FPF Finds Nearly Three-Quarters of Most Downloaded Mobile Apps Lack A Privacy Policy

FPF Finds Nearly Three-Quarters of Most Downloaded Mobile Apps Lack A Privacy Policy

Earlier this week in the US Senate, the Privacy, Technology and Law Subcommittee of the Judiciary Committee  held a hearing on mobile privacy issues.  One focus of the hearing was the privacy of personal information collected and used by Apps on mobile devices, and one line of questioning concerned the absence of privacy policies for Apps used by consumers.  Without a privacy policy to review, consumers may not have the ability to understand and control the use of their personal data by the Apps.  And although privacy policies should not be the only way companies communicate with users about data use, posting a privacy policy is the essential first step for companies to take to be accountable for their practices of collecting and using online data.

With that in mind, the Future of Privacy Forum this week analyzed the top 30 paid mobile apps across the leading operating systems (iOS, Android, & Blackberry) and discovered that out of the top 30 applications, 22 of them — nearly three-quarters– lacked even a basic privacy policy.  A previous analysis of mobile apps by the Wall Street Journal this past December, found that forty-five of the top 101 i-Phone or Android apps they assessed did not provide privacy policies on their websites or inside the apps at the time of testing. 
 
FPF’s methodology included analyzing the top paid iPhone apps in the Apple App Store on May 10, 2011, and industry standard reporting from Distimo.  In the assessment, FPF looked for the website of the application developer and investigated whether the developer had a privacy policy that could be associated with their App. If a privacy policy was found on a website, the application developer was credited with having a mobile application privacy policy.  FPF also downloaded a sample of the paid apps to a mobile device and determined if at any time during the download and installation process a privacy policy was presented to the user of the device.  Out of the sample tested, FPF found that only one (Angry Birds iOS) had a privacy policy link from within the user interface.  
 
FPF believes that a fundamental element of protecting the privacy of consumers using Apps is the availability of a readily-accessible, written privacy policy.   FPF believes that, at a minimum, App Developers should have privacy policies (with which they comply) for all Apps offered to consumers.  Once a consumer reviews a privacy policy, he or she can choose whether to install or continue using the App, a fundamental part of privacy control.  FPF is working with Center for Democracy and Technology (CDT) to suggest additional ways that app developers can improve their privacy practices to protect consumers personal privacy.  
 
To see the list of 30 apps analyzed by FPF and whether or not they have a basic privacy policy in place, click here.

*Research and creation of app privacy policy matrix by Shaun Dakin and Shreya Vora, Future of Privacy Forum Fellows

Leave a Reply


Privacy Calendar

Apr
22
Tue
10:00 am Privacy Principles in the Era of Massive Data @ Georgetown Law Center
Privacy Principles in the Era of… @ Georgetown Law Center
Apr 22 @ 10:00 am – 12:00 pm
Experts from the public and private sectors will join public policy experts from the Georgetown University McCourt School of Public Policy and privacy law experts [...]
Apr
24
Thu
all-day 6th Biannual International Surveillance & Society Conference
6th Biannual International Surve…
Apr 24 – Apr 25 all-day
The 6th Biannual International Surveillance & Society conference hosted by the University of Barcelona and supported by the Surveillance Studies Network is currently calling for [...]
Apr
29
Tue
all-day IAPP Europe Data Protection Intensive 2014
IAPP Europe Data Protection Inte…
Apr 29 – May 1 all-day
The IAPP Europe Data Protection Intensive features timely programming centred on the top issues impacting the European data protection community, with a focus on addressing [...]
May
7
Wed
all-day IAPP Canada Privacy Symposium 2014
IAPP Canada Privacy Symposium 2014
May 7 – May 9 all-day
The IAPP Canada Privacy Symposium is the leading conference for education, debate and discussion of issues that matter most to Canadian privacy and data protection [...]
Jun
5
Thu
all-day Privacy Law Scholars Conference (7th Annual) @ The George Washington School of Law
Privacy Law Scholars Conference … @ The George Washington School of Law
Jun 5 – Jun 6 all-day
  UC Berkeley School of Law and The George Washington University Law School will be holding the seventh annual Privacy Law Scholars Conference (PLSC) on [...]
Jun
8
Sun
all-day Computers, Freedom, and Privacy 2014 Conference @ Airlie Center
Computers, Freedom, and Privacy … @ Airlie Center
Jun 8 – Jun 10 all-day
Mark your calendars! The 2014 Computers, Freedom, and Privacy Conference will be held June 8-10 at the Airlie Center in Warrenton, Virginia. The Airlie Center [...]
Jan
28
Wed
all-day Data Privacy Day
Data Privacy Day
Jan 28 all-day
“Data Privacy Day began in the United States and Canada in January 2008, as an extension of the Data Protection Day celebration in Europe. The [...]
Jan
28
Thu
all-day Data Privacy Day
Data Privacy Day
Jan 28 all-day
“Data Privacy Day began in the United States and Canada in January 2008, as an extension of the Data Protection Day celebration in Europe. The [...]

View Calendar