126
36

Ok so, here I am again asking another question 🙈🙊 But hear me out: I read this post here about, if there even is a good privacy messenger that can be trusted. Someone in the comments mentioned Conversations (a XMPP client for Android). This made me look into XMPP and at the moment I am giving Conversations a try. Reading into XMPP, I couldn't find a problem security or privacy wise. Also it seems like it does not matter what server I use (atm. we are on 07f.de) since it is all e2e with OMEMO. Am I missing something or is it really this good? And if I dont trust anyone, I could host my one instance of ejabberd, right?

127
116
submitted 1 month ago by dudenas@slrpnk.net to c/privacy@lemmy.ml

My parents are getting a new tv, and are asking for recommendation. I think all I can influence is the brand/model (not realistic to propose rpi and more complex systems). I instinctively avoid google/android and lean towards anything else open source, so probably LG WebOS.. But I had bad luck searching for more detailed comparisons. Maybe you have experience or opinions?

128
122
submitted 1 month ago by sabreW4K3@lazysoci.al to c/privacy@lemmy.ml
129
250

cross-posted from: https://lemmy.world/post/20495259

Depending on where you're based, you'll find PayPal's new data-sharing option under a different name. Remember, you may not see this at all if you're based in a country that doesn't allow it.

If you're in the US, you should head to your profile Settings and tap on Data & privacy. Under Manage shared info, click on Personalized shopping. You should see the option enabled by default. Toggle off the button at the right to opt-out.

If you are in the UK like me, you'll see something different after you head to your profile Settings and tap on Data & privacy.

Under Manage your privacy settings, here you'll see an Interest-based marketing tab – click on it. At this point, two options will appear: Interest-based marketing on PayPal and Internet-based marketing on your accounts. You have to tap on each of these and toggle off the button at the right to opt-out. These instructions can also apply if you're based in the EU.

130
-12
submitted 1 month ago* (last edited 1 month ago) by brbposting@sh.itjust.works to c/privacy@lemmy.ml

alt-text

Two horizontally stitched screenshots comparing a search for “Reavers GIF” on DuckDuckGo and Google in Safari iOS (private tabs). DDG presented zero Firefly/Serenity relevant results while Google found them exclusively.

Hopefully a privacy-focused yet fast instance for US West Coast cheapskates who probably should pony up for Kagi, buttttttttttt

SearXNG Instances list on SearX.space

131
81
submitted 1 month ago by gytrash@feddit.uk to c/privacy@lemmy.ml

Social media platforms must restrict the use of personal data for targeted advertising, to comply with the bloc's regulatory law, the Court of Justice of the European Union ruled on Friday. The ruling comes as a blow to social media giant Meta.

Meta collects digital data of users of its social media platform Facebook when they visit other websites and use third-party apps, which allows Meta to personalize advertising.

But under theEU's General Data Protection Regulation (GDPR), companies are obliged to adhere to the principle of "data minimization," restricting the amount and duration of data used for advertising purposes...

132
90

I got hit with the "sign in to confirm you're not a bot today". I thought I could get around it by firing up a vpn in a GDPR country, but I got the same notice there as well. YT-DLP gives me the same error, but curiously FreeTube, GrayJay, and NewPipe all seem to get around it. I don't know for how long, but they seem to all be working for now.

I know the proper solution might just be to go touch grass, but I watch YouTube on a nearly daily basis and would like to get it working again in the browser without needing an account and on YT-DLP if anybody knows any solutions.

Also, I follow video/audio content through RSS and didn't know if anybody had a good way to find out which creators post where. Whenever any creator mentioned they post elsewhere I always replaced the YouTube subscription with a subscription to them on anther platform. When I got the sign in error I went through my favorite creators and searched for them on Odysee and Rumble, finding a small but not insignificant amount of people I follow on Odysee.

Is there a good place to find out who posts where? Any sort of lists of which creators have their own PeerTube instances/channels, post audio content to substack/soundcloud, mirror to other video platforms like odysee/rumble, etc?

Thanks

133
97
submitted 1 month ago by Blizzard@lemmy.zip to c/privacy@lemmy.ml

cross-posted from: https://lemmy.zip/post/23894598

Despite its emphasis on protecting privacy, Mozilla is moving towards integrating ads, backed by new infrastructure from their acquisition of Anonym. They claim this will maintain a balance between user control and online ad economics, using privacy-preserving tech. However, this shift appears to contradict Mozilla's earlier stance of protecting users from invasive advertising practices, and it signals a change in their priorities.

