Services" in Settings -> Apps. Of course if you do then can't use the android store or most apps.
I use the alternative fdroid repository and it works fine.
F-Droid doesn't have Signal, Whatsapp, Firefox and VLC. No one can seriously expect a normal user to do without Google Play Services (I checked F-Droid every week to, one day, hopefully, turn Google Play Service off. Forever).
So 99.9% of Android users are forced to feed Google with all their location data. And the .1% who resists have very little influence on the surveillance state. That's infuriating.
You can sideload signal and it works without google cloud messaging. I use signal every day. It works fine.
You can sideload Firefox or use Fennec from fdroid, a firefox rebuild without proprietary software.
Yep that probably won't work. Most proprietary android applications use google play framework. This will only get worse. "Android" is less and less free with every release. Google keeps adding functionality to the proprietary libraries on top of the free base.
It used to be in fdroid but is a nightmare to build so it was removed.
> No one can seriously expect a normal user to do without Google Play Services
Probably. I was just sharing my personal experience.
> very little influence on the surveillance state
Ha! Most HN readers are enthusiastically building the surveillance state.
Whatsapp distribute the apk directly from their site if you want it, and have done for years. My MiL uses it on a 2013 Nexus7 as she doesn't want a smartphone (even though they say tablets aren't supported)
Sideloaded whatsapp works fine.
Also F-Droid has Yalp now which lets you download APKs directly from the play store without running play/play services.
i update apps through Yalp store
only app i really lost it's Google photos, sharing photos through 1TB Flickr or WhatsApp it's not exactly ideal compared to workflow with Google photos but i @willing to pay this price for not having Google in my life
Not sure about the other 3, but I use firefox just fine on my phone without google play services. I use aptoide as my appstore in the absence of google play, and while it does have stuff in there that don't work without GPS anyway (Uber, for instance), it's been a decent replacement for me for quite a while, containing most of the stuff that f-droid doesn't have (because they're not open source) without forcing me to taint my phone with google's crap.
No argument on your 2nd point though, it's the unfortunate truth. Which is why it infuriates me a bit when the technical .1% who could actually do it the other way still don't bother and just follow the herd. I know not every hill is worth dying on, but still.
But I agree that's impractical for the average user.
Also: That’s not what “forced” means at all.
You're perpetuating their control over you.
Sorry to be the messenger.
If you buy a device, then it's not free!
I isnt googles fault. Ive not seen any naked android release where the user is forced to use the google search box from home screen or not able to remove it. Thats some 3rd party layer.
Evie is the one I am using, and my searches go to duck duck go / firefox.
It's quite annoying and show how far Google goes to shove their data collection tools down our throats.
I recommend this free and independent launcher: https://f-droid.org/en/packages/ch.deletescape.lawnchair.pla...
Advertising is a $600+ billion industry worldwide market, about $200 billion online. Largely borne by the ~1 billion population of the G-20.
This is costing your household $125/yr per person.
Has everyone forgotten the principle of first sale?
Google really ruined our opportunity to have linux mobile devices. Purism some type phones that are truly user controlled can't come soon enough.
I personally think it's a national security issue it's so bad.
Hey, that's exactly what drove me away from Facebook, 9 years ago ...
Can't you get around this with a 3rd party launcher like Nova?
Or the new tab page in Chrome. (I haven't been able to find it, at least.)
I hadn't used Google Maps in weeks. :-/
My next phone will most likely be an iPhone since Google seems more and more intent on outdoing Facebook in the e-stalking business.
Since then I’ve switched to Firefox or Safari and stopped using any Google things except YouTube. I was surprised at how easy it was to get this far.
Switched to the new Firefox - it's great. Feels like when I moved to chrome the first time.
DDG is my default search engine. I still use the google bang over 80% of the time, but hopefully that goes down over time and it's gotten me out of the habit of thinking google right away.
With 60+ accounts, I've slowly started migrating to fastmail. It will probably take a full year to do it slowly, but it will be worth it.
