SafetyCore Archives

AppWizard

March 4, 2025

Google’s ‘consent-less’ Android tracking probed by academics

Research by Doug Leith, a professor at Trinity College Dublin, shows that Android users are subjected to advertising cookies and tracking mechanisms that start collecting data before any app is launched, without user consent or the option to opt out. The study identifies systems within Android that send user data to Google via pre-installed apps like Google Play Services and the Google Play Store. One such mechanism is the "DSID" cookie, which is created shortly after logging into a Google account and is used for personalized advertising, lasting two weeks. Another tracker, the Google Android ID, is generated upon first interaction with Google Play Services and continues to transmit data even after the user logs out, with removal only possible through a factory reset. Leith's findings raise concerns about potential violations of data protection laws, particularly regarding the classification of the Android ID as personally identifiable information under GDPR. Google responded to the findings, emphasizing user privacy and compliance with privacy laws, while also stating disagreement with Leith's legal analysis. Additionally, the introduction of the Android System SafetyCore feature, which scans photo libraries for explicit content without user consent, has sparked user discontent, with many reviews criticizing the lack of consent during its installation.

AppWizard

February 27, 2025

Google’s SafetyCore App Secretly Scans All Photos on Android Devices

Google's SafetyCore app was launched in October 2023 as part of system updates for Android devices, designed to classify content like spam and explicit material through on-device image analysis. It operates locally using machine learning, avoiding cloud uploads, and is promoted as a privacy-enhancing feature. However, it requires 2GB of storage and operates in the background without prior user disclosure, leading to criticism regarding its transparency and potential privacy implications. Users discovered its existence through online discussions, with some labeling it as "spyware." Although Google claims that SafetyCore only activates upon app requests and does not report findings back to the company, the closed-source nature of the app raises concerns about independent audits and user trust. Advocates for privacy emphasize the need for transparency in technology, especially regarding features that access personal data. Users can disable SafetyCore through the Settings menu, but many remain unaware of this option. The situation highlights a broader issue of balancing innovation with user consent in the tech industry.

AppWizard

February 25, 2025

What is the ‘SafetyCore’ app on my Android phone?

A new application named "SafetyCore" has been rolled out on Android devices as part of the November 2024 Google System Updates. It is designed to support safety features for Google Messages, including detecting scam messages and blurring images that may contain nudity. This app processes messages on the device while maintaining end-to-end encryption. Additionally, it is linked to the "Sensitive Content Warnings" feature, which blurs potentially sensitive images and provides resources for users. Alongside "SafetyCore," the "Android System Key Verifier" app introduces a contact verifying feature to prevent scams by allowing users to verify their contacts' public keys using QR codes, though this feature will launch in 2025. Both apps are intended to enhance user safety and security.