Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Data Protection

Tinder, Grindr Accused of Illegally Sharing User Data

Popular dating apps like Tinder and Grindr are sharing the personal data of their users to third parties in breach of EU regulations, a Norwegian consumer rights group said Tuesday.

Popular dating apps like Tinder and Grindr are sharing the personal data of their users to third parties in breach of EU regulations, a Norwegian consumer rights group said Tuesday.

A new report by the Norwegian Consumer Council (NCC) details how Grindr, which markets itself as the “world’s largest social networking app for gay, bi, trans and queer people,” shares the GPS data, IP addresses, ages and genders of its users with a multitude of third-party companies to help them improve advert targeting.

According to the government-funded non-profit organisation, the sharing of this data implicitly discloses users’ sexual orientations.

The report, titled “Out of Control“, examines the collection and use of personal data by 10 popular apps and concludes that the advertising industry is “systematically breaking the law”.

“Every time you open an app like Grindr, advertisement networks get your GPS location, device identifiers and even the fact that you use a gay dating app,” Austrian activist Max Schrems said in a statement by the NCC.

“This is an insane violation of users’ EU privacy rights,” Schrems said.

The dating app Tinder is also accused of sharing user data with at least 45 companies owned by the Match Group, which operates a dating website of the same name.

The report also criticised other applications, such as Qibla Finder, which orients Muslims towards Mecca for prayer; Clue and MyDays used for monitoring fertility periods; and the children’s app My Talking Tom 2.

Advertisement. Scroll to continue reading.

Some 20 months since the EU’s General Data Protection Regulation took effect in May 2018, “consumers are still pervasively tracked and profiled online,” the report said.

Users “have no way of knowing which entities process their data and how to stop them,” it added.

“Consumers have no meaningful ways to resist or otherwise protect themselves from the effects of profiling (including) different forms of discrimination and exclusion,” the statement said.

The NCC, lodged complaints against Grindr and five of its partners with Norway’s data protection agency.

Grindr, which is owned by Chinese gaming company Beijing Kunlun Tech, did not immediately respond to a request for comment.

The group told The New York Times that it could not comment on a report that it had not seen.

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Understand how to go beyond effectively communicating new security strategies and recommendations.

Register

Join us for an in depth exploration of the critical nature of software and vendor supply chain security issues with a focus on understanding how attacks against identity infrastructure come with major cascading effects.

Register

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Data Protection

The cryptopocalypse is the point at which quantum computing becomes powerful enough to use Shor’s algorithm to crack PKI encryption.

Artificial Intelligence

The CRYSTALS-Kyber public-key encryption and key encapsulation mechanism recommended by NIST for post-quantum cryptography has been broken using AI combined with side channel attacks.

Compliance

The three primary drivers for cyber regulations are voter privacy, the economy, and national security – with the complication that the first is often...

Artificial Intelligence

Two of humanity’s greatest drivers, greed and curiosity, will push AI development forward. Our only hope is that we can control it.

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Data Protection

While quantum-based attacks are still in the future, organizations must think about how to defend data in transit when encryption no longer works.

Mobile & Wireless

Infonetics Research has shared excerpts from its Mobile Device Security Client Software market size and forecasts report, which tracks enterprise and consumer security client...