My last real reliance is on google maps, truly a superior product. That said, I try to keep my use to longer trips between cities, including longer road trips. I try to use Apple maps for smaller trips around town.
This isn't even necessarily all because of everything I think google does wrong, rather it only makes sense to diversify a little.
So many people I know use google/chrome/maps/gmail/android/google photos/google docs. Once I realized I was one of them it spooked me a little.
> I still use the google bang over 80% of the time, but hopefully that goes down over time
I've been using DDG since ~2011 and have found myself using the google bang more today than years ago. Maybe my searches today are harder for DDG? For sure though, DDG has changed. It used to respect weirder search terms much more than Google which made it more appealing to me as a programmer, but now it over zealously corrects keywords, and completely common keywords get left out. Doesn't seem to care as much about keyword order/distance in the results either. It's like they amped the fuzziness beyond what is helpful. I'm proactively quoting half of my search terms today.
> google maps, truly a superior product
I tried a few times to switch to Apple maps over the last 3 years and each time was disappointed. But about a month ago I tried again and have decided that they are really neck and neck. I don't know if it got better but my partner uses Google still and we compare options and sometimes Apple finds something better sometimes Google does but for the most part they get the same results. Some traffic data exists, including construction/accidents (I have no idea how). You lose streetview and I think the dependence on Yelp is annoying but makes sense. After using it consistently for a month I find the UI/UX is actually a lot better too. It has quirks but so does Google Maps. All that said, it's only getting better and the network effect will help! Give it another try!
If I had to guess why startpage hasn't felt the ban-hammer yet, I would say it simply isn't big enough for Google to care.
That was a lot of hand waving.
Anyway, I will continue to use !g over !s because personally I'm not _that_ paranoid (yet?) and between 1) not being signed into Google, 2) uBlock/privacy badger/decentraleyes I'm not at all concerned about them doing a good job of tracking me. My trust for Google is still greater than startpage.
Use the Startpage bang !s, or use Startpage itself. Startpage provides results from Google, AFAIK, but Startpage is designed for privacy. Startpage even has a built-in proxy service - there's a link under every search result.
(I don't know how private Startpage really is; I don't know why DDG has more credibility with privacy advocates; I don't know how they get away with providing Google's results. Does anyone know?)
By the way, the video itself is super interesting: https://www.youtube.com/watch?v=RuCnZClWwpQ
Covering up your tracks, eh? Ok, we'll play along. Everybody click on the link provided by Jorge "Totally not into iron smelting more than anyone else" GT.
I am from India, working in US. My wife recently went back to India. Plan was I will go back after 4-5 months. But she and her parents were worried that I would change my mind. I am worried that she may leave me if I don't.
One or two days after I saw the ad, I dismissed my fears of about to be divorced as my paranoia.
I have 2 YouTube accounts, the main one and another one that I use for watching porn (I like YouTube porn than those in porn sites). I never used this second account outside a VirtualBox VM. I always restore the VM to a known state every time I use this account.
I have seen that sometimes I get recommendations related to the videos I watch in this porn account when I go to YouTube from my regular Windows without even logged in. I thought may be Google is showing it based on my IP address.
4-5 days after the divorce ad, when I was speaking to my wife, she mentioned about one of her friends who divorced her husband because he didn't love her or something. I immediately felt she is indirectly warning me.
7-8 days after the divorce ad, when I checked YouTube from my regular OS without logged in, there was a recommendation video similar to the kind I watch on my VM porn account.
One possibility immediately occurred to me. What if my wife searched for divorce related stuff from India and Google's algorithm decided to show that ad thinking she is still in US? I don't know.
What do you consider YouTube porn? just asking for a friend
Unfortunate that they don’t make that clear.
Rather, the AP is interpreting location history as a feature that controls all use of geographical location for any purpose across all products. But what it actually refers to is a specific product called literally Location History which lets you see where you've been on a timeline and map.
The article does admit half way down that Google says this clearly in popups that appear when you toggle these settings on and off. So the "story" here is, if you want to call it a story, that some AP journalist and a couple of academics believe these warnings are not worded clearly enough. They may well have a point but I'm not sure this rises to the level of news.
It'd also be very hard to really eliminate _all_ use of location across all products. Even very basic queries like [buy flowers] needs some rough idea of the user's location to give results that aren't nonsense. Even just opening Google Maps has to request the tiles for your current location, and as those tiles are customised to your prior usage of maps, who you are has to be sent along with the tile query. How do you implement that without Google knowing your rough location? The provider knowing this is rather inherent to the whole concept of digital maps to begin with.
So I can't imagine Google offering the sort of setting the AP wants.
I'm sure Google has great programmers.
> Even very basic queries like [buy flowers] needs some rough idea of the user's location to give results that aren't nonsense.
No, they don't. Back in the days when no tracking was done, I could buy flowers without any problems using [buy flowers location] query myself. Hell, I often use it today, because I'm not at the location anyway and am looking for such things in advance.
Having location data is nice improvement, but it isn't a necessity.
> Even just opening Google Maps has to request the tiles for your current location
It doesn't. I can show me the world map initially until I type in what I want to see. I use it like this all the time and it works great.
> How do you implement that without Google knowing your rough location?
Let the user type in their address. It's inconvenient, but if people value their privacy more than convenience, let them.
But yes, to your wider point, you can progressively delete all location sensitivity from every product and make them annoying and hard to use in the process. And even that wouldn't work. It's a fair bet that if you search for something with a location in the query, whether it be on web search or maps, that this is where you actually are.
The reality is nobody cares about this type of privacy feature, especially because Google can't avoid knowing at least your IP address. The AP only cares because it's gone digging for an attack story.
Knowing it isn't the problem. It's in storing it permanently. When I need location-enabled services I enable location tracking on my hardware (GPS+wifi) and everything just works. Google doesn't need to keep a history of all my locations ever for their services to work properly.
And that would kill much of the usefulness for me.
It doesn't give technical details, but the article seems to make it clear that it does record locations.
If I just open Google Maps, I don't expect Google to permanently remember my location. I expect them to just serve the right map data anonymously.
The AP story is arguing that you should be able to have a Google account, and have a setting that removes all uses of location data anywhere. Google don't offer that. They do offer anonymous access though. Perhaps the AP should just use that instead.
And anyway, I think many people – especially in Europe – would agree with the AP, that Google shouldn't store location, especially when it's been told not to under a setting described as "Saves where you go with your devices".
Google Play Services is a "location provider" for a device, which means it offers an API to other apps with "enhanced accuracy". It combines a number of different signals, including GPS, WiFi and dead reckoning, to improve location accuracy.
To turn it off you either need to switch "Location Mode" to "Device Only" (up to Oreo) or you need to go to the "Google Location Accuracy" menu and turn "High Accuracy" off.
Wow. Please tell me how to that. I've been trying to do that for yeaaaars (to no avail).
I have a Moto G5 with Android 7.1. Please tell me.
Setting location mode to GPS only and disabling Location permissions / Location History for Google apps in your app settings should probably do what you want.
Google services automatically re-enable these permissions.
But if I don't like it I can turn off both "Location History" and "Web and App Activity", right?
> If you’re going to allow users to turn off something called ‘Location History,’ then all the places where you maintain location history should be turned off
It's very unintuitive that location data can be stored even when "Location History" is turned off, even if there _is_ another unrelated setting you can toggle to fix that. (Not to mention that setting turns off other things you might want to keep, like search history.)
I'm missing out on a few slick features in the Google native apps (mostly in Maps), but I'll gladly trade that for a device that is not trying to erode my privacy at every possible opportunity.
Firefox it's too slow on android, better use Brave, Bromite or Kiwi browser
i run also LOS15.1 without gapps
> Google says that will prevent the company from remembering where you’ve been. Google’s support page on the subject states: “You can turn off Location History at any time. With Location History off, the places you go are no longer stored.”
> That isn’t true. Even with Location History paused, some Google apps automatically store time-stamped location data without asking.
