Mobile apps should limit data collection, state AG says
California report also says Mobile apps should not collect data not related to their basic functionality
IDG News Service - Mobile application developers should minimize privacy surprises for their customers by limiting their data collection and retention and giving users access to the data collected, California Attorney General Kamala Harris has recommended.
Mobile apps should avoid or minimize their collection of personally identifiable data for uses not related to their basic functionality, and they should avoid or limit the collection of sensitive information, Harris and the California Department of Justice recommended in a report released Thursday. Mobile apps should also use encryption to send and store personally identifiable information, and app developers should appoint privacy officers to review their privacy policies whenever the apps are updated, Harris recommended.
App developers should also make their privacy policies easy to find and allow customers to see the policies before they download apps, the report recommended.
"Californians want to know what personal information their apps collect, how it is used and with whom it is shared," Harris said in a statement. "To meet this need and keep pace with rapidly changing technology, these recommendations strike a responsible balance between protecting consumers' personal information and fostering the continued growth of the innovative app economy."
It's important for the agency to address mobile privacy because more than half of U.S. mobile phone users access the Internet from their phones and mobile developers release more than 1,600 new apps every day, Harris said in a press release.
Mobile app privacy has been a controversial issue in recent months. Several privacy groups and some lawmakers in Washington, D.C., have called for new privacy laws after news and government reports that mobile apps collect large amounts of personal data without notifying consumers.
Harris' office reached out to the mobile industry before releasing the report. The agency wants the report to serve as a template for the mobile industry to develop privacy policies and practices that will improve consumer privacy without stifling innovation.A
Some tech industry representatives said the recommendations are a good idea, as long as they are voluntary.
The report "by offering recommendations that can serve as a useful reference for developers rather than mandates that constrain innovation, is a step in the right direction," said Daniel Castro, senior analyst with the Information Technology and Innovation Foundation (ITIF), a tech-focused think tank.
Castro praised Harris for issuing recommendations instead of suing app developers for privacy violations. But the report makes some bad assumptions about mobile apps, he added in a blog post. The report's authors said advertising is not a part of an app's basic functionality, he said.
"For all of the talk in this report about a 'mobile ecosystem,' the report authors apparently do not seem to clearly understand that this ecosystem depends on revenue," Castro wrote. "Many mobile apps are ad-supported software."
- Best iPhone, iPad Business Apps for 2014
- 14 Tech Conventions You Should Attend in 2014
- 10 Desktop Apps to Power Your Windows PC
- How to Add New Job Skills Without Going Back to School
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- OpenStack Hype vs. Reality: CIO Quick Pulse Open-source architecture can enable IT departments to build infrastructure-as-a-service (IaaS) clouds running on standard hardware.
- The Critical Role of Support in Your Enterprise Mobility Management Strategy Most business leaders underestimate the importance of tech support when they choose an EMM solution. Here's what to put on your checklist.
- Separating Work and Personal at the Platform Level: How BlackBerry Balance Works BlackBerry® Balance™ separates work from personal on the same mobile device, right at a platform level. Find out how it can work for...
- Protection for Every Enterprise: How BlackBerry Security Works Get an IT-level review of BlackBerry® Security, addressing data leakage protection, certified encryption, containerization and much more.
- Live Webcast On-demand webinar: "Mobility Mayhem: Balancing BYOD with Enterprise Security" Check out this on-demand webinar to hear Sophos senior security expert John Shier deep dive into how BYOD impacts your enterprise security strategy...
- Live Webcast Unmasking the Differences between Consumer and Enterprise File Sync & Share The consumerization of IT combined with the rapid pace of the modern mobile workplace is forcing enterprise IT teams to evaluate file sync...
- Live Webcast Workforce Mobilization for Improved Productivity A mobility research director from Aberdeen discusses reasons for extending legacy applications to mobile devices, and an integration strategist from Attachmate shows how...
- Getting Ready for BlackBerry Enterprise Service 10.2 Find out how BlackBerry® Enterprise Service 10 helps organizations address the full spectrum of EMM challenges, while balancing the needs of both the...
- Containerization Options: How to Choose the Best DLP Solution for Your Organization This webcast outlines a framework for making the right choice when it comes to containerization approaches, along with the pros and cons of... All Mobile/Wireless White Papers | Webcasts
As emerging technologies evolve they often find an initial niche in highly specialized scenarios, or in specific industry verticals, before expanding to wider areas of applicability. Within these initial niches, the early adopters can be anything from digital enthusiasts to fashionistas, or they can be folks simply using the technology because it serves a specific need extremely well. (free registration required) more