An award-winning company founded by former Google engineers is taking legal action against the search engine giant over claims it has engaged in a “pattern of abusive behavior” and is violating privacy rights on a “massive scale.”
Disconnect, a U.S. firm that designs privacy-enhancing technology, has filed a complaint with European antitrust regulators after its Android app was banned from the Google Play Store. The app was designed to protect smartphone users from invisible tracking and malware distributed through online advertisements.
The complaint was submitted earlier this month, but the full allegations were not made public at the time. The Intercept has obtained a copy of the 104-page complaint, which attacks Google over its claimed commitment to privacy and accuses the tech titan of trying to stop people from using the Disconnect app because it poses an “existential threat” to its revenue sources.
Google’s business, the complaint claims, “consists almost entirely of gathering data about the preferences, locations, and behavior of ordinary people and monetizing that data through the sale of targeted advertisements on the Internet.” Because of this, it alleges, Google is “using the full weight of its market power to deny users control over tracking, particularly mobile tracking.”
When you visit a website, usually unbeknown to you, other websites and services try to connect to your device in the background to collect data about your browsing habits. The Disconnect app allows users to view and block these invisible network connections, which the company says “permit intrusions into the personal privacy of users by facilitating tracking and the collection of personal information” and “expose users to risks associated with malware and other forms of cybercrime.” However, some of these same invisible connections are used to generate advertising revenue, an issue that appears to be at the root of Google’s decision to crack down on Disconnect.
Disconnect argues in its complaint:
[I]nvisible, unsolicited tracking is Google’s lifeblood. The company makes virtually all of its revenue from advertising. Tracking permits Google to target its ads and, hence, to charge advertisers far more for ad placement. Indeed, Google is under enormous pressure from the financial community to increase the “effectiveness” of its tracking, so that it can increase revenues and profits. Giving a user the ability to control his own privacy information (and to protect himself from malware) by blocking invisible connections to problematic sites constitutes an existential threat to Google.
Google is dismissing Disconnect’s allegations as “baseless.” A company spokesman told The Intercept that Google Play policies “have long prohibited apps that interfere with other apps (such as by altering their functionality, or removing their way of making money). We apply this policy uniformly — and Android developers strongly support it. All apps must comply with these policies and there’s over 200 privacy apps available in Google Play that do.”
However, Disconnect claims that some apps that interfere with others have in fact been allowed in the Play Store — such as Ghostery’s Ad Control app — and it says Google turns a blind eye to them because they are “less effective” at blocking invisible tracking.
“We don’t think our app should be treated differently, the remedy we’re seeking is equal treatment,” Disconnect’s CEO Casey Oppenheim told The Intercept. “Google allows many Android apps in the Play Store that interfere with other apps.”
Google is putting its interest in ad revenues above protection of its users, Oppenheim alleged, undermining the public’s right to privacy and ability to protect itself from malware and identity theft.
“Google has built great technologies,” he said, “but it’s violating consumer privacy rights and creating dangerous security vulnerabilities on a massive scale.”
Oppenheim, a former consumer-rights advocate and attorney, co-founded Disconnect in 2011 alongside former Google engineers Brian Kennish and Austin Chau. (Both Kennish and Chau no longer work for Disconnect, and Kennish says he does not support the antitrust case.) The San Francisco, California-based company won the 2015 Interactive Innovation Award for privacy and security at the South by Southwest Conference and it says its technology is actively used by more than 10 million people.
Disconnect chose to file its complaint against Google in Europe as opposed to in the United States because European regulators have a track-record of taking a strong pro-privacy stance, and they also have an existing antitrust investigation into the tech giant over its Android operating system.
A spokesperson for the European Commission told The Intercept that Disconnect’s complaint had been received and was in the process of being assessed. The Commission could potentially force Google to reinstate the Disconnect app to the Google Play Store across Europe, which would put pressure on Google to reintroduce it worldwide. It is unclear when a decision on the case will be made; the timescale for antitrust investigations can vary widely, depending on the complexity of the case.
