Hacker Neue

Preferences
omnimus parent
First thing i saw when i clicked the link.

“Privacy of user data. Signal does not sell, rent or monetize your personal data or content in any way – ever.

Please read our Privacy Policy to understand how we safeguard the information you provide when using our Services.”

I clicked Privacy Policy and there is whole page explaining whats happening with your data.

Your comments seem a bit biased?

reconnecting
Also, this is untrue, as they monetize personal data by sharing it with ad networks.

You can visit their donation page [1] that contains ad pixels from LinkedIn, Google Tag Manager and Reddit. Again, no details in the privacy terms [2] about sharing visitor data to those companies.

[1] https://signal.org/donate/

[2] https://support.signal.org/hc/en-us/articles/360032293251-Do...

omnimus OP
That's fair critique. Their website uses third parties to work and some of the services they shouldn't use. Others they probably have to use.

But you are implying that this makes the app itself broken. I don't think this is proof that the app itself is not respecting privacy like their legal documents say.

I won't fight for them. I've never even been on their website. But this is classic situation where someone else is in charge of website and marketing. I wouldn't be surprised if slapping google analytics on a website was standard for every other "privacy focused" marketing product.

reconnecting
When someone takes clients' private information and shares it with other businesses without providing transparency over this fact, it is actually a breach of privacy. In terms of Signal, these breaches are both about their application and about their website, illustrating a complex issue with privacy in their business organization.

I'm not saying that the app is broken, I said that it handles user privacy unacceptably poorly.

reconnecting
The primary purpose of a Privacy Policy is to explain how and with whom a company shares PII with service providers. This is something that is completely missing from this document for the last 7 years, according to the date of the last update at the bottom.
pcthrowaway
and what if they aren't sharing any personal data with service providers? Should they start so that you can feel their policy statement is more honest?
reconnecting
This is incorrect. Look at the code, there are many services integrations including PayPal, captchas etc. All this must be in privacy statement, as even IP is considered as PII according to GDPR.

This item has no comments currently.