Subscribe to CIO Magazine »

18 firms sued for using privacy-invading mobile apps

Facebook, Apple, Twitter are among those charged in class action suit with surreptitiously taking user data

Facebook, Apple, Twitter, Yelp and 14 other companies have been hit with a lawsuit accusing them of distributing privacy-invading mobile applications.

The lawsuit was filed by a group of 13 individuals in the United States District Court for the Western District of Texas earlier this week. The suit charges 18 companies with surreptitiously gathering data from the address books of tens of millions of smartphone users.

"The defendants -- several of the world's largest and most influential technology and social networking companies -- have unfortunately made, distributed and sold mobile software applications that, once installed on a wireless mobile device, surreptitiously harvest, upload and illegally steal the owner's address book data without the owner's knowledge or consent," the lawsuit alleged.

The lawsuit seeks a permanent injunction against such data collection and the destruction of all personal data collected by mobile application vendors so far.

Most of the plaintiffs are from Austin and describe themselves in the complaint as users of Apple's iPhone users Android-powered handsets.

One of the companies, social networking service Path, was pressured last month into issuing a public apology after a Singapore-based programmer wrote a blog post describing how the company's journal application for iOS- and Android-based phones was secretly collecting address book data.

The apology by Path co-founder and CEO Dave Morin acknowledged that the company had made a mistake in gathering the data but noted that the information was collected purely to improve the quality of friend suggestions made by the application.

This week's lawsuit appears to have been inspired, at least in part, by an article in the New York Times in February which highlighted the practice by Path and several other developers and distributors of smartphone applications to collected data from address books without the user's permission. The article, headlined Mobile Apps Take Data Without Permission , was cited several times in the 152-page complaint.

The lawsuit comes at a time when privacy concerns over mobile applications appears to be steadily rising.

On Wednesday for instance, two senior lawmakers asked Apple for more details about the company's privacy policies for mobile applications running iOS software.

Rep. Henry Waxman, ranking member of the House Energy and Commerce Committee and Rep. G.K. Butterfield last month had asked Apple to respond to a series of questions about the company's polices for vetting the privacy practices of iOS mobile application developers.

The questions were prompted by the controversy surrounding the Path disclosure.

Apple submitted its initial responses earlier this month.

However, the two lawmakers this week contended that the letter did not answer all their questions and asked that Apple representatives brief members of the committee on the remaining issues.

Earlier this month, U.S. Senator Charles Schumer (D-NY) called on the Federal Trade Commission to investigate Apple and Google following reports that some iOS and Android applications uploaded photos from mobile phones without the user's knowledge or permission.

Apple, Facebook, Yelp and Foursquare did not immediately respond to a request for comment on this week's lawsuit. A Twitter spokesman said the company did not comment on pending litigation.

Jaikumar Vijayan covers data security and privacy issues, financial services security and e-voting for Computerworld. Follow Jaikumar on Twitter at @jaivijayan , or subscribe to Jaikumar's RSS feed . His e-mail address is .

Read more about security in Computerworld's Security Topic Center.

Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.

More about: Apple, Facebook, Federal Trade Commission, FTC, Google, Topic
References show all




The lawsuit comes at a time when privacy concerns over mobile applications appears to be steadily rising.

Comments are now closed.
Related Whitepapers
Latest Stories
Community Comments
Latest Blog Posts
  • Case Study: Steel Blue
    Read how Perth-based safety footwear manufacturer, Steel Blue, was able to cut costs with shipping and improve efficiency while meeting the growing demand for their products as they expanded their national and export markets and increased their local market share, all thanks to a new ERP system.
    Learn more »
  • Smarter Data Centre Outsourcing: Considerations for CFOs
    Deloitte explores the business and finance implications associated with managing data centres. This paper outlines the options available to structure an organisations data centre and complementary IT services and provides the key considerations that need to be reviewed when determining which option works best for them.
    Learn more »
  • The THREE Pillars of High Availability Storage
    Without high-availability storage, you don’t actually have anything – so for a storage system to deliver high availability, system architecture needs to handle component failure as well as service upgrades. This webcast presentation discusses the importance of high-availability to organisations, and how to make sure you can access your data whenever you need it. By using Pure Storage system architecture, along with infiniband as a stateless controller, viewers will learn how Pure Storage meet their philosophy of a “non-disruptive everything”.
    Learn more »
All whitepapers
rhs_login_lockGet exclusive access to Invitation only events CIO, reports & analysis.
Latest Jobs
Salary Calculator

Supplied by

View the full Peoplebank ICT Salary & Employment Index

Recent comments