134
32
submitted 1 month ago by Pacrat173@lemmy.ml to c/privacy@lemmy.ml

If you haven’t heard

https://blog.mozilla.org/en/mozilla/improving-online-advertising/

So I’m looking for a new IOS browser

A couple of preferences

In-built Ad blocker

Private

No Ai anything

Thanks for any suggestions!

135
34
submitted 1 month ago by cralder@lemmy.world to c/privacy@lemmy.ml

I don't know when this started but I noticed it for the first time a few months ago. Some podcasts will have preroll ads that are obviously tailored to me since they are not in the same language as the podcast, instead they are in my native language and if I connect to a VPN in another country the ad will change to one from that country. They also seem to appear regardless of podcast app. I have used both AntennaPod and Spotify. AntennaPod is free so I guess they source their podcasts from some third party website that could be adding in the ads. But since I am paying for Spotify I am expecting not to have to listen to any ads. So who is adding in these ads? Can I get rid of them or am I just stuck with them?

136
92
submitted 1 month ago* (last edited 1 month ago) by JustMarkov@lemmy.ml to c/privacy@lemmy.ml

I've been inspecting this topic quite a lot and I'm a little confused now. So, we have reasons not to use Signal, reasons not to use Matrix, there were also some claims about Session being a fraught. Briar is mostly activists related (not very suitable for daily use), XMPP lacks good clients and suffers from fragmentation of protocol standards implementation, SimpleX is too feature-incomplete (no UnifiedPush support, big battery drain on Android, very decent desktop client without any message sync). I can't say a lot about Threema or Wire, as I'm not very familiar with them.

So, my question is — is there any good private messenger at all? What do you think is the most acceptable option?

EDIT: In addition to my post:

All messengers have their flaws, I'm well aware of that. I was interested in hearing users' opinions regarding these shortcomings, not in finding the perfect messenger. I may have worded my thoughts incorrectly, sorry for that.

137
414
138
58
AI surveillance (www.rfi.fr)
submitted 1 month ago by foremanguy92_@lemmy.ml to c/privacy@lemmy.ml

For the Paris 2024 Olympics, the city got the "right" to use the AI surveillance technology in the street. As we thought, they are going to keep this as long as they can.

We need to do something against this IRL mass surveillance, going every day more into our private life

139
61
submitted 1 month ago by Kroxx@lemm.ee to c/privacy@lemmy.ml

Verizon is stopping support for message+ and says to just use Google messenger. Fuck that I hate Google, can anyone suggest an app I can use to just text people and send pictures that works on and offline?

140
366
submitted 1 month ago* (last edited 1 month ago) by JustMarkov@lemmy.ml to c/privacy@lemmy.ml

Telegram CEO Pavel Durov recently announced that Telegram would be handing over user data (such as phone numbers and IP adresses) to the authorities. Now it turns out that it has been doing so since 2018.

My previous post may have seemed to announce a major shift in how Telegram works. But in reality, little has changed.

Since 2018, Telegram has been able to disclose IP addresses/phone numbers of criminals to authorities, according to our Privacy Policy in most countries.

For example, in Brazil, we disclosed data for 75 legal requests in Q1 (January-March) 2024, 63 in Q2, and 65 in Q3. In India, our largest market, we satisfied 2461 legal requests in Q1, 2151 in Q2, and 2380 in Q3.

To reduce confusion, last week, we streamlined and unified our privacy policy across different countries.

Telegram was built to protect activists and ordinary people from corrupt governments and corporations — we do not allow criminals to abuse our platform or evade justice.

Full text of the post.📰 My previous post may have seemed to announce a major shift in how Telegram works. But in reality, little has changed.

🌐 Since 2018, Telegram has been able to disclose IP addresses/phone numbers of criminals to authorities, according to our Privacy Policy in most countries.

⚖️ Whenever we received a properly formed legal request via relevant communication lines, we would verify it and disclose the IP addresses/phone numbers of dangerous criminals. This process had been in place long before last week.

🤖 Our @transparency bot demonstrates exactly that. This bot shows the number of processed requests for user data.

✉️ For example, in Brazil, we disclosed data for 75 legal requests in Q1 (January-March) 2024, 63 in Q2, and 65 in Q3. In India, our largest market, we satisfied 2461 legal requests in Q1, 2151 in Q2, and 2380 in Q3.

📈 In Europe, there was an uptick in the number of valid legal requests we received in Q3. This increase was caused by the fact that more EU authorities started to use the correct communication line for their requests, the one mandated by the EU DSA law. Information about this contact point has been publicly available to anyone who viewed the Telegram website or googled “Telegram EU address for law enforcement” since early 2024. 

🤝 To reduce confusion, last week, we streamlined and unified our privacy policy across different countries. But our core principles haven’t changed. We’ve always strived to comply with relevant local laws — as long as they didn’t go against our values of freedom and privacy.

