[pickledcods]

Have you checked the trackers and data loggers build into that app that directly or indirectly call home when you interact with your lights?

I have an aquarium and I use a water quality tester when I suspect something is wrong. Before it was a colour stripe you have to compare with a reference printed on a package. Now it uses a camera and matches the color better for a better analysis. However, that app calls home directly to JBL, so they are building a profile on how I abuse my fish because every time it logs, it logs a bad situation. It also leaks the usage to jquery, google and crashlytics without notifying me or asking my consent.

[rablackburn]

> It also leaks the usage to jquery, …

This is the first time I’ve read someone refer to loading jquery as a data leak.

Ideally they shouldn’t be using jquery, or just shipping it with the app/self-hosting. But for the general case, are you saying your ideal would be an app prompting you for permission before it loaded any external resource from any url? Even one as ubiquitous as jquery?

How is the fact that your IP address requested a copy of jquery, one of the most downloaded JavaScript libraries of all time, any kind of meaningful signal?

I’d be more worried about it as an attack vector than a privacy infringement.

[pickledcods]

I would like an app that handles the functioning of my paid product locally without internet access. The product was sold with strings attached that was not mentioned.

Loading any framework script not hosted on the site the app originates is the same kind of leak as the facebook pixel. jquery gets my IP, access time and referrer. They can cross-site track me over all pages that load their scripts.

I also use frameworks scripts, only I host them locally to counter this kind of leakage.

[alar44]

You're a drop of water in the ocean. Protect the shit that matters and stop worrying about apps "stealing" your contacts or whatever.

[alar44]

That's the thing, people actually think their data matters. It doesn't. Your a point in a multi billion point multimillion dimensional cloud. Your data doesn't matter. Yeah, data farms can glean data trends from populations, but there's infinite ways to do this and most aren't actually concerned about who "you" are, but what "people" are doing. In short, you're not that important, you're not being individually spied on, get over yourself. You're uninteresting as fuck.

[duckmysick]

It's a matter of perspective. My particular data doesn't matter to a company in the grand scheme of things; they will be fine without it. But it matters to me. I have to deal with the spam. I have to answer the robocalls. I have to worry about my personal details being leaked. I have to deal with identity theft targeting me. There's only one person who's concerned about me - me.

I want to avoid the hassle because it affects me and my life. I might not be important to others, but I'm important to myself. Don't tell me to get over myself.