Post updated on 26 June at 14:00 ET to clarify that former Google engineers Brian Kennish and Austin Chau, who co-founded Disconnect, no longer work for the company.
Photo: Virginia Mayo/AP
Anonimity is key feature in our life. Recently I’ve switched from Gmail to something more secure and private. It must be a personal choice (if you like to share your personal data with the government) or just simply a negligence (people don’t care about their privacy). ShazzleMail is FREE private and secured email. Also offering a Business Version and HIPAA Compliant one for medical emails. More info here: http://www.shazzlemail.com, http://www.shazzlemd.com, http://www.shazzlemail.com/pro
I checked out Disconnect. They seem legit, however I really dislike their website. Light gray on white or light green background makes their text very hard to read. At $50 a year, is is competitive with my current VPN (Private Internet Access) PIA. I like PIA’s no nonsense approach and even their clunky graphics are better than Disconnect’s.
Disconnect’s website graphic design is HORRIBLE. Even The Intercept’s is better.
What’s up??
I’m sure I added some comments to this one… where are they???
thanks…
A-ha! They are there — I had misspelled my screen name –
Not the best typist here…
Thanks.
There need to be a sea change in the law as it pertains to personal privacy. The American public must wake up and realize that their personal private life is the last vestige of individuality that we possess. If we allow the government and corporations to define our “expectation of privacy”, we are doomed to a life of servitude. Unless there is a proverbial revolution against the oppressive, relentless databanks that are acquiring our most personal information only to be given up to hackers, we can kiss our independence – and our liberty – goodbye.
I’ll totally agree that a sea-change is needed. Everyone needs to start recognizing the precious nature of privacy and start insisting that it be respected.
Am I dreaming???
it’s not just privacy…people need to wake up and realize they have rights. period.
Right on
USE ADBLOCK and ADBLOCK plus on your browsers. You’ll never see an add again. And it’s free.
BUT make sure you UNCHECK the selection that says “SOME of GOOGLES ads are Whitelisted Meaning allowed, Yeah, uncheck that.
Done, no more adds.
Evil is accurate, but annoying is too. Searched for a new lawnmower, and bought one, yet every other ad that shows up is still for lawnmowers.
Incompetent evil where they can’t figure out that I’m no longer in the market for a lawnmower is even worse than targeting their ads.
They are duping their ad customers with mis-targeted ads, and denying me access to ads for wonderful products I don’t yet know I really really need… beyond a second new lawnmower of course.
You aren’t giving the algorithms enough credit — they’re clearly telling you you made a poor lawnmowing decision, and should promptly return the purchased model for a model that’ll make the advertisements go away.
Lmao, that is exactly what I was thinking
I can’t believe there’s still people who use Google for anything. At least change your search engine to duckduckgo or ixquick. For God’s sake, please stop using the word “Google” to mean “do an internet search”. Google is an evil company.
Hi Mike
Unfortunately , right nowI have to use Google for blogging as both my blogs are on blogger. However, I’ve been getting really fed up with Google based on their new two-page sign in which is really disrespectful of customers’ privacy and data security. Add that to this story and the stories about spyware inserted into chromium (General Hercules has a link to one story downthread…
However, I have been starting to use ixquick for searches I found that duckduckgo didn’t give very good results, nor did startpage.
If you or anyone has any ideas about what to do as an alternative to blogger, I’d love to know. I’m familiar with WordPress; one blog actually started there, and my account is still ‘active.’ But there were some problems I found there… so I’m really not in a rush to go there… Suggestions???
Google MUST be DESTROYED.
This here is mischief big time.
hello –
I saw a post about it at a website of a privacy org, and there has also been an article about it at The Guardian. And almost everytime I post a question on a blogger board or all, they seem to want to push chrome. Well, I certainly wouldn’t trust that now with the proverbial 10 foot pole.
