Company Action: The company behind Angry Birds logged the IMEI (International Mobile Equipment Identity), a unique hardware identifier of users' phones.
Purpose Stated: This was done to prevent cheating in the game.
Years of Activity: Since at least 2011.
Data Transmission and Security Issues
Data Transmission: IMEI data, along with other user data, was transmitted over an unencrypted connection.
Privacy Breach: This unprotected transmission enabled unauthorized parties to access sensitive data.
Implications of Data Logging
Government Surveillance:
A government was able to build a global database of users' locations.
This was due to the widespread installation of Angry Birds (over half a billion users).
Users unknowingly contributed to a massive surveillance program.
Broader Impact of Data Collection
Data Points Logged: Different types of data were collected, such as:
How people walk
Screen resolution
Air pressure
User location
Car speed
Outcome: These various data points create a comprehensive view of individuals' movements and behaviors.
Lessons Learned
Unintended Consequences: Companies can inadvertently become part of larger privacy issues and surveillance activities.
Importance of Data Security: Highlight the need for secure data transmission processes to protect user privacy.
User Awareness: Users should be aware of how their data is being used and shared by apps they install.