Every Streaming Company Not Named Apple Receives A Lousy Grade On Privacy

from the unimportant-afterthoughts dept

While streaming providers and hardware companies see significantly higher consumer satisfaction rates that traditional cable TV, their privacy practices still leave something to be desired. That’s according to a new breakdown of streaming service privacy policies by Common Sense Media, which doled out terrible grades to pretty much everybody not named Apple:

“Our privacy evaluations of the top 10 streaming apps indicate that all streaming apps (except Apple TV+) have privacy practices that put consumers’ privacy at considerable risk including selling data, sending third?party marketing communications, displaying targeted advertisements, tracking users across other sites and services, and creating advertising profiles for data brokers.”

Of course their privacy practices suck because being terrible on privacy is perfectly legal in a country that can’t manage to pass even a basic privacy law for the internet era. Not a law cracking down on the dodgy behavior by third party data brokers. Not a law that implements some basic transparency requirements so consumers know what’s being collected and who it’s being sold to. And not a basic law that implements something vaguely resembling real accountability for companies that can’t be bothered, time and time again, to properly secure their networks, devices, and servers from intrusion.

The firm took a deep dive into the data collection and sharing practices of 10 different streaming services and hardware vendors, from Netflix and Disney+ to Roku. They closely examined what data was being collected, how much of that collection was transparent to the end user, and where that data was sent. They also took a close look at device security using the Consumer Reports’ Digital Standard, a promising new metric that attempts to standardize security practices so they can be included in product reviews.

Some of the failures were downright ugly, like making no real exceptions for the data collection of children. Many of the issues revealed weren’t the end of the world, but they make it repeatedly clear that companies aren’t being transparent about what is collected, and often enjoy making opting out of data collection and monetization as cumbersome and annoying as possible:

“The Roku Streaming Stick+ set?up process did not
display notice of privacy settings or choices a user can make about sharing data. Only after the Roku device has completed setup can users navigate to
the “Settings” menu, and choose to opt in to the single privacy setting “Limit Ad Tracking” which is not enabled by default. This setting is worded in such a way that it may be misleading that opting in to limiting a worse practice is actually opting out of use of your data for that worse practice, which is not a
principle of privacy by design.”

There’s a consistent drumbeat of arguments that tend to focus on how it’s simply impossible for our Luddite Congress to pass a useful privacy law. But again, it wouldn’t be at that difficult to write a clear law, with input from major stakeholders, that simply mandates clear communication on what’s being collected and how to opt out of it. But we can’t even do that. Instead we’ve got complete apathy toward the privacy and security internet shit show on the federal level, which created a discordant wave of less than impressive and often convoluted state-level laws.

Filed Under: , ,
Companies: apple

Rate this comment as insightful
Rate this comment as funny
You have rated this comment as insightful
You have rated this comment as funny
Flag this comment as abusive/trolling/spam
You have flagged this comment
The first word has already been claimed
The last word has already been claimed
Insightful Lightbulb icon Funny Laughing icon Abusive/trolling/spam Flag icon Insightful badge Lightbulb icon Funny badge Laughing icon Comments icon

Comments on “Every Streaming Company Not Named Apple Receives A Lousy Grade On Privacy”

Subscribe: RSS Leave a comment
26 Comments
Samuel Abramsays:

The Haystack Principle

Of course, there’s also the takeaway that the more advertisers/big data think they know you, the more they don’t. Take the example of someone buying toilet paper on Amazon, and then they flood that person with ads of toilet paper not taking one-time purchasers into account. The advertisers think that they know people’s behavior that way, but actually don’t.

This is sometimes called The Haystack Principle: The larger the haystack, the harder it is to find a needle.

PaulTsays:

Re: Re: The Haystack Principle

"A larger haystack does not make it more difficult to find the needle, it only means that finding it will require more time"

This is where the analogy falls apart. If you have a physical haystack, you know all the properties of the hay and the needle, and you have a definitive target. More hay doesn’t make a difference to the target, and in fact might not make any difference at all to the timing if you’re using a metal detector or some other device instead of searching by hand.

With data it’s different, especially if you’re trying to find the definition of the target while you’re searching. Bad data can lead to bad conclusions, increasing the amount of bad or irrelevant data might mean that you’ll never find the target at all, because it leads you to define the wrong thing. If I’m looking for a new home cinema system, but most of the data you’re basing your ad targeting on is from when I was looking after my nephew for a week watching Minecraft and Fortnite videos, you’re probably not going to target me with the right ads. "Needle in a haystack" doesn’t work when you suddenly decide that what you’re looking for is a LEGO brick instead.

PaulTsays:

Re: The Haystack Principle

"Take the example of someone buying toilet paper on Amazon, and then they flood that person with ads of toilet paper not taking one-time purchasers into account."

Yeah, I’ve suffered through a lot of irrelevant "targeted" data over the years, whether it’s ads trying to push flights or accommodation for the trip I’ve already booked or being bombarded by ads for a company where I already looked at their product and decided to buy from a competitor.

