Numerous companies, including Facebook, Marketo, Olytics, and HubSpot, utilize custom URL query parameters to track clicks on links. For example, Facebook appends a fbclid query parameter to outbound links to track clicks, with an example of one of these URLs shown below. https://www.example.com/?fbclid=IwAR4HesRZLT-fxhhh3nZ7WKsOpaiFzsg4nH0K4WLRHw1h467GdRjaLilWbLs With the release of Firefox 102, Mozilla has added the new ‘Query Read more about New Firefox privacy feature strips URLs of tracking parameters[…]

[…] EU privacy group NOYB (None of your business), set up by privacy warrior Max “Angry Austrian” Schrems, said on Tuesday it appealed a decision of the Spanish Data Protection Authority (AEPD) to support Virgin Telco’s refusal to provide the location data it has stored about a customer. In Spain, according to NOYB, the government Read more about Spain, Austria not convinced location data is personal[…]

Facebook is collecting ultra-sensitive personal data about abortion seekers and enabling anti-abortion organizations to use that data as a tool to target and influence people online, in violation of its own policies and promises. In the wake of a leaked Supreme Court opinion signaling the likely end of nationwide abortion protections, privacy experts are sounding Read more about Facebook and Anti-Abortion Clinics Are Collecting Highly Sensitive Info on Would-Be Patients[…]

A large Covid-19 testing provider is being investigated by the UK’s data privacy watchdog over its plans to sell swabs containing customers’ DNA for medical research. Cignpost Diagnostics, a government-approved supplier trading as ExpressTest, said it intended to analyse the samples to “learn more about human health”, to develop drugs and products or to sell Read more about Testing firm Cignpost can profit from sale of Covid swabs with customer DNA[…]

Amazon is installing AI-powered cameras in delivery vans to keep tabs on its drivers in the UK. The technology was first deployed, with numerous errors that reportedly denied drivers’ bonuses after malfunctions, in the US. Last year, the internet giant produced a corporate video detailing how the cameras monitor drivers’ driving behavior for safety reasons. Read more about Now Amazon to put creepy AI cameras in UK delivery vans[…]

Twitter has agreed to pay a $150 million fine after federal law enforcement officials accused the social media company of illegally using peoples’ personal data over six years to help sell targeted advertisements. In court documents made public on Wednesday, the Federal Trade Commission and the Department of Justice say Twitter violated a 2011 agreement Read more about Twitter fined $150 million after selling 2FA phone numbers + email addresses to targeting advertisers[…]

The United Kingdom has had it with creepy facial recognition firm Clearview AI. Under a new enforcement rule from the U.K.’s Information Commissioner’s office, Clearview must cease the collection and use of publicly available U.K. data and delete all data of U.K. residents from their database. The order, which will also require the company to pay Read more about Clearview AI Ordered to Purge U.K. Face Scans, Pay GBP 7.5m Fine[…]

The average American has their personal information shared in an online ad bidding war 747 times a day. For the average EU citizen, that number is 376 times a day. In one year, 178 trillion instances of the same bidding war happen online in the US and EU. That’s according to data shared by the Read more about Your data’s auctioned off up to 987 times a day, NGO reports[…]

The European Commission has proposed controversial new regulation that would require chat apps like WhatsApp and Facebook Messenger to selectively scan users’ private messages for child sexual abuse material (CSAM) and “grooming” behavior. The proposal is similar to plans mooted by Apple last year but, say critics, much more invasive. After a draft of the Read more about New EU rules would require chat apps to scan private messages for child abuse[…]

Tracking, marketing, and analytics firms have been exfiltrating the email addresses of internet users from web forms prior to submission and without user consent, according to security researchers. Some of these firms are said to have also inadvertently grabbed passwords from these forms. In a research paper scheduled to appear at the Usenix ’22 security Read more about Web ad firms scrape email addresses before you press the submit button[…]

The government of India still claims to be a democracy, but its decade-long assault on the internet and the rights of its citizens suggests it would rather be an autocracy. The country is already host to one of the largest biometric databases in the world, housing information collected from nearly every one of its 1.2 Read more about Indian Government Now Wants VPNs To Collect And Turn Over Personal Data On Users[…]

Brave announced a new feature for its browser on Tuesday: De-AMP, which automatically jumps past any page rendered with Google’s Accelerated Mobile Pages framework and instead takes users straight to the original website. “Where possible, De-AMP will rewrite links and URLs to prevent users from visiting AMP pages altogether,” Brave said in a blog post. Read more about Brave’s De-AMP feature bypasses harmful Google AMP pages[…]

Boffins at two US universities have found that muting popular native video-conferencing apps fails to disable device microphones – and that these apps have the ability to access audio data when muted, or actually do so. The research is described in a paper titled, “Are You Really Muted?: A Privacy Analysis of Mute Buttons in Read more about Cisco’s Webex phoned home audio telemetry even when muted[…]

Google recently booted over a dozen apps from its Play Store—among them Muslim prayer apps with 10 million-plus downloads, a barcode scanner, and a clock—after researchers discovered secret data-harvesting code hidden within them. Creepier still, the clandestine code was engineered by a company linked to a Virginia defense contractor, which paid developers to incorporate its Read more about Mega-Popular Muslim Prayer Apps Were Secretly Harvesting Phone Numbers[…]

Negotiators have been working on an agreement — which allows Europeans’ personal data to flow to the United States — since the EU’s top court struck down the Privacy Shield agreement in July 2020 because of fears that the data was not safe from access by American agencies once transferred across the Atlantic. The EU Read more about EU, US strike preliminary deal to unlock transatlantic data flows – yup, the EU will let the US spy on it’s citizens freely again[…]

Google’s Messages and Dialer apps for Android devices have been collecting and sending data to Google without specific notice and consent, and without offering the opportunity to opt-out, potentially in violation of Europe’s data protection law. According to a research paper, “What Data Do The Google Dialer and Messages Apps On Android Send to Google?” Read more about Messages, Dialer apps sent text, call info to Google[…]

HBO is facing a class action lawsuit over allegations that it gave subscribers’ viewing history to Facebook without proper permission, Variety has reported. The suit accuses HBO of providing Facebook with customer lists, allowing the social network to match viewing habits with their profiles. It further alleges that HBO knows Facebook can combine the data Read more about HBO hit with class action lawsuit for allegedly sharing subscriber data with Facebook[…]

Italy’s data privacy watchdog said it will fine the controversial facial recognition firm Clearview AI for breaching EU law. An investigation by Garante, Italy’s data protection authority, found that the company’s database of 10 billion images of faces includes those of Italians and residents in Italy. The New York City-based firm is being fined €20 Read more about Italy slaps creepy webscraping facial recognition firm Clearview AI with €20 million fine[…]

The country’s forthcoming Online Safety Bill will require citizens to hand over even more personal data to largely foreign-headquartered social media platforms, government minister Nadine Dorries has declared. “The vast majority of social networks used in the UK do not require people to share any personal details about themselves – they are able to identify Read more about UK Online Safety Bill to require more data to use social media – eg send them your passport[…]

Israeli authorities say it should be probed and U.S. authorities are calling for it to be sanctioned, but EU officials have a different idea for how to handle Pegasus spyware: just ban that shit entirely. That’s the main takeaway from a new memo released by EPDS, the Union’s dedicated data watchdog on Tuesday, noting that Read more about EU Data Watchdog Calls for Total Ban of Pegasus Spyware[…]

received email from two people who told me that Microsoft Edge enabled synching without warning or consent, which means that Microsoft sucked up all of their bookmarks. Of course they can turn synching off, but it’s too late. Has this happened to anyone else, or was this user error of some sort? If this is Read more about Is Microsoft Stealing People’s Bookmarks, passwords, ID / passport numbers without consent?[…]

Crisis Text Line, one of the nation’s largest nonprofit support options for the suicidal, is in some hot water. A Politico report last week highlighted how the company has been caught collecting and monetizing the data of callers… to create and market customer service software. More specifically, Crisis Text Line says it “anonymizes” some user Read more about Suicide Hotline Collected, Monetized The Data Of Desperate People, Because Of Course It Did[…]