Enterprises can change that by deploying a Mobile Threat Protection solution, so employees have the power to learn about app risks before they even install potentially risky apps on their devices.
A federal lawsuit filed recently in California claims that The Walt Disney Company “secretly collects personal information on some of their youngest customers and shares that data illegally with advertisers without parental consent.”
The complaint (PDF) alleges that Disney, and the creators of popular third party advertising libraries and SDKs (software development kits) Upsight, Unity, and Kochava that are embedded into 43 popular Disney apps, are violating the law by harvesting information about users under the age of 13 for “commercial exploitation.
”If true, this could mean that the parties involved violated COPPA (Children’s Online Privacy Protection Act). Disney denies any wrongdoing, stating that they have a “robust” COPPA compliance program and that they complied with the law’s privacy disclosure requirements.
The lawsuit claims the advertising SDKs collect device and user persistent identifiers, which are considered PII (Personally Identifiable Information), to track users across different apps and services, and then share that collected data with advertising services that provide targeted ads.
The complaint then argues that the apps fail to properly verify parental consent for these invasive behaviours in apps that are clearly targeting children under 13.
They are with us 24/7, they are always on, and they have multiple cameras, a microphone, GPS, as well as ALL of our most precious data. It makes sense that it’s not just ad networks that are investing in user surveillance, but also governments and bad actors who wish to gain insight into users, or the users employers.
Lastly, employees are consumers too. Do your employees know what risks are found in the apps they use every day, whether for work or for personal use? Many parents would think twice about allowing their kids to use apps if they knew how the apps behave in the background. Many users would think twice about using certain apps if they knew they didn’t properly protect personal data.
However, most just don’t know the risks. Enterprises can change that by deploying a Mobile Threat Protection solution, so employees have the power to learn about app risks before they even install potentially risky apps on their devices.
Obviously this change of behaviour (vs just downloading apps from the official app stores without any knowledge of risks) protects user’s data, but vicariously, it also protects the enterprise. Win-win.
Sourced by Domingo Guerra, president and co-founder of Appthority
Read the original article in Information Age here.