Having data doesn’t mean that you’re going to be able to pull accurate conclusions from that data, and in fact it can make it less likely over a particular issue.

Samuel Abramsays:

The Haystack Principle

Of course, there’s also the takeaway that the more advertisers/big data think they know you, the more they don’t. Take the example of someone buying toilet paper on Amazon, and then they flood that person with ads of toilet paper not taking one-time purchasers into account. The advertisers think that they know people’s behavior that way, but actually don’t.

This is sometimes called The Haystack Principle: The larger the haystack, the harder it is to find a needle.

Anonymoussays:

When in doubt, don't give the company that information.

Or just don’t give them that information, full stop.

Just because it is in the privacy policy does not mean that the company implements the policy in practice. Or that the company’s data security practices will keep out the first person to (checks notes) add 1 to the id. Or sets a password on their cloud storage server.

There’s so much awful available to companies these days that the practices on paper are almost the least of what you need worry about.

Anonymoussays:

When in doubt, don't give the company that information.

Or just don’t give them that information, full stop.

Just because it is in the privacy policy does not mean that the company implements the policy in practice. Or that the company’s data security practices will keep out the first person to (checks notes) add 1 to the id. Or sets a password on their cloud storage server.

There’s so much awful available to companies these days that the practices on paper are almost the least of what you need worry about.

PaulTsays:

Re: 2 questions

That would be great if they actually worked. I looked for flowers for Mother’s Day last year and I’m still getting ads for one of the sites I rejected now. I regularly get ads for cities I’ve already booked travel to, hotels I’ve already booked a room in, services I’ve been a member of for years.

That’s actually more annoying than having to sit through ads for tampons, dog food and other things I’d never need to buy during a TV show, IMHO.

Lostinlodossays:

Re: Re: 2 questions

Well, I can understand that.
Actually I tend to get ebay and other sales sites selling things I already bought.
But it?s better than fake casinos and buy wives from Nepal.

But I have all tracking on, and cross tracking. So it?s probably a larger platform.

I also use a targeted item blocker. If a specific ad bugs me I ?zap? it and never see it again.

Also Works great for never loading pointless bling like ?recommendations? and ?top picks? at sites like IMDB and Amazon.
Click the icon, line up the field, and click.
Gone. Forever.

I?ve actually managed to turn IMDB back into something close to the old design from the early 2000s by blocking all the fancy crap.

Most ad hosts will load a new ad if one doesn?t display correctly. So I can knock out crap of zero interest to use and not see them again.

Every few days something somewhere peaks my interest and the site gets a bit of extra cash for my looking.
Doing my part to keep the web free, I think.

Take a look at UBO and 1blocker. They are both extremely open to customisation for the more experienced users.

In both cases I have all the basic blockers
And filters off, but set the manual blocking to return a 500 error on denial so I get a new advert.

PaulTsays:

Re: The Haystack Principle

"Take the example of someone buying toilet paper on Amazon, and then they flood that person with ads of toilet paper not taking one-time purchasers into account."

Yeah, I’ve suffered through a lot of irrelevant "targeted" data over the years, whether it’s ads trying to push flights or accommodation for the trip I’ve already booked or being bombarded by ads for a company where I already looked at their product and decided to buy from a competitor.

Having data doesn’t mean that you’re going to be able to pull accurate conclusions from that data, and in fact it can make it less likely over a particular issue.

PaulTsays:

Re: Re: The Haystack Principle

"A larger haystack does not make it more difficult to find the needle, it only means that finding it will require more time"

This is where the analogy falls apart. If you have a physical haystack, you know all the properties of the hay and the needle, and you have a definitive target. More hay doesn’t make a difference to the target, and in fact might not make any difference at all to the timing if you’re using a metal detector or some other device instead of searching by hand.

With data it’s different, especially if you’re trying to find the definition of the target while you’re searching. Bad data can lead to bad conclusions, increasing the amount of bad or irrelevant data might mean that you’ll never find the target at all, because it leads you to define the wrong thing. If I’m looking for a new home cinema system, but most of the data you’re basing your ad targeting on is from when I was looking after my nephew for a week watching Minecraft and Fortnite videos, you’re probably not going to target me with the right ads. "Needle in a haystack" doesn’t work when you suddenly decide that what you’re looking for is a LEGO brick instead.

PaulTsays:

Re: 2 questions

That would be great if they actually worked. I looked for flowers for Mother’s Day last year and I’m still getting ads for one of the sites I rejected now. I regularly get ads for cities I’ve already booked travel to, hotels I’ve already booked a room in, services I’ve been a member of for years.

That’s actually more annoying than having to sit through ads for tampons, dog food and other things I’d never need to buy during a TV show, IMHO.

Lostinlodossays:

Re: Re: 2 questions

Well, I can understand that.
Actually I tend to get ebay and other sales sites selling things I already bought.
But it’s better than fake casinos and buy wives from Nepal.

But I have all tracking on, and cross tracking. So it’s probably a larger platform.

I also use a targeted item blocker. If a specific ad bugs me I “zap” it and never see it again.

