Hacker News new | ask | show | jobs
by eropple 1051 days ago
Why would you ever trust a "startup"? "The little guy" doesn't have data protection practices and can't prove their existence even if he does. Cavalier practices all over the place--I know, I've both created those practices in a "we need to ship" crunch and I've also lobbied (sometimes even successfully) to fix them later. Google has a lot of practices that absolutely suck, but their privacy and data protection functions have teeth.

As to the rest of your post: the app developer in this thread is saying Apple should give him and his friendos special permissions ("trusted certificates") to not ask the user whether the user trusts them, and you're saying it's Apple's decision to require a user to affirmatively consent to having their pasteboard read by an app that is thuggish?

One of these is actually on my side as a user, and it's not the marketer and it's not you.
1 comments
asow92 1051 days ago
Apple may revoke my certificate whenever it’s abused beyond its intended purpose. Hell, they could go further than that and only allow pasteboard access without a prompt iff the data matches a certain predicate that they approve. That would be fine by me.
link
gls2ro 1051 days ago
Revoking the certificate _after_ an app developer already gathered and sold PI is a good action. But it is reactive. The user damage is already done.

But trying to deter such app developer to gather as much PI as possible is even better as it is preventive.

link
asow92 1051 days ago
Honestly, I’d prefer if we didn’t need the paste prompt all together. I just want a way to universal link into my app on the very first launch. The pasteboard and fingerprinting gave us that, but apple has given us no feasible alternative.

This is like chrome saying you can’t go to anything other than the root path of a site the first time you go there.

link
ImPostingOnHN 1051 days ago
the same goes for punishing criminals, but the idea of pre-crime is worse
link
eropple 1051 days ago
Punishing criminals before they offend and setting clear boundaries beyond which you need user permission to act? Totally the same thing.
link
ImPostingOnHN 1051 days ago
requiring people to prove their innocence or requiring people to prove their innocence?

totally different things.

link
eropple 1050 days ago
Requiring a user to agree to what an application wants to do isn't a requirement to prove innocence. It's a requirement to obtain consent that is verifiable by the operating system in which the user has placed trust.

Why is the open and clear obtaining of consent so clearly anathema throughout this thread?

link