[lrpublic]

I like scoop, and this is a show stopper for me.

"This project collects usage data and sends it to Microsoft to help improve our products and services. See the privacy statement for more details." from https://github.com/microsoft/winget-cli

[nojito]

Why is that a showstopper?

People do not give feedback so it's impossible to tell how their programs are being used.

The other choice is to listen to the vocal minority that offers feedback than you get into issues of implementing features that no one wants/uses.

[flower-giraffe]

It's not opt-in, so quite likely a breach of GDPR.

The telemetry in question seems to be logging what is installed, not just how the application is used.

Regardless of consumers willingness to provide feedback it's not a reasonable choice for a large software vendor to collect data from customers computers about competitors products.

[nojito]

It’s logging what’s used so that the app can be improved to fit the use cases of its users.

Of course it’s reasonable. The other choice is developing blindly or listening to the vocal minority. Both of which hurt ALL users in the end.

[lawnchair_larry]

Software has always been developed that way and it has never been a problem. It’s only recently that developers somehow got the idea that they are entitled to perform surveillance on their customers. It’s nonsense.

[naikrovek]

> Software has always been developed that way and it has never been a problem.

It's always been a problem, most people just don't know that because the majority of users don't express their concerns in the way(s) that the developers are open to hearing those concerns.

[GordonS]

I'd consider it reasonable if there was some way to opt out, and if they made it clear what telemetry was sent - that should be in the readme, I shouldn't have to trawl through the code to find it.

Note that I'm saying this as someone that generally doesn't mind providing telemetry - but they need to be clear.

[Analemma_]

> It's not opt-in, so quite likely a breach of GDPR.

This doesn't make any sense. You don't think that every single installation via the iPhone or Android App Store isn't logged and telemetrized?

[lrpublic]

In order to use those you agree to terms in advance, and agreed to data processing. That is an opt-in.

[hooooooo]

It’s really not. I develop mobile apps for clients and we collect analytics (Firebase/GAnalytics, Facebook SDK, hand rolled metrics etc) none of which is opt in. Why is Microsoft held to a different standard?

[lrpublic]

With regard to Apple or Google recording the applications users install from the store I think there is indeed an opt in.

That is the comparison I was making with the new Windows package manager.

[mtbch]

Ignorantia juris non excusat. You or your clients may also be in breach. MS aren't held to a different standard.

[TheCoelacanth]

I don't think that the fact that an anonymous person installed a particular piece of software is considered personal data under GDPR.

[tozeur]

Microsoft is incredibly anal about GDPR. I doubt they’re committing a violation here.

[mtbch]

Microsoft being anal about GDPR? It's under investigation with billions in GDPR fines pending.

FAANG are also knowingly and willingly breaching the GDPR to this day with all sorts of products.

Just try to exercise your GPDR-given rights as an EU citizen and try getting ALL of your data from e.g. Facebook.

Not the subset of it that you are allowed to download, ALL of it.

You'll be laughed at really, really hard then shown the door.

Don't get me started on Microsoft.

[GordonS]

I don't personally mind telemetry, as long as it's opt-in, or I can at least opt-out, and the data that is collected is clear.

The docs don't make any mention of how to opt out, or what data is collected. Which is incredibly annoying, as I really want an official package manager for Windows :/

[lrpublic]

A bigger showstopper is no support for removing packages yet.