Personal Tech

Apple sued for promising privacy, failing at it

What's allowed for Cupertino is verboten for everyone else

Apple has again been sued for promising privacy and allegedly failing to provide it.

The complaint [PDF], filed in Northern California District Court on behalf of plaintiff Julie Cima, claims Apple captures iPhone customer data despite device settings declaring a preference that information should not be shared.

"Apple records consumers’ personal information and activity on its consumer mobile devices and applications ('apps'), even after consumers explicitly indicate through Apple’s mobile device settings that they do not want their data and information shared," the complaint, filed this week, says. "This activity amounts to an enormous wealth of data that Apple collects and uses for its financial gain."

The legal filing cites research published last November by a two-person firm developer team called Mysk that claimed Apple collects analytics data even when iPhone users have set a preference disallowing data collection. Those claims led to a similar sueball shortly after they appeared, and to another such case filed earlier this month.

Prior research by boffins from Oxford University, published in April 2022, presents similar allegations. The researchers claim Apple engages in invasive data practices similar to those it forbids among third-parties, in violation of consumer expectation and marketing slogans.

As with the previous privacy lawsuits, Cima's lawsuit argues that Apple makes misleading promises in its marketing and published policies.

The perceived mismatch between marketing and reality is a common theme in litigation against Apple. Those raising legal challenges in the past, for example, have railed about the discrepancy between advertised screen size and actual screen size. They've also taken issue with Apple's assertions about the extent to which its products can resist water damage.

This latest bit of lawyering goes after the alleged hypocrisy in Apple's privacy policy commitment, "At Apple, we respect your ability to know, access, correct, transfer, restrict the processing of, and delete your personal data," and in the company's promise to "disable [the sharing of] Device Analytics altogether" at the touch of an off button.

The complaint cites Apple billboard campaign slogans like "Privacy. That’s iPhone," and "What happens on your iPhone, stays on your iPhone," and "Your iPhone knows a lot about you. But we don't."

The lawsuit then goes on to insist that "Apple does not honor users' requests to restrict data sharing," claiming that the company tracks consumer actions including: how users find apps; the amount of time spent looking at apps in its App Store; App Store searches; and App Store ads displayed and clicked on.

Setting aside the possibility of legal deficiencies that can get such claims tossed, the iPhone maker may choose to defend itself by arguing that ingesting data through its first-party relationship with its customers is not sharing information with a third party.

Apple has not yet responded to the privacy claims made in the similar cases filed in November 11, 2022 (Libman v. Apple) [PDF], and January, 2023 (Serrano v. Apple). In the former case, the company has agreed to file its response by February 17, 2023.

Apple did not immediately respond to a request for comment. ®

Send us news

Metaverse? Apple thinks $3,500 AR ski goggles are the betterverse

iGiant's turn to roll the dice on VR next year after Facebook, Microsoft, Google blow billions on the unloved tech

Apple WWDC: M2 Ultra chip lands in 'cheese grater' Mac Pro to displace Cupertino's last Intel holdout

Workstations boosted, MacBook Air embiggened, iOS embraces web apps, and all the rest of Cupertino's new stuff

Feds, you'll need a warrant for that cellphone border search

Here's a story with a twist

Microsoft embraces Apple Mac loyalists – as long as they're using its software

iDevice admins now have a safe space where they can talk about M365

Amazon Ring, Alexa accused of every nightmare IoT security fail you can imagine

Staff able to watch customers in the bathroom? Tick! Obviously shabby infosec? Tick! Training AI as an excuse for data retention? Tick!

Apple warns of three WebKit vulns under active exploitation, dozens more CVEs across its range

High school student and Amnesty International named among bug-finders

Python Package Index had one person on-call to hold back weekend malware rush

We speak to infra director after project temporarily freezes new user accounts

Windows XP's adventures in the afterlife shows copyright's copywrongs

Intellectual property law crushed by zombie horde

Kremlin claims Apple helped NSA spy on diplomats via iPhone backdoor

Did we just time warp back to 2013?

Uncle Sam wants DEF CON hackers to pwn this Moonlighter satellite in space

'World's first and only' orbiting infosec playpen due to blast off Sunday

Mozilla so sorry for intrusive Firefox VPN popup ad

'We accomplished the exact opposite of what we intended...'

All Microsoft Surface Pro X cameras just stopped working

Facial authentication, video meetings may have to wait, dead security cert blamed