AMERICAN CONSUMERS! BE
RESPONSIBLE AND PROTECT YOURSELVES!
There are certainly things the federal government and states should do to protect the American consumer, and hopefully we cover most of these in this section. BUT, we as consumers need to do far more to protect ourselves — and that can begin TODAY! We have all been far too lazy and sloppy when it comes to all things Internet.
Take the app ToTok, for example. ToTok is an app that was downloaded millions of times from the Apple and Google app stores by consumers throughout the world. In fact, when it was first launched, ToTok was the most downloaded social app in America for a short period. ToTok was advertised as a user-friendly, secure way to chat by video or text message. However, according to an investigative report by The New York Times, ToTok is actually a spying tool used by the United Arab Emirates to track everything about everyone who installs it on their phones. Uh oh! After the The New York Times report, Google and Apple removed ToTok from their app stores.
In December 2019, New York Times Opinion released a special report called One Nation, Tracked. Spoiler Alert! It is super scary.
"The investigation, which builds on work last year by The Times’s newsroom, was based on a dataset provided to Times Opinion by sources alarmed by the power of the tracking industry. The largest such file known to have been examined by journalists, it reveals more than 50 billion location pings from the phones of more than 12 million Americans across several major cities. By analyzing these pings, our journalists were able to track the movements of Donald Trump’s Secret Service guards and of senior Pentagon officials. They could follow protesters to their homes and stalk high-school students across Los Angeles. In most cases, it was child’s play for them to connect a supposedly anonymous data trail to a name and an address — to a real live human being."
Every minute of every day, everywhere on the planet, dozens of companies — largely unregulated, little scrutinized — are logging the movements of tens of millions of people with mobile phones and storing the information in gigantic data files. The Times Privacy Project obtained one such file, by far the largest and most sensitive ever to be reviewed by journalists. It holds more than 50 billion location pings from the phones of more than 12 million Americans as they moved through several major cities, including Washington, New York, San Francisco and Los Angeles. Each piece of information in this file represents the precise location of a single smartphone over a period of several months in 2016 and 2017. The data was provided to Times Opinion by sources who asked to remain anonymous because they were not authorized to share it and could face severe penalties for doing so. The sources of the information said they had grown alarmed about how it might be abused and urgently wanted to inform the public and lawmakers.
The data reviewed by Times Opinion didn’t come from a telecom or giant tech company, nor did it come from a governmental surveillance operation. It originated from a location data company, one of dozens quietly collecting precise movements using software slipped onto mobile phone apps. You’ve probably never heard of most of the companies — and yet to anyone who has access to this data, your life is an open book. They can see the places you go every moment of the day, whom you meet with or spend the night with, where you pray, whether you visit a methadone clinic, a psychiatrist’s office or a massage parlor.
It doesn’t take much imagination to conjure the powers such always-on surveillance can provide an authoritarian regime like China’s. Within America’s own representative democracy, citizens would surely rise up in outrage if the government attempted to mandate that every person above the age of 12 carry a tracking device that revealed their location 24 hours a day. Yet, in the decade since Apple’s App Store was created, Americans have, app by app, consented to just such a system run by private companies. Now, as the decade ends, tens of millions of Americans, including many children, find themselves carrying spies in their pockets during the day and leaving them beside their beds at night — even though the corporations that control their data are far less accountable than the government would be.
Today, it’s perfectly legal to collect and sell all this information. In the United States, as in most of the world, no federal law limits what has become a vast and lucrative trade in human tracking. Only internal company policies and the decency of individual employees prevent those with access to the data from, say, stalking an estranged spouse or selling the evening commute of an intelligence officer to a hostile foreign power.
Companies say the data is shared only with vetted partners. As a society, we’re choosing simply to take their word for that, displaying a blithe faith in corporate beneficence that we don’t extend to far less intrusive yet more heavily regulated industries. Even if these companies are acting with the soundest moral code imaginable, there’s ultimately no foolproof way they can secure the data from falling into the hands of a foreign security service. Closer to home, on a smaller yet no less troubling scale, there are often few protections to stop an individual analyst with access to such data from tracking an ex-lover or a victim of abuse.
But the good news is the report also gives up smart tips on how to protect ourselves. For example:
Stop sharing your location with apps.
The most important thing you can do now is to disable location sharing for apps already on your phone. (Don’t worry, your phone will automatically send its location to emergency responders if you dial 911.) It’s easy to do this without having to open each app.
Disable your mobile ad ID.
Your online activity is often tied together and tracked using your mobile advertising ID, which is a unique number created by your phone and sent to advertisers and app makers. Since location data is sent along with your ad ID, it can be tied to other data about you. You can disable this feature entirely in your privacy settings, limiting the ways companies can tie your activities together.
Prevent Google from storing your location.
If you have a Google account, the company may already have saved a trove of location data tied to your devices. You can prevent Google from collecting this information by going to your account’s location activity controls and turning off location sharing.
Understand location tracking is hard to avoid.
You can do only so much. Location vendors are engaged in a race to find new ways to ferret out your devices, regardless of whether you followed the steps above. Some will try to identify you using your device type, I.P. address, screen size and even volume and screen brightness, in a process called “fingerprinting.” Your mobile carrier also collects location pings while your phone is turned on, regardless of whether you followed the steps above. Telecom companies were recently caught selling that data to companies that then resold it to bounty hunters, who used it to find phones in real time. The telecom companies have since pledged to stop selling the data, but they still collect it. Interested in doing more to keep your location to yourself? Try the Privacy Pro SmartVPN app, which allows users to monitor apps and block them from additional forms of data sharing.
Evidence:
Mark Mazzetti, Nicole Perlroth and Ronen Bergman. "It Seemed Like a Popular Chat App. It’s Secretly a Spy Tool." New York Times. 22 Dec 2019
Stuart A. Thompson and Charlie Warzel. "Twelve Million Phones, One Dataset, Zero Privacy." New York Times. 19 Dec 2019
Stuart A. Thompson and Gus Wezerek. "Freaked Out? 3 Steps to Protect Your Phone." New York Times. 19 Dec 2019