> For example, Google stores a snapshot of where you are when you merely open its Maps app. Automatic daily weather updates on Android phones pinpoint roughly where you are. And some searches that have nothing to do with location, like “chocolate chip cookies,” or “kids science kits,” pinpoint your precise latitude and longitude — accurate to the square foot — and save it to your Google account.
Not sure where they're getting this. Which android phones are recording location with that level of accuracy?
My understanding is that, even with the latest Round Trip Time accuracy improvements accessible with Android Pie and 802.11mc WiFi, the best case scenario is one-meter accuracy:
"RTT measures the round-trip time between two Wi-Fi devices so both your mobile phone and your access points need to support the 802.11mc protocol. As you saw, RTT can give you very fine location estimates down to one-meter accuracy"
I’ve long accepted that carrying any kind of mobile phones allows mobile operators and state actors to track one’s location – but it seems to be a constant battle for citizens to understand how they might minimise the scope and quantity of personal data being harvested by large tech companies. I don’t know enough about the letter of the law but this kind of surreptitious location monitoring (via mis-leading options when Location History is turned off) seems to violate the spirit of the GDPR.
Except in the case of using entirely offline map data, I don't know how the user can expect their location not to be revealed to the server in this case. To see the map, you have to have map data, and which data you pull is going to give a very strong hint of your location.
I guess you can distinguish between _a_ location (that you viewed) and _your_ location (that you definitely are at), but it's still an extremely strong hint that after a period of inactivity, the first location you load is probably the location where you are.
You are missing the point. While the location for which you fetch map data essentially reveals your current location, the request can be fulfilled without making a permanent record connecting that location to your Google account. The issue here is that when people turn off "Location History" in their privacy settings, they except Google not to store the location information to their Google account. But Google seems to be doing it anyway, unless you also disable "Web & App Activity".
I do have a pretty good idea what I would do to disappear from Google's radar if/when I needed - a "clean" phone that connects to internet via VPN, I would check my gmail in browser. Third party maps/navigation app and few other essential apps, none affiliated with Google. Not as convenient, but functional enough.
They were earlier found stealth downloading audio listeners on computers running Chrome that transmitted audio data back to Google.
Source: Google Chrome Listening In To Your Room Shows The Importance Of Privacy Defense In Depth
Further, most people never even know to opt-out of these tracking options in the first place, because they don't know that Google is collecting voice data.
In my world that means chrome would be able to do that; not that is actually listen/recording/uploading stuff all the time. Thats what the image popup says, at least.
I have all Google apps disabled except Google Play Services but that too does not have any permissions granted (thanks stock Nougat). It keeps bugging me every now and then to enable permissions.
By the way, for people who would want to relieve themselves of Google Play Store, I use an alternate App Store https://f-droid.org/en/packages/com.github.yeriomin.yalpstor... Sure automatic updates are a hassle, but I don't have a lot of apps so things are alright. Plus, it lets me download previous versions of apps without digging up the whole internet. I am using an old imgur app that allows browsing without sign up. :)
I still hate the ever present search bar on the home screen even after disabling the Google App. Will try Nova Launcher soon.
Posturing about evil while doing exactly that is vulgar. Google's language and design has been persistently deceptive. If you think users are 'idiots' as many software folks so derogatorily claim why go through such lengths to deceive them?
Another self serving myth to perpetuate denial and make the surveillance industry feel ok about being sellouts. Android is designed to leak data like a sieve. The very notion of privacy or security with the OS vendor and ecosystem obsessed with surveillance and collecting user data is fantastic.
Google would not be where there are had they been transparent in their communication. Users would be far more circumspect and as they learn the extent of surveillance utter disgust will quickly follow. This is just another type of corruption and fraud.
However, the number of things this breaks is frustrating: Google Fit requiring it makes some sense, but most of my Google Home features refuse to work without Location History on. It's incredibly frustrating when a physical device is artificially limited for reasons beyond a consumer's comprehension.
Google: (very intrasparently tracks your location history, even when settings are off)
HN: Yeah, nah, it's chill dude. Can't be that bad.