One more reason to shake my head and sigh in dismay…
GOOGLE might as well just come out and admit they are a branch of the US government / military.
THAT’S WHY I DON’T USE GOOGLE, BUT MOZILLA!
Firefox and fennec are getting a bit snitchysnoopy out of the box lately. Not as bad as google, but enough to be frustrated (when you don’t want updates or outgoing connections, you say you don’t, you go into about:config and so on to fix a mess of bools, and it still connects out, you know it’s not really giving you all the options you’d want. safebrowsing is an example. so are things that leak information about your connection even when you’re behind a vpn or proxy like the recent webrtc issue (https://torrentfreak.com/huge-security-flaw-leaks-vpn-users-real-ip-addresses-150130/) which went rather strangely under the radar. Things get too big.
Google has been stealing identities for years. Like the government, they want to operate in secret.
New development.
http://www.theguardian.com/world/2015/jun/23/francois-hollande-emergency-meeting-wikileaks-us-spied-three-presidents-france
ut oh. I think I smell trouble for the NSA. At least I hope so. German gov officials arn’t doing jack shit but holding those who want and investigation into the German IC at arms length.
Ghostery’s Ad Control app is not a thing.
Here is the best surfer guild for muti-layered security.
http://b.agilob.net/browsers-addons-reference/
Amazon is a good test site which uses Browser fingerprinting. You can see this in the targeted adverting on their site, even if you use ‘just’ a VPN and ad blockers. Only by using several add-ons together ( I use Disconnect, Ghostery, Ublock Origin and Privacy Bager together). The critical best though is Random Agent Spoofer where even Google and Amazon cannot identify who you are. Google gets so frustrated it won’t let you search.
I am in control, but once you see dozens of trackers are being blocked (per page) you realize this is a nasty ongoing technology war.
Mozilla is too close to Google as each new Firefox release adds forced public/social sharing to allow advertising. Study Firefox settings using about:config. Just one important area to limit as the NSA is (without a doubt) in the cloud servers.
https://support.mozilla.org/en-US/kb/how-stop-firefox-making-automatic-connections
Thanks for the list. Very handy.
@RyanGallagher,
First off, thanks for the article.
Sorry if this isn’t related specifically to content of the article, but I do want to direct it specifically to you as I’ve found your articles some of the best formatted and presented ones on the site.
I was wondering if there was any chance you could encourage/advocate with the (new) editor for the way you embed documentcloud links to be adopted as the standard linkage method to pdf’s/etc on the site? It’d make life a lot easier (and a bit safer) if this were the standard. It’d also be kinder and gentler on people who have metered connections, saving them reloads, etc. (I’d probably also suggest listing the document’s size in KB or MB, secondarily). I am grateful you guys don’t use (asdf) Scribd like some sites do. The embedded reader can be useful, but maybe you can just do direct links at the bottom of the articles and inline ones using the embedded reader as a site standard?
So Google pretty much can get away with anything, even with the violation of privacy rights…How much longer are we going to let all these big corporations to take away our freedom and our rights? Shazzle always reminds me that Privacy is our fundamental right and I’m so happy to remind everyone!
Most social-media startups have accessed without overt permission from their customers. In America, the masses don’t mind. This lack of judgement and integrity is just another example of a decline in morality.
it’s not totally that they don’t mind… it’s also that they don’t even know and legislators don’t represent those that do.
Google Owns Android.
So… You figure it out, unless you’re one of those folks that wont believe it until the media tells you.
Oh and apple is no safer.
Again, unless you’re one of those folks that wont believe it until the media tells you.
Disconnect may be a wonderful product, and Google most certainly makes a great deal of money by spying on their users, but Google is under no obligation to provide store space to Disconnect. Disconnect is free to sell, give away, and market their product any way they see fit. That doesn’t obligate anyone else to facilitate their abiity to make a profit.