Also Works great for never loading pointless bling like “recommendations” and “top picks” at sites like IMDB and Amazon.
Click the icon, line up the field, and click.
Gone. Forever.

I’ve actually managed to turn IMDB back into something close to the old design from the early 2000s by blocking all the fancy crap.

Most ad hosts will load a new ad if one doesn’t display correctly. So I can knock out crap of zero interest to use and not see them again.

Every few days something somewhere peaks my interest and the site gets a bit of extra cash for my looking.
Doing my part to keep the web free, I think.

Take a look at UBO and 1blocker. They are both extremely open to customisation for the more experienced users.

In both cases I have all the basic blockers
And filters off, but set the manual blocking to return a 500 error on denial so I get a new advert.

Add Your Comment

Your email address will not be published. Required fields are marked *

Have a Techdirt Account? Sign in now. Want one? Register here

Comment Options:

Make this the or (get credits or sign in to see balance) what's this?

What's this?

Techdirt community members with Techdirt Credits can spotlight a comment as either the "First Word" or "Last Word" on a particular comment thread. Credits can be purchased at the Techdirt Insider Shop »

Follow Techdirt

Techdirt Daily Newsletter

Techdirt Insider Discord
The latest chatter on the Techdirt Insider Discord channel...
Loading...
Older Stuff
13:40 It's Great That Winnie The Pooh Is In The Public Domain; But He Should Have Been Free In 1982 (Or Earlier) (35)
12:06 Norton 360 Now Comes With Crypto Mining Capabilities And Sketchy Removal Process (28)
10:45 Chinese Government Dragnet Now Folding In American Social Media Platforms To Silence Dissent (14)
10:40 Daily Deal: The 2022 Ultimate Cybersecurity Analyst Preparation Bundle (0)
09:29 A Fight Between Facebook And The British Medical Journal Highlights The Difficulty Of Moderating 'Medical Misinformation' (9)
06:29 Court Ruling Paves The Way For Better, More Reliable Wi-Fi (4)
20:12 Eighth Circuit (Again) Says There's Nothing Wrong With Detaining Innocent Minors At Gunpoint (15)
15:48 China's Regulatory War On Its Gaming Industry Racks Up 14k Casualties (10)
13:31 Chinese Government Fines Local Car Dealerships For Surveilling While Not Being The Government (5)
12:08 Eric Clapton Pretends To Regret The Decision To Sue Random German Woman Who Listed A Bootleg Of One Of His CDs On Ebay (29)
10:44 ICE Is So Toxic That The DHS's Investigative Wing Is Asking To Be Completely Separated From It (29)
10:39 Daily Deal: The 2022 Complete Raspberry Pi And Arduino Developer Bundle (0)
09:31 Google Blocked An Article About Police From The Intercept... Because The Title Included A Phrase That Was Also A Movie Title (24)
06:22 Wireless Carriers Balk At FAA Demand For 5G Deployment Delays Amid Shaky Safety Concerns (16)
19:53 Tenth Circuit Denies Qualified Immunity To Social Worker Who Fabricated A Mother's Confession Of Child Abuse (35)
15:39 Sci-Hub's Creator Thinks Academic Publishers, Not Her Site, Are The Real Threat To Science, And Says: 'Any Law Against Knowledge Is Fundamentally Unjust' (34)
13:32 Federal Court Tells Proud Boys Defendants That Raiding The Capitol Building Isn't Covered By The First Amendment (25)
12:14 US Courts Realizing They Have A Judge Alan Albright Sized Problem In Waco (17)
10:44 Boston Police Department Used Forfeiture Funds To Hide Purchase Of Surveillance Tech From City Reps (16)
10:39 Daily Deal: The Ultimate Microsoft Excel Training Bundle (0)
09:20 NY Senator Proposes Ridiculously Unconstitutional Social Media Law That Is The Mirror Opposite Of Equally Unconstitutional Laws In Florida & Texas (25)
06:12 Telecom Monopolies Are Exploiting Crappy U.S. Broadband Maps To Block Community Broadband Grant Requests (7)
12:00 Funniest/Most Insightful Comments Of 2021 At Techdirt (17)
10:00 Gaming Like It's 1926: Join The Fourth Annual Public Domain Game Jam (6)
09:00 New Year's Message: The Arc Of The Moral Universe Is A Twisty Path (33)
19:39 DHS, ICE Begin Body Camera Pilot Program With Surprisingly Good Policies In Place (7)
15:29 Remembering Techdirt Contributors Sherwin And Elliot (1)
13:32 DC Metro PD's Powerful Review Panel Keeps Giving Bad Cops Their Jobs Back (6)
12:11 Missouri Governor Still Expects Journalists To Be Prosecuted For Showing How His Admin Leaked Teacher Social Security Numbers (39)
10:48 Oversight Board Overturning Instagram Takedown Of Ayahuasca Post Demonstrates The Impossibility Of Content Moderation (10)
More arrow
This site, like most other sites on the web, uses cookies. For more information, see our privacy policy. Got it