The new FTC report builds on an earlier survey of the mobile apps industry by the commission’s staff that urged apps stores and developers _ along with the advertisers and brokers they work with _ to be more open about how their programs work. The commission credited Apple and Google for new policies that encourage developers to publish their privacy policies clearly and in places that are easily accessible. But the FTC said there was too little progress, forcing it to take more aggressive steps.
The staff randomly selected 200 apps each from the Google and Apple stores using the keyword “kids.” After testing the apps, they determined that 60 percent of them transmitted the user’s device identification to the software company or, more frequently, to advertising networks and data brokers that compile, analyze and sell consumer information for marketing campaigns.
The device ID is a string of letters or numbers that uniquely identifies each mobile device and can represent a pathway to more personal information, like a person’s name, phone number and email address. More than a dozen of the apps that transmitted device IDs also sent the user’s exact geographic location and phone number, the FTC said.
Only about 20 percent of the apps disclosed any information about the program’s privacy practices, and the FTC said many disclosures were inadequate.
More than 20 percent of the apps examined included links to social media services but few informed consumers about them before the program was downloaded. The FTC said the result was that children could post comments, photos or videos that could harm their reputations or offend other people.