Google is geeky, they bid sums like $3.14 bil in auctions, how cool is that. And they have awesomely nerdy and human April 1 jokes. They are with us man. You are being paranoid.
Android data collection which has been happening for close to a decade is orders of magnitude more intrusive than what Microsoft does with basic telemetry.
Yet most people see MS as bad and embrace Google for being "ethical". A classic case of "guess what".
IDK if it's just me, but I've seen an above-average number of news stories in the last year about how Google is not a consumer-friendly, trustworthy company now. The general public is, I guess, becoming more and more aware of this perspective.
We've certainly heard a lot about Facebook's privacy breaches and other problems. As a tech company, Google's reputation is probably hurt by that too.
It seems to me that Google has probably entered a new public relations era. And it's pretty hard to go back to the old days where consumers believed in "Don't Be Evil."
Most android users just don’t realize how invasive the entire OS is and there is little they can do about it. It sucks thah Apple is the only tech company that gives a shit about privacy seriously. We definitely need more pro-privacy choice.
Like a record of every website you've gone to that uses JS served fast and free from Google, fonts served fast and free from Google, on-site search by Google (complete with a logo most likely served direct from Google), etc.
And that ignores the most obvious: Google Analytics, where in addition to telling webmasters # of distinct visitors to the site, for each of those visitors they can track "Visited site X" for their own internal use.
The point of the article is that Google is storing your location outside of the Location Timeline, and labeling it in ways that don't plainly indicate that's what's going on.
I think it would help me sleep easier with my Windows installs, though I don't know if any of them are logged into Microsoft accounts anymore.
What did Microsoft give me? Locked down ecosystem, a subpar OS, expensive office products, and a paid-for vendor specific development ecosystem that is frequently becoming just a copier of the emergent industry trends, and a feigned attempt to embrace open source (capture market share) with cringeworthy bumperstickers displaying "Microsoft Hearts Open Source"
Didn't Google deny something like this very recently saying it was an "error" (Facebook's favorite excuse, too), though?
But with phones after destruction of privacy-minded Nokia there was basically no alternative, and they executed marketing flawlessly, having both geeks and normies desiring their phones, stuffed with tracking.
Lately, there have been a vocal group defending corporate interests, globalism, monitoring/spying and censorship all over social media. Not sure why and where they came from but it's interesting how suddenly they appeared on the scene.
jevgeni made an excellent point and actually articulated his concern. Open source has absolutely nothing to do with how Google is tracking users here, and not only are there major parts in the Android ecosystem which are not open source but even more importantly, the case at hand obviously shows that is irrelevant whether something might be open source or not.
And that does not take into account that the vast majority of people do not run any version that has such features removed, as you hinted. If anything most users run versions which have additional stuff added (Samsung, etc.).
Once all of that is not true anymore you might have got a point, until then it is jevgeni who hit it on the head.
His post was flagged, so it looks like HN agrees with me about his whataboutism.
Some parts of Android are open, but the closed-source Google Play Services are de facto part of the OS, and Google's business arrangements forbid companies from selling phones without them. So in practice you're in the same situation either way.
Sometimes the request for a review would appear while I was in that place of business. I found it both annoying and disturbing.
Respectfully, fuck off.
As for the Windows 10 telemetry, during a Windows 10 install these are all of the things that are turned on by default.
1. Personalize your speech, inkling input and typing by sending contacts and calendar details, along with other associated input data to Microsoft.
2. Send typing and input data to Microsoft to improve the recognition and suggestion platform.
3. Let apps use your advertising ID for experience across apps.
4. Let Skype (if installed) help you connect with friends in your address book and verify your mobile number. SMS and data charges may apply.
1. Turn on Find My Device and let Windows and apps request your location, including location history and send Microsoft and trusted partners location data to improve location services.
Connectivity and error reporting
1. Automatically connect to suggested open hotspots. Not all networks are secure.
2. Automatically connect to networks shared by your contacts.
3. Automatically connect to hotspots temporarily to see if paid Wi-Fi services are available.
4. Send full error and diagnostic information to Microsoft.
Browser, protection, and update
1. User SmartScreen online services to help protect against malicious content and downloads in sites loaded by Windows browsers and Store apps.
