Google Sued over 'Deceptive' Location Tracking

Uploaded on 2022-02-02 in TECHNOLOGY-Key Areas-Social Media, FREE TO VIEW, BUSINESS-Services-Law

Google is being sued in the US over accusations it deceived people about how to control location tracking. 

Four Attorneys General (AG) from the District of Columbia and the states of Indiana, Texas, and Washington have filed separate lawsuits against Google for allegedly misleading its users into believing that they are no longer tracking their location when they deliberately pause the “Location History” setting on mobile devices.

All four AG’s allege that users are still being tracked by Google without them knowing unless they also turn off the location settings

“Since at least 2014, Google has deceived consumers regarding how their location is tracked and used by the Company and consumers’ ability to protect their privacy by stopping this tracking.... Google leads consumers to believe that consumers are in control of whether Google collects and retains information about their location and how that information is used. In reality, consumers who use Google products cannot prevent Google from collecting, storing, and profiting from their location.” says the Report from the Superior Court of the District of Columbia.

Google is accused  of using so-called Dark Patterns, marketing techniques that deliberately confuse users and a study carried out by researchers at Princeton University found up to two billion Android and Apple devices could be affected. 

The court filing claims thar for Google user to turn off Location History when using Google Maps or Search was insufficient, since a as a separate setting, Web and App Activity continued to log location and other personal data. In response, Google says these claims are inaccurate and outdated and describes Web & App Activity as a way to personalise experiences for users by saving searches and activity in a user’s account. 

"Google has relied on, and continues to rely on, deceptive and unfair practices that make it difficult for users to decline location tracking or to evaluate the data collection and processing to which they are purportedly consenting," the legal action alleges.

Google told reporters the case was based "on inaccurate claims and outdated assertions about our settings".
A representative added: "We have always built privacy features into our products and provided robust controls for location data.... We will vigorously defend ourselves and set the record straight."

The legal action claims Google's policies contained other "misleading, ambiguous and incomplete descriptions... but guarantee that consumers will not understand when their location is collected and retained by Google or for what purposes". It refers to dark patterns, design choices that alter users' decision-making for the designer's benefit - such as, complicated navigation menus, visual misdirection, confusing wording and repeated nudging towards a particular outcome.

Data regulators are increasingly focusing on these practices and Google faces a raft of other legal actions in the US, including:

  • In May 2020, Arizona filed a legal action over the same issue.
  • In December 2020, multiple US states sued over the price and process of advertising auctions.
  • In October 2020, the US Justice Department alleged Google had a monopoly over search and search advertising.

In a separate lawsuit, the US justice department in October 2020 alleged the tech company abused its position to maintain an illegal monopoly over search and search advertising. “Two decades ago, Google became the darling of Silicon Valley as a scrappy startup with an innovative way to search the emerging Internet. That Google is long gone,” says the Justice Department.

US Dept. of Justice:      Office of the Attorney General:        BBC:     Silicon:     MarwareBytes:      Guardian:    

You Might Also Read: 

Russia Fines Google For Illegal Content Breach:

 

« Winner: NSA Best Cyber Security Research Paper
Cyber Criminals Frustrated By Russian Crypto Currency Rules »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Our Supplier Directory lists 6,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

APrivacy

APrivacy

APrivacy provides information and communication security products for the financial services industry.

Usenix

Usenix

Usenix brings together the community of engineers, system administrators, scientists, and technicians working on the cutting edge of computing.

Schneider Electric

Schneider Electric

Schneider Electric develops connected technologies and solutions to manage energy and process in ways that are safe, reliable and sustainable.

Six Degrees

Six Degrees

Six Degrees is a leading secure, integrated cloud services provider. We protect UK organisations and help them thrive in the cloud by giving them secure platforms to innovate and grow.

CARICERT

CARICERT

CARICERT is the National Cyber Emergency Response Team of Curacao in the Caribbean.

ABS Group

ABS Group

ABS Group provides risk and reliability solutions and technical services that help clients confirm the safety, integrity and security of critical assets and operations.

Seavus Accelerator

Seavus Accelerator

Seavus Accelerator's goal is to create an enabling and stimulating environment for start-ups growth and provide continuous high quality acceleration and investment support.

Startup Capital Ventures

Startup Capital Ventures

Startup Capital Ventures is an early stage venture capital firm with a focus on FinTech, Cloud/SaaS, Security, Healthcare IT, and IoT.

The Cyber AB

The Cyber AB

The Cyber AB is the official accreditation body of the Cybersecurity Maturity Model Certification (CMMC) Ecosystem.

NuID

NuID

NuID is a pioneer in trustless authentication and decentralized digital identity.

Infinipoint

Infinipoint

Infinipoint pioneers the first Device-Identity-as-a-Service (DIaaS) solution, addressing Zero Trust device access and enabling enterprises of all sizes to automate cyber hygiene.

Creative Destruction Lab (CDL)

Creative Destruction Lab (CDL)

Creative Destruction Lab is a nonprofit organization that delivers an objectives-based program for massively scalable, seed-stage, science- and technology-based companies.

MyKRIS Asia

MyKRIS Asia

MyKRIS specialise in providing and managing Internet network services and cyber security services to enterprises.

Flotek

Flotek

Flotek is an IT & Comms service provider delivering SMEs with trusted, innovative and cost effective cloud technology, with confidence, clarity and clout.

5S Technologies

5S Technologies

5S Technologies is a regional IT solutions and services provider based in Cary, NC and serving the Carolinas.

Texaport

Texaport

Texaport's vision is to be the trusted partner of choice for organisations seeking comprehensive IT management and cutting-edge security solutions.