Google and Apple are the only two major market-owners of the mobile app economy, and as they own the underlying platforms that these apps can be distributed for, and the mechanism of distribution, in each case Apple or Google can be seen as monopolistic.
Monopolies are bad things. Google should not be the arbiter of what can and whst cannot be an Android app.
If Google is making the operating system and running the only ‘store’ for apps that it considers ‘safe’ then it has a responsibility not to require tracking and insecure behaviour of its applications — and in fact it has a responsibility to support apps that don’t. Mixing their peanut butter with their chocolate is actually quite worse than the behaviour that got MS in (temporary) antitrust hot water back in the 90s.
As a sidenote, I’d highly recommend people check out FDroid, and if they’re on a rooted Android phone, grabbing Xposed framework and installing XPrivacy (and grab AppOpsXposed if that’s appropriate for your Android version). I’d also consider using a third party appstore and a ROM that doesn’t shove google services down your throat quite so much (clockworkmod, paranoid android). If you properly limit App permissions and lock your phone down, a third party appstore with some credibility, while unfortunately having some of its own problems, at least doesn’t put all of your data in the same place. There’s no reason any operating system manufacturer should know your device ID and all of the apps you have installed (and uninstalled, and a permanent, lengthy record of everything having to do with your use of the phone and its apps).
Google is the commercialisation of deprivation of privacy. While I don’t know how much I trust or don’t trust ‘Disconnect’ yet, the case itself is pretty illustrative of some of the problems that come with concentrating trust with companies which only want to let you have apps on their stores if they stand to profit. Not to dismiss storage/serving charges that Google undertakes to run their ‘app store’ but that’s the wrong way to ‘recoup’.
Google likewise has a track record of implementing what’s ordered by a European court only in Europe.
Isn’t the European market as large or larger than the US market? Large enough to make a go of it, anyway.
What I mean is that if they’re ruled against there, we won’t see the ordered change over here.
And? What’s the problem with European courts not being American-centric? All the recent debates over reducing mass surveillance just in the US – who gives a rats’ ass about the rest of the world, was marked by the stench of exceptionalism. Let European courts do what they are meant to do, protect the rights of Europeans, and good luck writing to your representative if you think US citizens deserve the same attention.
In the meantime Disconnect makes a move that’s appreciated and most likely to succeed in Europe, which speaks volumes. Whether they’ll be able to use an anti-trust decision to force Google into worldwide compliance is another ball of wax but, given how little Americans care about what happens outside planet US, getting a taste of your own medicine only seems fair for a change. After all, the poison comes from across the pond and the people at Disconnect felt they’d get a better chance at fighting it on foreign territory, probably with good reason.
Lesson to be learned: the new tracking devices we all own and take with us everywhere are definitely useful, but unplugging from them frequently is beciming more and more important.
Maybe its time to go back to hust having a phone?
My POTS land line phone has an answering machine function, but nothing else, and the sound quality is the standard 3K POTS audio quality, except on calls with people using cellphones, when they sound like they’re learning FX for their next techno album. But my POTS phone’s line has been switched over to VoIP. Now I get spoofed phone calls, with numbers obviously fabricated on a per call basis by a computer, and my TV has ads tailored to some of the places I call.
I don’t think there’s a such thing as “just having a phone” anymore, coppertop. You’re a power source for the advertising industry.
Well put.
Not sure if you care, but I feel for you about your POTS situation. The spoofing, though, is actually a function that came with all electronic/digital switching systems — and has long been possible through ‘orange boxing'; in the beginning people had to build a device. Then someone wrote software to do it. Now websites sell it as a service and it’s everywhere. CallerID is basically just as vulnerable to spoofing as any VOIP is, just maybe done slightly differently. It’s really only a matter of ease of access.
That it was possible the minute they moved to electronic switching, okay. But it didn’t happen when I had a genuine land line. I’m fine with POTS, it’s a phone.