2. User page prediction to improve reading, speed up browsing, and make your overall experience better in Windows browsers. Your browsing data will be sent to Microsoft.
3. Get updates from and send update to others PCs on the Internet to speed up app and Windows update downloads.
Wait, are you talking about Microsoft or Google here? :p
Most of your listed points don't relate to telemetry or are common practice with other OS vendors. I don't see why this warrants such an overreaction, when others get a pass.
Android is a toy OS. Very few does anything serious on it. A desktop OS on the other hand has access to the very most sensitive information you ever come across. If you can't trust your desktop OS everything is game over.
Windows 10 telemetry is the most convincing reason to jump ship that has ever existed in my opinion.
That said, android is of course also very bad. Problem is that there is no decent alternative to iOS and android. It is quite frustrating.
Aside from the fact that Google also owns a search engine you might've heard of (so it's not like they only make phone operating systems), I think this type of thinking is quite old-fashioned.
People put most of their lives into their phones these days. They carry them everywhere, document their lives through photos, call and text their friends wherever they are, read the news, direct them to their destination, play games, etc. To pretend that most people's primary computing device is a "toy OS" is to pretend as though we are still in 2004. That's not the world we live in anymore.
I don't personally own a smartphone anymore (precisely because of these sorts of privacy invasions), but I sure as hell wouldn't pretend that the majority of people don't use smartphones as their primary computing device. I agree that Windows is also absolutely immoral, but we shouldn't be debating which is worse here -- they're both reprehensible.
And yet it still is a toy OS, compared to what it could be if it was designed with productivity and empowering end users in mind, as opposed to being a shallow consumption and communications platform.
That's orthogonal to the tracking angle, though. GP is wrong in assuming that just because desktop Windows is not a toy OS, it's automatically exposed to more sensitive data. It's not, because - as you noted - most people use smartphones as their primary computation device (for what little it can do). There's also another angle here - desktop PCs may contain most of your work data, but people don't really care about securing that. Privacy of their personal messages and photos, which are mostly accessed via smartphones these days, is of more importance to them.
Phones are most people's only computing device. Many who have never used a traditional computer own and use smartphones.
So for instance smartphone ownership rates in India is 18%.  By contrast this article  overviews some data in a survey from Dell India which gives various hints on PC usage. Overall 51% of families have somebody that is PC literate, 79% in East India stated they used a PC at cyber cafes, and so on. It's safe to say that your hypothesis is not really supported in India.
China has a vastly higher smartphone usage, but they also have a vastly higher PC usage with dirt cheap and constantly filled cyber cafes on seemingly every corner of every street. The only information I could find on PC usage was here  but that study is hopelessly outdated. As it mentions, "according to data published by the National Bureau of Statistics of China (NBSC) (2010), the average number of home computers per 100 urban households in China increased steadily from 5.91 in 1999 to 65.74 in 2009, or at an average of 27.24 percent per year." The absurdly rapid growth rate makes it difficult to say anything other than that PC usage is certainly not rare in China. Your hypothesis is going to be, at best, questionable there and exclusively dependent upon the rural population.
 - http://www.pewresearch.org/fact-tank/2017/03/16/china-outpac...
 - https://www.huffingtonpost.in/2015/06/12/what-indian-pc-user...
 - http://firstmonday.org/ojs/index.php/fm/article/view/3767/31...
Here's my personal experience
I live in Africa. In my middle-class household, there are 10 adults - 4 Laptops, 14 smart phones and 9 TVs.
In the few African countries I have lived, cyber cafe business/usage is rapidly declining because of a combination of cheaper smartphones and cheaper mobile data.
A brand new dirt cheap smartphone costs approximately 1-2 months of minimum wage salary. It'll work 8 - 48 hours before needing a recharge. A small power bank can triple the hours.
