Google Maps for iPhone violates European data protection law, German watchdog says
The issue is that the option to share location data is on by default, says the Independent Centre for Privacy Protection Schleswig-Holstein
IDG News Service - When users install Google Maps on their iPhone, the option to share location data with Google is switched on by default. By doing this, Google violates European data protection law, according to a German data protection watchdog.
Google Maps for iPhone appeared in the App Store on Wednesday and was welcomed by many after Apple stumbled with its own maps application. Google Maps quickly became the most popular free app in the App Store.
However, the option box next to the text is switched on by default, which isn't allowed by European data protection law, said Marit Hansen, deputy privacy and information commissioner at the Independent Centre for Privacy Protection Schleswig-Holstein, Germany, in an email.
She said Google's definition of "anonymous" doesn't guarantee users complete anonymity. "All available information points to having linkable identifiers per user," which would allow Google to track several location entries, she said.
"This is clearly not anonymous," she said, adding that she had to assume that Google's "anonymous location data" is still "personal data" under European data protection law.
When a company wants to process personal data, users have to give informed consent instead of opting out, she said. "So I conclude that the current implementation is not compliant with current European data protection law, even if Google now offers an opt-out possibility," Hansen said.
In January, the Dutch Data Protection Authority (CBP) ruled that navigation service TomTom could only gather and process anonymous geolocation data it uses to map traffic after prior consent is given by the user, "because geolocation data are sensitive personal data." According to the CBP, TomTom could use the location data to deduce where someone supposedly lives.
"Such data are therefore to be regarded as personal data. When Google collects such data about routes traveled, it collects personal data for which consent must be obtained," Mark Jansen, a lawyer who specializes on IT issues, told IDG News Service partner Webwereld.
"The only basis for this processing seems to be consent. That means at a minimum that a pre-ticked box is not sufficient," he said.
This kind of data processing is also being discussed on a European level by the Article 29 Working Party, which is made up of data protection commissioners from each European Union member states, Hansen said. Her organization is part of the group, which she expects will discuss the issue further. She hopes that non-European users will also "question the behavior of companies that do not inform users properly and prefer opt-out over opt-in."
- Heartbleed flaw affects mobile apps, too
- Microsoft gets strategic with its Enterprise Mobility Suite
- Apple slates WWDC for June 2-6, sets up ticket lottery
- Nadella to Cook on Office revenue sharing: Drop dead
- Update: Microsoft unveils Office for iPad
- iOS tops Android for Web browsing in U.S. and other developed nations
- Apple ships iOS 7.1 with CarPlay support, home screen crash fix
- Apple to fix iOS 7 crash bug
- Apple rang up $10B in app sales in 2013
- Balky browsers tick off tablet owners
- Silicon Valley's 19 Coolest Places to Work
- Is Windows 8 Development Worth the Trouble?
- 8 Books Every IT Leader Should Read This Year
- 10 Hot Hadoop Startups to Watch
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- Infographic: Converged Infrastructure Benefits This Infographic quantifies the savings organizations are realizing from increased deployment speed, higher availability, and lower annual costs.
- CIOs Deliver Productivity Breakthroughs with Intelligent Digital Signage Retailers have long recognized the influence that digital signage provides over a shopper's point-of-purchase decision making process.
- Going Paperless? Here's What You Need to Think About As makers of some of the world's most popular PDF solutions, we often consult with businesses & governmental agencies that have the goal...
- The Big Data Opportunity for HR and Finance If CEOs, CFOs, CIOs, and CHROs want to drive their businesses forward, they will need to quickly recognize the enormous value of big...
- Data Protection and Disaster Recovery with iSCSI and VMware Get this on demand webcast now
- Top 4 Digital Signage Fails Join RMG Networks for a look at four of the most common reasons digital signage fails in corporate businesses. Learn about strategies to... All Privacy White Papers | Webcasts
Our new weekly Consumerization of IT newsletter covers a wide range of trends including BYOD, smartphones, tablets, MDM, cloud, social and what it all means for IT. Subscribe now and stay up to date!