[objclxt]

The one rather glaring fly in your ointment is that if your system was as secure as you make it out to be you wouldn't have been asking users to change their iCloud passwords after your database was compromised a few months ago.

http://www.theverge.com/2013/11/3/5061136/sunrise-calendar-a...

[aroch]

In fairness, changing your password also deactivates any login tockens associated with the old password.

[lockmovdwordptr]

I guess they have done that for triggering a reset of the validity of the "apple token" that was compromised.

[rismay]

If you delete the app, this won't remove the account from sunrise's system then?

[tannerc]

There is no way for app developers to know which users have deleted the app from their device.

[jhgg]

Not exactly true. If you send a push notification to a device using a token of an app that isn't installed anymore, the feedback service will let you know that the app isn't installed on the device anymore[0].

[0] https://developer.apple.com/library/ios/documentation/Networ...

[leviathan]

What about users who didn't allow location services to begin with?

[nathancahill]

Ouch.