[way66]

1/ What do you mean confirm what I'm saying for the IP address exactly?

2/ I said we don't use any (mobile) SDKs from 3-parties analytics, but we do use their backend (Segment, Amplitude). We send the requests from our anonymous proxy directly to their servers.

I was worried that mobile SDKs would leak other data (iOS version, device size, ...) that I don't want to know about. And as a general rule we don't like to use SDK/code from 3parties for security reasons.

3/ We use analytics to track how many users are using the app, and how many users are using the cleaning features. This data does help us to make strategic decisions.

[Nextgrid]

1) I mean how can I prove what you’re saying is true as a user? As far as I’m concerned the app is sending a packet to a domain name you control. Nothing guarantees me this is actually a Cloudflare server running your code to remove my IP address. Ten years ago I would’ve just trusted you, but in today’s day and age where everything tries to stalk you in one way or another with full impunity, trust no longer exists.

2) Good thinking!

3) Doesn’t the App Store give you stats on how many people downloaded their app?

Also I’m concerned about “strategic decisions” - so it’s a business behind this app then. What’s the business model? Last time we had a business claiming to unsubscribe you from newsletters... turns out they were actually sharing data with marketing companies, so I’m rightfully concerned.

[way66]

1/ I’m thinking about ways to have trustable 3-parties audit us. Open for more ideas. What do you think?

3/ yes, unroll.me made the wrong calls. But for Jumbo we can’t even access your data, everything happens client-side. You could say that at some point the client will upload all your to our cloud, but that’s really not going to happen. Again, here, how to trust us? First, audits. Second, my reputation. Third, independent researchers would reverse engineering our app, and look at the networks call made. Open for more feedback

Our business model is the one of Dropbox. Pay (you or your employer) for more features.

[Nextgrid]

1) your idea would probably be a lot more costly (you have to pay for the audit after all) and even then some people still wouldn’t trust it. Maybe just design your product in such a way that there’s nothing to audit? People have built software & successful businesses around that for decades without the “analytics” cancer, so please don’t tell me that you can’t do the same.

If your model is a good old “pay for good software” model, then why not just ask what features people want? Why do you feel the need to stalk what people do instead of politely asking?

[way66]

How would you trust me if I tell you that there isn’t any analytics?

[jammygit]

Its unfortunate. The bad actors that created the problem the app tries to help with also make people very untrusting. I wish you luck with that one.

A verifiable 'code available' license would be a bonus