A brand new Core i3 laptop on the other hand costs at least 6 months salary. Battery life 4 - 6 hours. And needs a modem to get online.
For what it's worth the smartphones are also very popular and start around $20, computers around $50. But they're certainly complimenting each other rather than cannibalizing. Why do you think the same might not be true in Africa?
I can't even get a used laptop for $50 in my place.
>Why do you think the same might not be true in Africa?
I can't speak for the whole of Africa. However I know two personally (Nigeria and Ghana). And a few others by acquaintances - togo, Benin...
First reason: Earning power, salaries have remained relatively static for at least 10 years but the local currencies have depreciated at least 4 times within the same period.
Second reason: Production. Computers and smartphones are produced in China and India. All components needed for these devices are available within the continent. Thus, the price would be dirt cheap there.
To put the first point in context. I'm using a 5 year old HP Envy without touch screen. I bought it for N130,000 then. The equivalent of the same laptop should cost less right? Nope. It costs N250,000+ right now.
Same thing in Ghana. 8 years ago, 1 cedi = 1usd. Now 1 cedi = 4.85 cedi. Salary for a government secondary school teacher was 800 cedi then. It's 800 cedi now.
>But they're certainly complimenting each other rather than cannibalizing.
Maybe in Asia. People who grow up using Macs find it difficult to use Windows right?
It's easy for people who grew up with PCs to use smart phones. But the reverse isn't the case. I know many people who grew up with phones but now have laptops - it's easy to spot them - they use abbreviations excessively on chat.
All they use their laptops for are movies and the occasional Microsoft word. Everything else - even gaming is done on their phones or tablets.
I hope this partly answers your question.
Thats why more and more people use it exclusively for everything, including online banking.
Making sure rules are consistently followed in a large organization takes a company-wide effort. It doesn't happen by default.
It would seem that news organizations are trying to entangle google in a cambridge analytica type of controversy, maybe thinking about the potential traffic going their way or maybe they just don't like it that the bulk of ad spending is going to Google/FB, or probably they just think it's worth publishing.
The reality is that the conflict of interest is hard to ignore and the publishing industry should consider adding disclaimers when reporting on their business rivals.
So yes, I hope they are being entangled in a Cambridge Analytica type scandal. It is the job of the press to do so.
Personally, I think the YouTube recommendation algorithm is a huge problem. Once everyone understands it, that will be the relevant scandal.
How YouTube's recommendation algorithm makes everyone more extreme, in all directions: https://www.nytimes.com/2018/03/10/opinion/sunday/youtube-po...
How YouTube's recommendation algorithm causes creation of appalling content targeted at children: https://www.youtube.com/watch?v=v9EKV2nSU8w
It is harming our society in deep and scary ways.
When the government collects data on you the fundamental reason is to protect and grow itself, not to try to empty your wallet. Some of these data may end up getting, let's say, "leaked" and used for more self serving purposes by individual politicians or political parties, but that's at least a technically illegitimate use of the data, whereas such self-serving exploitative functions by corporations are the primary use of the data.
Maybe you walk by an ice cream store and you think "I should get some ice cream". If the ice cream store wasn't there, you wouldn't have thought that. I'm sure someone could talk this up as "convincing you to want things that you otherwise wouldn't have wanted."
Maybe this is more of a problem for some people and a liquor store? But the advertising can just be: the store is there.
So much of advertising is attempting to remind people to think of things they already like, even when it's not physically present. It's a much easier sell than getting someone to try something new.
I can just mention Twitter and some people will think about checking to see what's new on Twitter.
The word I used for general market targeting was exploitation. And no, in general the mere presence of stores is not exploiting individuals. However, if I see there is a large alcoholics anonymous group at a location and decide to build a liquor store right there because of that, this would certainly be exploiting individuals. But we need not just stick with moral platitudes. The issue is not the morality, in my opinion, but the active targeting of individuals.
