OnePlus goes too far collecting private user data without proper warning

OnePlus OxygenOS phone data tracking raises privacy concerns

On further analysis he realized that, OnePlus was collecting User' phone number, MAC addresses, IMEI and IMSI code, Mobile network (s) names, Wireless network ESSID and BSSID, Device serial number, Timestamp when a user locks or unlocks the device, Timestamp when a user opens and closes an application on his phone, Timestamp when a user turns his phone screen on or off. The report comes after an investigation by Christopher Moore, a security blogger in the United Kingdom, said that his OnePlus 2 was transmitting data to OnePlus.

Moore has described the data collection in his blog post; the data was being transferred to an Amazon AWS instance from his OnePlus 2 device. According to some reports, OnePlus has been harvesting unanonymised data analytics from its buyers.

As the handset began to age, inherently losing its charm, the public scorn ironically subsided, especially as OnePlus continued to improve its software in sometimes very meaningful ways.

After further in-depth research, Moore noticed that the company was also collecting details such as which app the user opened and when the user launched or closed an app.

While the response by OnePlus only relates to partially stop the device from automatically sending usage data, a Twitter user has posted a way that can end the transmission of usage data permanently. "I've read your article about OnePlus Analytics".

Moore's attempts to get details from OnePlus on how to disable the data tracking weren't fruitful, though he found a Reddit thread that led to the revelation that the data tracking is happening through OnePlus Device Manage and Device Manager Provider. This one doesn't just concern the OnePlus 5, actually surfacing online many months back after a lot of digging into the OP2's data collection tactics.

However, when this issue was reported to OnePlus, the company confirmed that they transmit analytics data in two different streams over HTTPS to an Amazon server. The first stream is usage analytics, which we collect in order for us to more precisely fine-tune our software according to user behaviour. This transmission of usage activity can be turned off by navigating to ‘Settings - ‘Advanced - ‘Join user experience program.

This is not the first time that OnePlus has ended up in a major controversy.

Christopher soon realised that Oneplus support team may not be authorised to suggest a legitimate solution even if they want to.

Related:

Comments


Other news