Advertisement

We need your help now

Support from readers like you keeps The Journal open.

You are visiting us because we have something you value. Independent, unbiased news that tells the truth. Advertising revenue goes some way to support our mission, but this year it has not been enough.

If you've seen value in our reporting, please contribute what you can, so we can continue to produce accurate and meaningful journalism. For everyone who needs it.

Patrick Sison/AP Photo
dead last

WhatsApp fails almost all criteria for data protection

While Apple, Yahoo and Dropbox received full marks for their respective privacy policies.

IF YOU WANT to make sure your data is safe from the government’s prying eyes, it’s better to use Dropbox and Apple products and avoid WhatsApp, according to a new report.

The Electronic Frontier Foundation (EFF), a non-profit digital rights group, has released its fifth ‘Who’s Got Your Back‘ report, an annual privacy scorecard which ranks the biggest technology companies on their transparency policies and how protective they are of users’ data.

Of all the services analysed, WhatsApp fared the worst and was criticised for falling short on almost all criteria in its first full year in the report.

While its parent company Facebook met most of its criteria, WhatsApp was criticised for not publishing any information about data requests, alerting users about disclosures or even requiring a warrant from law enforcements before providing user data.

This is WhatsApp’s first year in the report, and although EFF gave the company a full year to prepare for its inclusion in the report, it has adopted none of the best practices we’ve identified… WhatsApp is notably lagging behind.

Google was another company criticised for its report, having received three stars out of five compared to full marks last year.

The report said the company should tell users the full extent of its data retention, and give notice to users about data requests after an emergency has ended or a gag has been lifted.

Nine companies earned full marks for each category including Apple, Adobe, Dropbox, Wikimedia, Wordpress and Yahoo.

Criteria

The report uses five criteria to assess each service. They include:

Industry-accepted best practices: Whether the company requires the government to obtain a warrant from a judge before handing over data, if it publishes a transparency report, and if it publishes law enforcement guides explaining how they respond to government requests.

Telling users about government data requests: Companies must promise to tell when any government seeks their data unless prohibited by law, giving users a chance to defend themselves against overreaching government demands for their data.

Publicly disclose the company’s data retention policies: Highlighting which companies disclose how long they hold onto users’ data that isn’t accessible to the user.

Disclosure: Highlighting the number of times governments seek user data and how often the company complies. Publishing transparency reports would be an example of this.

Pro-user public policies: Which companies take a public stance against backdoors and mass surveillance.

Some companies like Snapchat weren’t ranked on content removal requests since they either don’t host content for it to be relevant or retain data for long periods of time.

Read: Airbnb is about to be worth more than almost any hotel chain in the world >

Read: Own a Samsung device? It may have a major security flaw >

Your Voice
Readers Comments
13
    Submit a report
    Please help us understand how this comment violates our community guidelines.
    Thank you for the feedback
    Your feedback has been sent to our team for review.