InMobi fined $1.3 million for privacy violation

By on
InMobi fined $1.3 million for privacy violation

Snagged device geolocation info without consent.

InMobi, the world's largest mobile advertising network, has agreed to pay a $1.3 million penalty to US consumer watchdog, the Federal Trade Commission (FTC), for collecting the location data of users without consent.

Location data was used to push targeted ads to users' devices. Initially, InMobi claimed that it would only use the geolocation information if the user had consented or opted in to receive targeted ads.

However, the FTC discovered through a technical analysis of InMobi's software development kit that the information was collected by the company even when users had not given permission to do so.

InMobi's software used wi-fi signals to infer locations, and archived the information, the watchdog said in a filed complaint [pdf].

The company picked up the basic and extend service set identifiers (BSSID and ESSID) that are unique to each wi-fi access point along with signal strength and correlated these to latitude and longitude data when available, to build its own geo-order database, the FTC said.

This was done by InMobi on both Google's Android and Apple's iOS platforms until December last year.

InMobi's user tracking took place at a massive scale, as the ad network reached over one billion devices and served up some six billion requests a day.

FTC said the Bangalore-based ad network violated the US Children's Online Privacy Protection Act by collecting the information from apps aimed directly at children despite promises not to do. It must now delete all data collected from children's devices.

InMobi originally faced an A$5.4 million civil penalty, but the FTC took into consideration the company's financial condition and reduced the fine to A$1.3 million.

The company must delete all the data it collected from all users' devices without their permission, and is prohibited from collecting consumers' location without their express consent. 

InMobi must also honour location privacy settings in the future, and not misrepresent its privacy practices again.

As part of the settlement with FTC, InMobi is required to institute a comprehensive privacy program that will be independently audited bi-annually for the next two decades.

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © iTnews.com.au . All rights reserved.
Tags:
ftc geolocation inmobi privacy telco/isp

Sponsored Whitepapers

Technology skill development: The strategy for building better teams
Technology skill development: The strategy for building better teams
Find unhappy users before they complain
Find unhappy users before they complain
How to reduce the risk of phishing and ransomware
How to reduce the risk of phishing and ransomware
Prevent fraud and phishing attacks with DMARC
Prevent fraud and phishing attacks with DMARC
Security awareness training strategies for account takeover protection
Security awareness training strategies for account takeover protection

Events

Most Read Articles

Services Australia shifts most Centrelink payments to SAP S/4 HANA

Services Australia shifts most Centrelink payments to SAP S/4 HANA
ACCC clears 5G as a substitute for fixed-line broadband

ACCC clears 5G as a substitute for fixed-line broadband
ANZ sets itself up for a new workforce transformation

ANZ sets itself up for a new workforce transformation
Service NSW to hire 200 engineers, designers

Service NSW to hire 200 engineers, designers

Log In

Email:
Password:
  |  Forgot your password?