Want to advertise deals on nails beside a hammer display? Sure, makes sense. Want to try to turn as large of swaths of the internet as possible into data collection nodes to try to siphon off each and every detail of individuals, trade these details among companies to build even greater profile collections, and then micro-target as finely as possible while appealing to everything you know your profile indicates drives this individual's decisions? I consider this exploitative. I'd say everything is then a sliding scale in between, but we're already far enough to the extreme end that it's not especially far off to assign many of the major American tech companies to what should be the hyperbolic extreme end of that scale.
EDIT: Coincidentally enough, somebody just shared this  link. It's extremely related to this very line of discussion. Though again it relies on moral platitudes in that targeting children is somehow the heinous act. No, that may be particularly heinous but the fundamental problem is the way they actively target everybody. This is a quite demented industry we've created.
 - https://news.ycombinator.com/item?id=17750959
Maybe one of the issues is that some forms of personalizations are hidden? A billboard is obvious to everyone. When an ad is seen by people who are not its target, this raises awareness of what's going on.
When I was waiting for some updates to finish, I was browsing HN and came across a Show HN that shows you food places etc (https://www.justgetmefood.com/ - https://news.ycombinator.com/item?id=17746497). Since I was on my gaming OS, I was not logged in to Google or any of my accounts, only Steam and some other non-important things.
I tried out the app, and it promptly showed me restaurants that were 20 minutes of walking distance, from my old place! Down to the street-number. Even though I never gave away the address on that operating system (also installed after the move actually). Somewhere along the pipes, Google picked up that this was me (IP probably?) but somehow mapped me to the old address.
Have you ever logged into any services like Google or use Google Search/YouTube/Maps on your gaming PC?
I still don't know if this is a Google thing. Browsers can share location and it may be possible that it's serving up the last known location because it can't provide the current one.
«Google’s support page on the subject states: “You can turn off Location History at any time. With Location History off, the places you go are no longer stored.”
Can Google be sued for … lying?
Is there competition in Android distribution with all the features needed by most people (replacing GGL Maps with OpenStreetMaps etc.) ?
I think Eelo is trying to make a "user-friendly" distro, but it just looks like a coat of paint on top of Lineage+microG, I don't think there's much new to it.
There is a project trying to offer FLOSS alternatives, https://microg.org/ but it's still pretty rough.
I don't use Google's search but I do use Timeline frequently and find it useful enough that it's worth the risk. So I understand the difference between these different privacy settings, which AP is calling "an issue". It's not an "issue". People are freaking out like frightened mice and making it into something it's not. Fear is the motivator here, not facts.
The ability to feed the Timeline app with location data is a separate thing from turning off all other apps' ability to use location data.
Why is this so difficult for people to understand? I know the answer. Viral fear shuts off your brains' ability to think. I answered my own question.
That turned out to be significantly less dangerous than we anticipated.
What if our movements are similar? Everyone knows where you work and where your home.
Whatever the case, the next few years will decide if we value privacy or endless features.
...where "we" is limited to people in Western democracies with governments that don't oppress their citizens. People in countries that have less enlightened governments have often had a pretty bad time after posting things online in ways that security services have been able to monitor, track, and use as the basis for imprisonment and worse.
I don't believe that Google is passing data about people to oppressive regimes, but there are damn good reasons why people think privacy is important for all internet users.
The advertisers demanded but it lessens the experience ij many ways.
Cellphone companies have known your "exact" location for the last 20 years. There is a lot less oversight or scruples in the engineering teams of providers (that I have worked at) then I have seen at Google and the likes.
Nobody (but a couple of spies, smart crooks & prewarned govermental types) take any measures to hide from them, or complain about this information being available.
Luckily for us, telecom companies are not that smart|agressive when it comes to finding new revenue streams. Be it based on your (phone's) location or their excellent position to offer verified identity services, since they have a payment relation with all their customers.
See: Verizon buying up ad networks, CarrierIQ, etc
Or if it's worth making cool new features that preserve the user's privacy. I don't see that there is an inherent tradeoff.
Protecting the user is (in most of the cases) fighting ads.
Tell that to people who have been doxxed. Or people who have had their stalkers find them. Or people who have been arrested by oppressive governments...
The list goes on