🛡 Telegram was built to protect activists and ordinary people from corrupt governments and corporations — we do not allow criminals to abuse our platform or evade justice.

141
56
submitted 1 month ago by poVoq@slrpnk.net to c/privacy@lemmy.ml
142
27
submitted 1 month ago* (last edited 1 month ago) by andylicious1337@lemmy.world to c/privacy@lemmy.ml

Ok so here is the situation:

As many here (I guess), I dont like Meta, but since I want to promote my 3D-printed stuff more, I see my self in a position where there is no way around Instagram 🤢

So my question is, if maybe someone here already uses Instagram here "privately" or if someone has ideas on how to use it but still giving Meta as few info as possible?

My idea at the moment would be to use Mullvad for every traffic going to insta. For signup I will of course use an email with a custom-domain that is never used somewhere else and if I like other posts, I will only use the account, related to my business. My personal account is just for getting in touch with real people I know and to promote my business-account. The personal account will not have my real name and uses also a different email from a custom domain.

Thanks in advance for you comments and trust my, I really hate having to submit to Meta and their stupid social media crap....

Edit: Thanks for all your great feedback. I will def. look into all of these ideas 👍

I also forgot two things:

  1. I am using Linux only for this on PC and no Windows(dont know if this changes anything)
  2. I am using LibreWolf on Linux Mint and Waterfox on Graphene OS (of course with Ublock and Privacy Badger ;) )
143
292
submitted 1 month ago* (last edited 1 month ago) by aldalire@lemmy.dbzer0.com to c/privacy@lemmy.ml

23andMe is not doing well. Its stock is on the verge of being delisted. It shut down its in-house drug-development unit last month, only the latest in several rounds of layoffs. Last week, the entire board of directors quit, save for Anne Wojcicki, a co-founder and the company’s CEO. Amid this downward spiral, Wojcicki has said she’ll consider selling 23andMe—which means the DNA of 23andMe’s 15 million customers would be up for sale, too.

23andMe’s trove of genetic data might be its most valuable asset. For about two decades now, since human-genome analysis became quick and common, the A’s, C’s, G’s, and T’s of DNA have allowed long-lost relatives to connect, revealed family secrets, and helped police catch serial killers. Some people’s genomes contain clues to what’s making them sick, or even, occasionally, how their disease should be treated. For most of us, though, consumer tests don’t have much to offer beyond a snapshot of our ancestors’ roots and confirmation of the traits we already know about. (Yes, 23andMe, my eyes are blue.) 23andMe is floundering in part because it hasn’t managed to prove the value of collecting all that sensitive, personal information. And potential buyers may have very different ideas about how to use the company’s DNA data to raise the company’s bottom line. This should concern anyone who has used the service.

DNA might contain health information, but unlike a doctor’s office, 23andMe is not bound by the health-privacy law HIPAA. And the company’s privacy policies make clear that in the event of a merger or an acquisition, customer information is a salable asset. 23andMe promises to ask its customers’ permission before using their data for research or targeted advertising, but that doesn’t mean the next boss will do the same. It says so right there in the fine print: The company reserves the right to update its policies at any time. A spokesperson acknowledged to me this week that the company can’t fully guarantee the sanctity of customer data, but said in a statement that “any scenario which impacts our customers’ data would need to be carefully considered. We take the privacy and trust of our customers very seriously, and would strive to maintain commitments outlined in our Privacy Statement.”

Certain parties might take an obvious interest in the secrets of Americans’ genomes. Insurers, for example, would probably like to know about any genetic predispositions that might make you more expensive to them. In the United States, a 2008 law called the Genetic Information Nondiscrimination Act protects against discrimination by employers and health insurers on the basis of genetic data, but gaps in it exempt providers of life, disability, and long-term-care insurance from such restrictions. That means that if you have, say, a genetic marker that can be correlated with a heart condition, a life insurer could find that out and legally deny you a policy—even if you never actually develop that condition. Law-enforcement agencies rely on DNA data to solve many difficult cases, and although 23andMe says it requires a warrant to share data, some other companies have granted broad access to police. You don’t have to commit a crime to be affected: Because we share large chunks of our genome with relatives, your DNA could be used to implicate a close family member or even a third cousin whom you’ve never met. Information about your ethnicity can also be sensitive, and that’s encoded in your genome, too. That’s all part of why, in 2020, the U.S. military advised its personnel against using consumer tests.

