SafeDK: 55% of mobile apps don’t comply with European privacy regulations

移动互联 2018-01-20

More than 55 percent of all mobile apps may not comply with the new European privacy regulations and Google Play privacy policies that go into effect this spring, according to a report from SafeDK , a marketplace that monitors the use of software development kits (SDKs) in mobile apps.

The European Union’s General Data Protection Regulation goes into effect in Europe on May 25, and it strengthens the rights of individuals to control the use of their personal data. SafeDK’s latest report found that more than half of the hundreds of thousands of Android apps in the study used at least one SDK that accessed users’ private data. The most commonly accessed private data was a user’s location (26 percent), and the second was data about the apps installed on the user’s device (40 percent). Nearly 30 percent of the apps used an SDK that accessed a user’s contacts.

Herzliya, Israel-based SafeDK studied the apps and matched their use of more than 1,000 SDKs. More than 58 percent of ad network SDKs also accessed a user’s location. SafeDK said these mobile app companies will have to make code changes in the near future to comply with both the GDPR and Google Play requirements. They will also need to evaluate and monitor their third-party SDKs.

Above: Private data access is common with mobile app SDKs.

Image Credit: SafeDK

The average number of SDKs per mobile app is 18.5. Sports, dating, and shopping apps have been particularly busy adding more SDKs in the past quarter.

SafeDK said that integrating SDKs is important for mobile app companies. But those SDKs are often “black boxes” of third-party code that app publishers integrated into their apps. In the past few months, integrated SDKs have been sources of lawsuits about the collection of private user data from underage users.

And after May 25, the EU will require that users must be made aware that the information is taken or passed to third parties, they have the right to be “forgotten” (having all personal details deleted from servers), and more. Any violation could result in extremely high fines. Google also said it will start enforcing stricter regulations about private user data access. Starting in February, apps must only access information integral to their core functionality or provide information about the data being taken.

One of the examples Google gives of unnecessary private user data being accessed (and soon to be verboten) is access to the list of installed apps on a user’s device. This information is not guarded by any permission that user can grant or revoke, but is rather up for grabs, SafeDK said. The intention was to check for installed apps so they can communicate with one another whenever possible. However, it appears this information is being accessed for other purposes and far too often for Google’s liking.

VentureBeat

责编内容by:VentureBeat (源链)。感谢您的支持!

您可能感兴趣的

iOS 11.3.1 now available to download with fix for ... Less than a month after rolling out iOS 11.3 to the masses in late March , Apple has released a ...
“Comment It!” iPhone App Keeps the Memories of You... Can't remember when and why you had captured a special photo sitting quietly in one of the folders i...
10 Best Emulators for Android to Game Retro Style If you miss theold video games How to Play Retro Games on Any Platform With DOSBox How to Pl...
腐基耽美都不能做了,微博开始清理违规漫画游戏内容... 微博本次行动主要的清查对象包括涉黄的、宣扬血腥暴力、同性恋题材的漫画及图文短视频内容等,如包含“腐、基、耽美、本子”等特征的内容。此前有关部门已下达指示打击低俗、鬼畜混剪等内容。 最近,...
那个时间轴「清奇笔记本」Pendo 已经有 Android 版本了... Pendo 是一款用来写笔记、记待办、计划日程的应用,小众软件在 16 年介绍过他们的iOS 版本,去年 9 月份的时候,就发布了 Android 版本,而在年初,1.1 版本也更新了。@Appin...