> rather their method for accessing the data without user intervention.
Nonsense. The user did intervene: with an OAuth 2 flow. The user doesn't intervene with every API call or database query a data export makes.
What you're really getting at is "the user can't authorize someone else to look at their data". That's like a hospital saying your spouse can't get an update on your condition in the emergency room because you didn't hand the documents to them yourself.
It's certainly well within their right to change this rule and cut off API access, but I suspect a lot of people are going to tell them to go screw themselves.
Nonsense. The user did intervene: with an OAuth 2 flow. The user doesn't intervene with every API call or database query a data export makes.
What you're really getting at is "the user can't authorize someone else to look at their data". That's like a hospital saying your spouse can't get an update on your condition in the emergency room because you didn't hand the documents to them yourself.
It's certainly well within their right to change this rule and cut off API access, but I suspect a lot of people are going to tell them to go screw themselves.