Spelling out all the potential consequences of an unknown party accessing your DNA is impossible, because scientists’ understanding of the genome is still evolving. Imagine drugmakers trolling your genome to find out what ailments you’re at risk for and then targeting you with ads for drugs to treat them. “There’s a lot of ways that this data might be misused or used in a way that the consumers couldn’t anticipate when they first bought 23andMe,” Suzanne Bernstein, counsel at the Electronic Privacy Information Center, told me. And unlike a password that can be changed after it leaks, once your DNA is out in the wild, it’s out there for good. Some states, such as California, give consumers additional genetic-privacy rights and might allow DNA data to be deleted ahead of a sale. The 23andMe spokesperson told me that “customers have the ability to download their data and delete their personal accounts.” Companies are also required to notify customers of any changes to terms of service and give them a chance to opt out, though typically such changes take effect automatically after a certain amount of time, whether or not you’ve read through the fine print. Consumers have assumed this risk without getting much in return. When the first draft of the human genome was unveiled, it was billed as a panacea, hiding within its code secrets that would help each and every one of us unlock a personalized health plan. But most diseases, it turns out, can’t be pinned on a single gene. And most people have a boring genome, free of red-flag mutations, which means DNA data just aren’t that useful to them—at least not in this form. And if a DNA test reveals elevated risk for a more common health condition, such as diabetes and heart disease, you probably already know the interventions: eating well, exercising often, getting a solid eight hours of sleep. (To an insurer, though, even a modicum of risk might make someone an unattractive candidate for coverage.) That’s likely a big part of why 23andMe’s sales have slipped. There are only so many people who want to know about their Swedish ancestry, and that, it turns out, is consumer DNA testing’s biggest sell.

Wojcicki has pulled 23andMe back from the brink before, after the Food and Drug Administration ordered the company to stop selling its health tests in 2013 until they could be proved safe and effective. In recent months, Wojcicki has explored a variety of options to save the company, including splitting it to separate the cash-burning drug business from the consumer side. Wojcicki has still expressed interest in trying to take the company private herself, but the board rejected her initial offer. 23andMe has until November 4 to raise its shares to at least $1, or be delisted. As that date approaches, a sale looks more and more likely—whether to Wojcicki or someone else.

The risk of DNA data being misused has existed since DNA tests first became available. When customers opt in to participate in drug-development research, third parties already get access to their de-identified DNA data, which can in some cases be linked back to people’s identities after all. Plus, 23andMe has failed to protect its customers’ information in the past—it just agreed to pay $30 million to settle a lawsuit resulting from an October 2023 data breach. But for nearly two decades, the company had an incentive to keep its customers’ data private: 23andMe is a consumer-facing business, and to sell kits, it also needed to win trust. Whoever buys the company’s data may not operate under the same constraints.

144
12
deleted (www.example.com)
submitted 1 month ago* (last edited 1 month ago) by Charger8232@lemmy.ml to c/privacy@lemmy.ml

For those who are unaware: GrapheneOS is a privacy and security focused mobile operating system built on Android.

https://grapheneos.org/

Yes, the phone in the picture is running GrapheneOS.

145
343
146
215
submitted 1 month ago by sqgl@beehaw.org to c/privacy@lemmy.ml
147
80
submitted 1 month ago* (last edited 1 month ago) by Reverendender@sh.itjust.works to c/privacy@lemmy.ml

I was trying to airplay a video to my tv, just like I did for hours last night, and YouTube kept demanding that I login to prove I’m not a bot. So I figured I would make a fake login on Proton. That worked fine, but then it wants to text me for verification and obviously I do not want to give them my number, but it’s rejecting every number I try from the temp number sites.

I am in Safari for iPad in a private window, using vinegar.

148
61
submitted 1 month ago by Sunny@slrpnk.net to c/privacy@lemmy.ml

Hi! Thinking about registering a new domain for homelab setup. Not quite sure which registrar to go with but have heard good things about Porkbun here on lemmy. But, do people fill in their actual real name, and details for these sorta things? Geuninly curious, don't want to end up on bad terms with a company. But on the other hand im just going to use this for my homelab and dont see the "need" to give away my details for this sorta thing.

Let me know how you guys do it :)

149
105

A new Federal Trade Commission (FTC) report confirms what EFF has been warning about for years: tech giants are widely harvesting and sharing your personal information to fuel their online behavioral advertising businesses. This four-year investigation into the data practices of nine social media and video platforms, including Facebook, YouTube, and X (formally Twitter), demonstrates how commercial surveillance leaves consumers with little control over their privacy. While not every investigated company committed the same privacy violations, the conclusion is clear: companies prioritized profits over privacy.

While EFF has long warned about these practices, the FTC’s investigation offers detailed evidence of how widespread and invasive commercial surveillance has become. Here are key takeaways from the report

150
121
view more: ‹ prev next ›

Privacy

31987 readers
335 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS