Should we be worried about Android app permissions?
If you’re really honest, do you actually read the permissions that Android apps are asking for before you install them? If you do, then there’s little doubt that you’re in the minority. Most of us treat them like terms and conditions, blindly clicking, or tapping, our way through. Is this something we should be taking more seriously? What are we actually giving away here?
Developers are well aware that most people don’t pay much attention to permissions and a lot of them have been surreptitiously adding more and more permissions to the list. Take a look at this chart of permissions for some of the most popular apps and games around.
http://embed.chartblocks.com/1.0/?c=55264ee8c9a61d2a0b597bc3&t=37e1d6874d7281a
Do these apps really need all these permissions? If you dig into the list, which you can find via the View details link under Permissions on the Play Store page for each app, then you’ll find some pretty puzzling requests.
The popular game Cut the Rope, for example, requests permission for your Location and yet the Privacy Policy from developer, ZeptoLab, specifically states “Geo-Location Data. ZeptoLab does not ask you for, access, or track any location based information at any time while downloading or using ZeptoLab’s mobile applications or services.”
I emailed and asked about it and here’s what Community Manager, Olga Antsiferova told me,
“Location data is needed for advertising SDKs to show people the ads which are relevant to their country. It is also used in both free and paid version of our games to identify countries with COPPA law. Finally, it is used in analytics, but it is important to understand that we gather only general, not personified info (i.e. “today we received 10k downloads from UK”) and we do not track individual devices.”
I’m not singling Cut the Rope out for any particular reason, by the way. You could pick an app at random and probably find a permission that’s puzzling at first glance.
What’s the problem?
A spotlight, or flashlight, was thrown on the issue a while back when popular free app Brightest Flashlight turned out to be selling location data and device ID information to third party advertisers. It transpired that it was far from the only app engaging in a fire sale of our personal data. A lot of flashlight apps are asking for permissions they absolutely do not need to function. It’s not a phenomenon that’s restricted to flashlight apps.
In all likelihood what we’re talking about here is the sale of anonymized data to advertisers, so that developers can generate a little extra cash. Some of you might be okay with that. But you’re actually putting a lot of trust in these developers. It’s one thing to trust that Google isn’t going to do anything untoward with your personal data (and some people struggle with that idea), but how much do you know about the publishers and developers behind the apps you’re using, or the third-party advertising networks that they work with?
Is there a worse scenario? Are you giving them the permission to do things like upload all your personal photos to a web server or sell your contacts list? While it may be technically possible in some instances, it’s extremely unlikely that they’re actually doing that, it’s illegal and they wouldn’t get away with it for long. The most likely explanation is generally innocuous — an app might want access to your photos to allow you to upload an image directly in the app without having to jump through hoops or quit the app and start up the gallery app.
The problem is that most people don’t really know what the permissions mean, they aren’t willing to research it, and they don’t want to have to. What they really want is to be able to trust that someone else is looking out for them.
Google does have your back, up to a point
The Play Store is pretty secure. Google does a lot of work behind the scenes to make sure that the apps on offer are safe. Most of the scaremongering about malware on Android is designed to sell security apps. If you only ever download apps from the Play Store with high numbers of downloads and a good review score, and you don’t tick the Unknown sources box in Settings > Security then you realistically have nothing serious to worry about.
The trouble kicks in if you’re concerned about privacy. If you don’t like the idea of giving strangers potential access to a lot of personal data. If you don’t like the idea of them collecting information about your habits. There’s a gray area of acceptability there that Google isn’t policing.
Your only real option if you don’t like the permissions that an app is requesting is to not install it. But, why is that the case?
Puzzling changes
Google simplified app permissions last summer (some people will say dumbed down) and things are grouped into sections now. This was supposed to make it easier for people, but it actually makes it tougher to see what specific permissions you are granting. It also means that an app can request a new permission in an update and if you’ve already granted a permission in that section it’s automatically granted without your say-so.
We need better control over permissions
There are a lot of other ways this could work. You could be asked for a permission when an app actually needs to use it, but this could arguably impair the user experience. You could also have a clear menu where you can go in and deny specific permissions, or tell the app to ask when it needs that permission. Something like App Ops which Google rolled out and then retracted.
Google brought App Ops out in Android 4.3, though it was never advertised. It was quietly removed in Android 4.4.2. It allowed you to revoke specific permissions for apps. Officially Google claimed it was only ever intended for developers. It’s possible part of the reason it was removed was to prevent stability issues for apps if users started revoking permissions all over the place, but realistically it probably had a lot more to do with advertising revenue. If you could use free apps and easily block permissions that generate ads (and revenue for the developers) then you probably would, right? That could make Android app development unprofitable for many.
What can you do?
.rvs_wrapper
width: 335px;
.rvs_wrapper.align_left
float: left;
.rvs_wrapper.align_right
float: right;
.rvs_wrapper.align_center,
.rvs_wrapper.align_none
width: 100%;
.rvs_wrapper.align_center
text-align: center;
.rvs_wrapper.align_center.cbc-latest-videos ul li
float: none;
display: inline-block;
vertical-align: top;
.rvs_wrapper.cbc-latest-videos:not(.align_none) ul li:nth-child(2n+1)
clear: both;
.rvs_title
font-weight: 600 !important;
margin: 0 !important;
.rvs_wrapper.align_right .rvs_title
padding-left: 20px;
.rvs_title a
font-family: ‘Roboto Condensed’;
color: #3a3a3a;
.rvs_wrapper.cbc-latest-videos ul
padding-top: 10px;
.rvs_wrapper.align_left.cbc-latest-videos ul li,
.rvs_wrapper.align_none.cbc-latest-videos ul li
padding: 0 15px 0 0;
.rvs_wrapper.align_right.cbc-latest-videos ul li
padding: 0 0 0 15px;
float: right;
.rvs_wrapper.align_center.cbc-latest-videos ul li
padding: 0 7px;
.rvs_wrapper.cbc-latest-videos ul li > a
font-weight: 400;
.rvs_wrapper.cbc-latest-videos ul li > a .yt-thumbnail
margin-bottom: 0;
@media only screen and (max-width : 480px)
.rvs_wrapper
width: 100%;
text-align: center;
#page .rvs_wrapper.cbc-latest-videos ul li
padding: 0 7px;
display: inline-block;
float: none;
vertical-align: top;
The bottom line is that most developers are asking for permissions because of some function or feature in the app and the request is legitimate. There’s another tier of apps that are trying to turn a profit by selling anonymized data. Unfortunately it’s not always easy for the average person to tell the difference. If you’re concerned, then make sure you read the permissions and the privacy policy. There’s no substitute for doing a little digging to see what you can uncover. If you routinely download apps from outside the Play Store then you really can’t afford to ignore permissions.
You can find a bunch of permission managers in the Play Store, many confusingly called App Ops or some variant. If you’re rooted then check out X Privacy Installer for smart protection that won’t make the apps fail.
Tell us what you think. Do you read app permissions before every install? Are you worried about leaking personal info? Do you care about anonymized data for advertisers? Is Google doing enough to protect our privacy?
Should we be worried about Android app permissions?
If you’re really honest, do you actually read the permissions that Android apps are asking for before you install them? If you do, then there’s little doubt that you’re in the minority. Most of us treat them like terms and conditions, blindly clicking, or tapping, our way through. Is this something we should be taking more seriously? What are we actually giving away here?
Developers are well aware that most people don’t pay much attention to permissions and a lot of them have been surreptitiously adding more and more permissions to the list. Take a look at this chart of permissions for some of the most popular apps and games around.
http://embed.chartblocks.com/1.0/?c=55264ee8c9a61d2a0b597bc3&t=37e1d6874d7281a
Do these apps really need all these permissions? If you dig into the list, which you can find via the View details link under Permissions on the Play Store page for each app, then you’ll find some pretty puzzling requests.
The popular game Cut the Rope, for example, requests permission for your Location and yet the Privacy Policy from developer, ZeptoLab, specifically states “Geo-Location Data. ZeptoLab does not ask you for, access, or track any location based information at any time while downloading or using ZeptoLab’s mobile applications or services.”
I emailed and asked about it and here’s what Community Manager, Olga Antsiferova told me,
“Location data is needed for advertising SDKs to show people the ads which are relevant to their country. It is also used in both free and paid version of our games to identify countries with COPPA law. Finally, it is used in analytics, but it is important to understand that we gather only general, not personified info (i.e. “today we received 10k downloads from UK”) and we do not track individual devices.”
I’m not singling Cut the Rope out for any particular reason, by the way. You could pick an app at random and probably find a permission that’s puzzling at first glance.
What’s the problem?
A spotlight, or flashlight, was thrown on the issue a while back when popular free app Brightest Flashlight turned out to be selling location data and device ID information to third party advertisers. It transpired that it was far from the only app engaging in a fire sale of our personal data. A lot of flashlight apps are asking for permissions they absolutely do not need to function. It’s not a phenomenon that’s restricted to flashlight apps.
In all likelihood what we’re talking about here is the sale of anonymized data to advertisers, so that developers can generate a little extra cash. Some of you might be okay with that. But you’re actually putting a lot of trust in these developers. It’s one thing to trust that Google isn’t going to do anything untoward with your personal data (and some people struggle with that idea), but how much do you know about the publishers and developers behind the apps you’re using, or the third-party advertising networks that they work with?
Is there a worse scenario? Are you giving them the permission to do things like upload all your personal photos to a web server or sell your contacts list? While it may be technically possible in some instances, it’s extremely unlikely that they’re actually doing that, it’s illegal and they wouldn’t get away with it for long. The most likely explanation is generally innocuous — an app might want access to your photos to allow you to upload an image directly in the app without having to jump through hoops or quit the app and start up the gallery app.
The problem is that most people don’t really know what the permissions mean, they aren’t willing to research it, and they don’t want to have to. What they really want is to be able to trust that someone else is looking out for them.
Google does have your back, up to a point
The Play Store is pretty secure. Google does a lot of work behind the scenes to make sure that the apps on offer are safe. Most of the scaremongering about malware on Android is designed to sell security apps. If you only ever download apps from the Play Store with high numbers of downloads and a good review score, and you don’t tick the Unknown sources box in Settings > Security then you realistically have nothing serious to worry about.
The trouble kicks in if you’re concerned about privacy. If you don’t like the idea of giving strangers potential access to a lot of personal data. If you don’t like the idea of them collecting information about your habits. There’s a gray area of acceptability there that Google isn’t policing.
Your only real option if you don’t like the permissions that an app is requesting is to not install it. But, why is that the case?
Puzzling changes
Google simplified app permissions last summer (some people will say dumbed down) and things are grouped into sections now. This was supposed to make it easier for people, but it actually makes it tougher to see what specific permissions you are granting. It also means that an app can request a new permission in an update and if you’ve already granted a permission in that section it’s automatically granted without your say-so.
We need better control over permissions
There are a lot of other ways this could work. You could be asked for a permission when an app actually needs to use it, but this could arguably impair the user experience. You could also have a clear menu where you can go in and deny specific permissions, or tell the app to ask when it needs that permission. Something like App Ops which Google rolled out and then retracted.
Google brought App Ops out in Android 4.3, though it was never advertised. It was quietly removed in Android 4.4.2. It allowed you to revoke specific permissions for apps. Officially Google claimed it was only ever intended for developers. It’s possible part of the reason it was removed was to prevent stability issues for apps if users started revoking permissions all over the place, but realistically it probably had a lot more to do with advertising revenue. If you could use free apps and easily block permissions that generate ads (and revenue for the developers) then you probably would, right? That could make Android app development unprofitable for many.
What can you do?
.rvs_wrapper
width: 335px;
.rvs_wrapper.align_left
float: left;
.rvs_wrapper.align_right
float: right;
.rvs_wrapper.align_center,
.rvs_wrapper.align_none
width: 100%;
.rvs_wrapper.align_center
text-align: center;
.rvs_wrapper.align_center.cbc-latest-videos ul li
float: none;
display: inline-block;
vertical-align: top;
.rvs_wrapper.cbc-latest-videos:not(.align_none) ul li:nth-child(2n+1)
clear: both;
.rvs_title
font-weight: 600 !important;
margin: 0 !important;
.rvs_wrapper.align_right .rvs_title
padding-left: 20px;
.rvs_title a
font-family: ‘Roboto Condensed’;
color: #3a3a3a;
.rvs_wrapper.cbc-latest-videos ul
padding-top: 10px;
.rvs_wrapper.align_left.cbc-latest-videos ul li,
.rvs_wrapper.align_none.cbc-latest-videos ul li
padding: 0 15px 0 0;
.rvs_wrapper.align_right.cbc-latest-videos ul li
padding: 0 0 0 15px;
float: right;
.rvs_wrapper.align_center.cbc-latest-videos ul li
padding: 0 7px;
.rvs_wrapper.cbc-latest-videos ul li > a
font-weight: 400;
.rvs_wrapper.cbc-latest-videos ul li > a .yt-thumbnail
margin-bottom: 0;
@media only screen and (max-width : 480px)
.rvs_wrapper
width: 100%;
text-align: center;
#page .rvs_wrapper.cbc-latest-videos ul li
padding: 0 7px;
display: inline-block;
float: none;
vertical-align: top;
The bottom line is that most developers are asking for permissions because of some function or feature in the app and the request is legitimate. There’s another tier of apps that are trying to turn a profit by selling anonymized data. Unfortunately it’s not always easy for the average person to tell the difference. If you’re concerned, then make sure you read the permissions and the privacy policy. There’s no substitute for doing a little digging to see what you can uncover. If you routinely download apps from outside the Play Store then you really can’t afford to ignore permissions.
You can find a bunch of permission managers in the Play Store, many confusingly called App Ops or some variant. If you’re rooted then check out X Privacy Installer for smart protection that won’t make the apps fail.
Tell us what you think. Do you read app permissions before every install? Are you worried about leaking personal info? Do you care about anonymized data for advertisers? Is Google doing enough to protect our privacy?
Apple Watch Now Available for Pre-Order Through Apple’s Online Store
Apple has begun accepting online pre-orders for the Apple Watch in the United States and other first wave launch countries, including the U.K, Australia, Canada, China, France, Germany, Hong Kong, and Japan.
Orders can be placed through Apple’s online store or through the Apple Store app on iOS devices. Supplies are expected to be limited, so customers interested in April 24 delivery dates should order as soon as possible.
Shipping estimates for Apple Watch models were as follows at launch, but are slipping rapidly:
– Apple Watch Sport: Delivers 4/24-5/8
– Apple Watch with Sport Band: Delivers 4/24-5/8
– Apple Watch with Classic Buckle: Delivers 4/24-5/8
– Apple Watch with Milanese Loop: Delivers 4/24-5/8
– Apple Watch with Leather Loop: Available to ship 4-6 weeks
– Apple Watch with Modern Buckle: Available to ship 4-6 weeks
– Apple Watch with Link Bracelet: Stainless steel 4-6 weeks, Space Gray June
– Apple Watch Edition: Available to ship May
The Apple Watch will officially launch on April 24, which is the same date that some customers will begin receiving their devices at their homes. Pre-ordering is recommended, as Apple will not be accepting walk-in orders for the Apple Watch during the first weeks following launch. All orders must be placed online.
AppleCare+ is available for the Apple Watch, and is priced at $49 for the Sport models, $69 for the stainless steel models, and $1,500 for the gold Apple Watch Edition models. There’s also a combined AppleCare+ option for the iPhone and the Apple Watch, priced at $149 for Apple Watch Sport, $169 for the stainless steel Apple Watch, and $1,600 for the gold Apple Watch Edition. Combined AppleCare+ can be purchased up to six months after an iPhone purchase.
AppleCare+ service fees for accidental damage are priced at $69 for the Apple Watch Sport, $79 for the stainless steel Apple Watch, and $1,000 for the Apple Watch Edition.
Apple is also selling standalone bands that can be purchased alongside the Apple Watch, and most band orders will ship in May. Modern Buckle bands are unavailable, and Milanese Loop, Link Bracelet, and Leather Loop ship in two to four weeks.
Apple is also accepting try-on appointments in its retail stores beginning today, giving users a chance to see the watch before placing an online pre-order. Appointments for models besides the Apple Watch Edition will last for approximately 15 minutes and will give customers an opportunity to try on multiple devices. We’ve written a post covering what to expect at your try-on appointment, which is worth checking out before you visit an Apple Store. Try-on appointments can be scheduled through Apple’s concierge service, both online and in the Apple Store app. The try-on appointment system is currently experiencing difficulties and may be down for some users.
Apple Watch pricing begins at $349 for the entry-level aluminum Sport model, $549 for the stainless steel Apple Watch, and $10,000 for the gold Apple Watch Edition. All three models can be ordered from the online store beginning now.
Official Retail Box for Apple Watch Edition Revealed [iOS Blog]
Apple started accepting Apple Watch pre-orders at 12:01 AM Pacific today, and official retail packaging for the 18-karat gold Edition model is now beginning to appear on social media. Instagram user Iris Decreus shared the picture below of an Apple Watch Edition next to its suede box, which has a premium look compared to the regular packaging for the Apple Watch Sport and stainless steel Apple Watch.
Apple Watch pre-orders and try-on appointments began today ahead of the wrist-worn device’s release on April 24 in the United States, Australia, Canada, China, Germany, France, Hong Kong, Japan and China. Apple Watch shipping times quickly slipped to 4-6 weeks or later after pre-orders became available, and the Apple Watch Edition and certain other models are not available to ship until at least June based on current estimates.
How to book an Apple Watch try-on appointment at the Apple Store
Not sure what Apple Watch you should order? Schedule an in-store try-on session to help!
Coinciding with Apple Watch pre-orders, you can also book in-store appointments to try on different Apple Watches. If reading our massive Apple Watch buyer’s guide has left you still deciding between more than one mode, an in-store appointment to try them on is definitely your best bet. This is especially the case if you’re still debating between casing sizes.
Luckily, booking one is super simple. Here’s how!
How to schedule an Apple Watch try-on appointment at your local Apple Store
- Go to apple.com in any web browser.
- Click on the Store tab in the top navigation.
- Scroll down a little ways and click on schedule a try-on appointment, it’s written in blue writing.
- Select your state and your local Apple Store.
- Click on View available times under the type of Apple Watch you’d like to try on. Remember the Edition model is only available for preview at select stores.
- Sign in with your Apple ID when prompted.
- Choose the time you’d like and then click on Schedule Appointment.
- You should receive an email confirming your try-on appointment.
If you’re on your iPhone, you can also use the Apple Store app to access the try-on page. Simply go to the Featured tab, scroll down a little ways and click on schedule a try-on appointment. You’ll be routed to Safari where you can follow the same instructions as above.
Having trouble booking? You aren’t alone!
As with any new product launch, Apple’s website sometimes does funny things. If you’re seeing the error message a lot, simply keep calm, and try again. It took me about 4 or 5 tries before I actually received a confirmation email.
Microsoft pushes out an update for Device Hub
Microsoft has released an update to Device Hub on the Windows Phone Store. The app enables you to connect to various accessories and configure said experiences. Unfortunately, Microsoft seemingly missed the memo about including changelogs with published releases, thus we’re unaware of exactly what’s new.
All six Star Wars movies are now available for purchase from iTunes
Star Wars fans are in for a treat today as the original trilogy and the prequels are now available in HD as digital downloads from Google Play.
You can either buy the movies individually — which will set you back $19.99 each — or at a bundled price of $89. The movies are “Special Edition” versions that include newer special effects and deleted scenes. The bundle also includes extras such as documentaries, interviews with the cast and behind-the-scenes footage. To commemorate the launch, iTunes is highlighting apps, games and books related to the franchise along with the movie listings.
In addition to iTunes, the collection is available on Amazon, Google Play and Xbox Video.
Microsoft’s Office Remote allows you to control presentations via your Android device
Microsoft has just released it’s Office Remote for Android productivity app on the Google Play Store, enabling users to remotely control presentations via a smartphone or tablet. This functionality extends to PowerPoint, Excel and Word so far.
To make use of the Office Remote function you must have the app installed on your smartphone that is running Android 4.0.3 or higher, the accompanying desktop client must be installed on your PC which must also have Bluetooth capability. Finally, Office Remote is only compatible with Office 2013, if you have the RT version or even an earlier version of Office then you are out of luck. Current features include:
PowerPoint:
- View current slide and laser point using touch on your smart phone
- Next slide preview
- Play and pause embedded audio and video files
- View slide thumbnails and jump to a slide
- View speaker notes on your smartphone
- View presentation timer and slide numbers
Excel:
- Change worksheets by swiping
- Use Slicers, PivotTable and Filters
- Jump to any named object in your workbook
- Move up or down the worksheet
- Change the zoom level
Word:
- Jump to headings
- Jump to comments
- Screen up/down
- Line up/down
- Change the zoom level
Just scan the QR code or click the Play Store link to install it on your smartphone or tablet.
Come comment on this article: Microsoft’s Office Remote allows you to control presentations via your Android device
Sense 7 to hit HTC One M8 in the next software update
HTC has been pushing Lollipop to several versions of its One M8, and it looks like the company is now preparing to upgrade the M8 to the latest version of Sense as well.
Answering to a customer inquiry on Twitter, HTC Product Manager for the Americas Mo Versi said M8 users should expect Sense 7 to come with the next software update.
@MohammadAsad528 no, this won’t but our next update will include it. Thanks.
— Mo Versi (@moversi) April 7, 2015
Versi didn’t provide any details on the actual availability of this “next software update,” but our guess is we should see it within a few weeks. Sense 7 delivers relatively few changes in terms of appearance, while new features include a comprehensive Theming app, the Home widget, which groups your most frequently used apps, as well as some personalization features added to HTC’s well-known BlinkFeed. Performance improvements and bug fixes are to be expected.
.rvs_wrapper
width: 335px;
.rvs_wrapper.align_left
float: left;
.rvs_wrapper.align_right
float: right;
.rvs_wrapper.align_center,
.rvs_wrapper.align_none
width: 100%;
.rvs_wrapper.align_center
text-align: center;
.rvs_wrapper.align_center.cbc-latest-videos ul li
float: none;
display: inline-block;
vertical-align: top;
.rvs_wrapper.cbc-latest-videos:not(.align_none) ul li:nth-child(2n+1)
clear: both;
.rvs_title
font-weight: 600 !important;
margin: 0 !important;
.rvs_wrapper.align_right .rvs_title
padding-left: 20px;
.rvs_title a
font-family: ‘Roboto Condensed’;
color: #3a3a3a;
.rvs_wrapper.cbc-latest-videos ul
padding-top: 10px;
.rvs_wrapper.align_left.cbc-latest-videos ul li,
.rvs_wrapper.align_none.cbc-latest-videos ul li
padding: 0 15px 0 0;
.rvs_wrapper.align_right.cbc-latest-videos ul li
padding: 0 0 0 15px;
float: right;
.rvs_wrapper.align_center.cbc-latest-videos ul li
padding: 0 7px;
.rvs_wrapper.cbc-latest-videos ul li > a
font-weight: 400;
.rvs_wrapper.cbc-latest-videos ul li > a .yt-thumbnail
margin-bottom: 0;
@media only screen and (max-width : 480px)
.rvs_wrapper
width: 100%;
text-align: center;
#page .rvs_wrapper.cbc-latest-videos ul li
padding: 0 7px;
display: inline-block;
float: none;
vertical-align: top;
The One M8 remains a top choice for HTC fans. Available at a smaller price, but quite similar to the M9 in terms of performance and features, the device shines through its design. And, for American customers, HTC is throwing in a very nice perk with the Uh-Oh extended warranty plan, which includes a free replacement in the first year or $100 in credit towards the purchase of a new HTC One phone.
Xbox 360’s latest update makes it an even better media center
For a lot of people, now that the Xbox 360 is in its twilight years it’s transforming from a gaming device to more of a media center. It makes sense then that the first update going out to the console’s preview program members is support for bigger external hard drives. Just how big? Two terabytes. Larry “Major Nelson” Hryb writes that the system won’t reserve space on your drives in advance anymore, either — if you only need 16GB for games, it’ll only use 16GB for games. However! If you already have space dedicated to Xbox 360 storage you’ll need to clear that before you can take full advantage of all that new room for game-related content. The functionality hits everyone’s consoles sometime later this year.
[Image credit: Blakkos/Flickr]
Filed under: Gaming, Home Entertainment, Storage, HD, Microsoft
Source: Major Nelson
AIVAnet 