Could just be the adoption curve combined with the fact that all the robos now use VoIP too, so there’s more calls made for less money in the first place being spoofed at minimal to no cost with greater ease. ie, just timing.
That said, anybody that’d choose VoIP over POTS is in my humble opinion absurd, and the telcos forcing people to switch over are doing away with infrastructure and disaster preparedness with glee, abandon, and greed. But I want payphones back too; just because stuff’s expensive to keep up doesn’t mean they don’t provide a very necessary purpose (don’t get me started on the social stratification either for people who may be impoverished and only need to make the occasional 25-50c calls (or people who get mugged for their phones? ;))).
Useful? I would say luxurious.
We all seemed to get along fine for thousands of years without them, why does every facet of our lives need them now?
My experience is, those who over-use their smartphones suffer in the brain. (For instance, some people are literally incapable of basic navigation without their smart trackers.)
Luxurious may be the right term.
A tool has a time and a place, but if the tool also serves as a all-comprehensive backdoor into our lives for governments and corporations, we must be circumspect and deliberate indeed about when snd where that time and place is allowed.
Google is also doing the same to Android itself, transitioning open source code, to closed. This makes it easier for Google to mine & resell your data to advertisers, marketers, and of course, government agencies.
I honestly hate throwing in what appears to be self-promotional links, but this is stuff people geniunely need to know about Google: http://bit.ly/1Jgx9QO
Interesting link. Thank you.
Not a company committed to end user choice when it controls what you are allowed to run on your own devices. Close affiliation with government, down to the proverbial revolving door between high Google and government positions, along with the surveillance that Google has provided, is behind the fear of individually controlled privacy where monitoring “goes dark.” Money and power intertwined and defended.
RE: Don’t Be Evil — Google’s Credo
Don’t be evil….that’s OUR job. — Google’s Credo, expanded.
* snort *
I think Google has the right to forget their old credo.
Well, they didn’t forget it. It has always been “See No Evil”. (These folks are conscience free.)
This is a really good story. I’ve been looking at Ghostery’s list of beacons and what not and I realized that, if they were all secretly passing information amongst themselves, then virtually all of my online movements could be tracked and collated. This is a very disturbing thought. One gets the idea of some sort of time related mapping of all online activity, possibly occurring in real-time.
I currently use DuckDuckGo because they have a nice dark theme called Terminal. If Disconnect gets a decent dark theme I will probably switch to Disconnect because of their commitment to user privacy.
But that begs the question, What is Disconnect’s business model?
Hi,
Disconnect has a subsciber service just like the free VPN apps available in playstore,but they filter for malware and “ads” which is value added compared to regular VPN. Adgaurd has an Android app nearly identical to Disconnect,as does Adblock plus. All available from their websites. All charge a monthly fee too. But Adgaurd and Adblock have free extensions for Firefox on Android. Like Ghostery. The benefits of using the filtered VPN’s is to block all ads globally on Android,namely those bbanner ads in other apps,which is why Google banned them all. Now Ghostery and Adblock have stand-alone browsers in playstore, so Google tells half truths about what privacy apps are available. So, you can root and then block all you want,or there are some new NO-ROOT firewall apps in playstore. I use two of them,as they perform differently,but can only use one at a time,because they use the native VPN on Android.
This sounds like the sort of dispute which could be easily settled out of court. Disconnect just needs to tweak its product to block all trackers except Google and then the app will be allowed back into the Play Store with all the other spyware.
Screw that, I don’t want Google tracking me either!
Satire is not always easily recognizable in the printed word.
You print these articles out? Good for you. I keep wondering if history will effectively be shown to have ended in the early 21st century if and when people ever get wiped out.
I’d say it’s Beny’s trademark and thanks to him for that. Very often spot on, with a twist of jest for flavour. Gracie mille.
Make that grazie mille. My Italian flip-flops got caught again in the Spanish carpet.