Today, the China Consumers Association released the “100 App Personal Information Collection and Privacy Policy Evaluation Report” in Beijing. According to the report, among the 100 apps, as many as 91 apps listed are suspected of “crossing the border”, that is, there is a problem of excessive collection of personal information of users. In the comprehensive score, the financial management app score was low, only 28.91 points. At the same time, in the comprehensive star rating, App, such as snap-up, wing payment, E-cost, straight flush, Baicheng travel, 139 mailbox, etc., only one star.
According to the China Consumers Association, the App Personal Information Collection and Privacy Policy Evaluation Campaign was launched from August to October this year, with professional technical support from the China Electronics Technology Standardization Institute. The evaluation included 10 categories (communication social, audio and video playback, online shopping, transaction payment, travel navigation, financial management, travel accommodation, news reading, mailbox cloud disk and shooting landscaping) a total of 100 apps. All tested apps were downloaded from the App Store and Android Market from September 1st to 3rd, and the user agreement and privacy policy of the App were screened for evidence.
The evaluation results show that the App loves to collect "location information"
Personal information collection has always been the focus of attention when consumers install apps. The evaluation results show that three kinds of personal information such as “location information”, “address book information” and “mobile phone number” are the most common contents for excessive collection or use of personal information. Of the 100 apps, 59 were suspected of over-collecting “location information,” and more were excessively collected or used. In addition, personal photos, personal property information, biometric information, job information, transaction account information, transaction records, Internet browsing records, educational information, vehicle information, and SMS messages are all overused or collected. .
The evaluation found that the problem of collecting social and audio-visual apps collected location information was more prominent. There were 10 and 9 apps allegedly over-collecting user location information. For example: Mi Wei video.
China Consumers Association said that travel navigation, travel accommodation, and online shopping apps have reasonable appeals for users' personal location information based on location information, but for most social, audio and video broadcasts, filming and landscaping, news reading, and For the financial management app, calling the user's location information is not necessary for these services, and there is a suspicion of excessive collection or use.
The address book information and mobile phone number are related to the user's personal privacy. They belong to personal sensitive information and have high commercial value. Some of them only provide mobile phone number registration methods. With the convenience of mobile phone rights, it is easy to collect mobile phone numbers and address book information. Taking the collection of contacts as an example, among the 10 types of apps, 4 financial management apps and 3 audio and video apps collect user address information. The collection of mobile phone number information is more common in financial management and travel navigation apps. 10 financial management apps collect mobile phone numbers, and 8 travel navigation apps require mobile phone number registration when registering users.
34 apps have no privacy policy
In May of this year, the recommended national standard “Personal Information Security Regulations” was officially implemented. The “Personal Information Security Regulations” put forward requirements for the collection, preservation, use and circulation of personal information, which is an important reference for domestic personal information protection practice. standard. This assessment assessed the content of the privacy policy in the specification.
The results show that only half (53) of the 100 apps have scores above the pass, while 13 apps have privacy terms, but scores are lower than the pass, and more than one-third (34) The privacy policy score is 0, which means that the personal information privacy policy is not disclosed to the user.
The evaluation found that there are also problems in setting the privacy clause. For example, the privacy clause is unclear. The purpose, method, scope, shelf life and location of collecting and using personal information are not clearly stated; the privacy clause is not actively presented to the user, or The presentation content is lengthy; when the user consent is granted, the user is not given enough choice; the user is not provided with access, correction, and deletion of personal information; a large amount of personal information not directly related to the provided service is collected, and the minimum standard is not observed. Regulations for collecting personal information, etc.
China Consumers Association said that the personal information collection rules mainly include two aspects, one is to clearly inform the user of the type of personal information collected, and the other is to clearly inform the user when collecting sensitive information, and inform the user of the impact of the refusal. The evaluation found that Alipay App did not indicate personal sensitive information in the type of information collected, and did not distinguish between core and additional functions, which made users easily think that the collected information is a required item.
China Consumers Association recommends speeding up privacy protection legislation
In response to the problems found in this assessment, China Consumers Association recommended strengthening privacy protection legislation to provide legal and institutional protection for consumers' personal information security; urging App developers to express privacy terms, not using default ticking methods, not using unfairness The format clause takes a significant approach to attract the attention of consumers and guides consumers to actively read and understand relevant privacy policies.
In the case of Zhongxiao Collaboration, it is said that for the typical problems found in this evaluation activity, the relevant app development managers will be advised to urge the enterprises to improve their rectification.
The use of the "Gathering Spots" App to collect personal property information is generally unclear.
Today, the Beijing Youth Daily reporter downloaded the news reading app, which was named by China Consumers Association and had a star rating of only one star, which was collected by the China Consumers Association (test version number 5.8.0). After downloading the App (updated to version 5.9.5), Beiqing Daily reporter found the privacy agreement in the settings center. The information that the platform may collect includes: personal identification (including ID card, passport, driver's license, etc.); birthday, birthplace, gender, personal phone number; network identity information (including system account number, IP address, email address); Personal property information (account balance, account changes, cash withdrawals, etc.); communication information; personal online records and log information; device information; location information.
An app lists the content of information that may collect so many users. What is the clear purpose of each collection? The reporter of Beiqing Daily found that although the agreement explained the purpose of the company's collection of information below, it is relatively unclear, such as: providing services to you; helping to design, optimize and upgrade the products and services of this platform; Personalized services, such as showing and pushing you more relevant content and advertising; for authentication, security, archiving and backup, ensuring the security of your services, and more. After reading the agreement, consumers still can't figure out what the software is for personal information. (Reporter Wang Wei)
0 comments:
Post a Comment