I created a google takeout and in that zip file I found some files containing a ton of data about me. It has logged every single page I visited while using the google search engine and chrome browser. It even logged every single time I opened an app on my old android phone. It even has VOICE RECORDINGS of me and a log of every time I used google assistant. This is just some of the data and I’m very sure there is even more data they have.

  • asudox@lemmy.world
    link
    fedilink
    arrow-up
    118
    arrow-down
    5
    ·
    9 months ago

    How do you think they are able to pay the bills of those expensive af services for free?

  • GolfNovemberUniform@lemmy.ml
    link
    fedilink
    arrow-up
    87
    arrow-down
    1
    ·
    9 months ago

    Fortunately you can degoogle many Android phones. And stop using big tech products in general. They have a lot of issues, not only a complete lack of privacy

      • iSeth@lemmy.ml
        link
        fedilink
        arrow-up
        40
        ·
        9 months ago

        A pixel, if you buy into GrapheneOS being the pinnacle of security. Otherwise, anything with an unlockable bootloader and LineagOS support.

        • Pringles@lemm.ee
          link
          fedilink
          arrow-up
          6
          ·
          9 months ago

          It’s actually quite ironic that the best phone to degoogle your life is sold by google.

          • EpicVision@monero.town
            link
            fedilink
            arrow-up
            6
            arrow-down
            2
            ·
            9 months ago

            CalyxOS has pretty bad security. They install F-Droid and microG with root privileges, don’t release updates regularly and lack many security features of GrapheneOS.

            • delirious_owl@discuss.online
              link
              fedilink
              arrow-up
              3
              arrow-down
              1
              ·
              9 months ago

              Different strokes, but I personally dont think yge Graphene devs are trustworthy, and much prefer Calyx.

              I’m also not afraid of root. Its how I harden my device (eg firewall)

              • EpicVision@monero.town
                link
                fedilink
                arrow-up
                1
                arrow-down
                1
                ·
                9 months ago

                GrapheneOS has a built in Firewall that doesn’t require root privileges. Also, you don’t trust the GrapheneOS devs who arguably create one of the most secure operating systems on the planet, which is open source and can be verified by everyone, but you trust Calyx devs who regularly go months without releasing any Android security patches and include highly privileged third party apps in their operating system. Makes a lot of sense.

                • BarrelAgedBoredom@lemm.ee
                  link
                  fedilink
                  arrow-up
                  2
                  ·
                  9 months ago

                  Depending on the state of the thing you’re looking at, maybe? A pixel 6 pro goes for ~220 on backmarket and ~210 on eBay. Does eBay guarantee free 30 day returns and have a great 1 year warranty? Depends on the seller. Backmarket offers it sitewide. Id rather pay a few extra bucks to not have to fight with someone over getting my money back or my shit fixed

          • helenslunch@feddit.nl
            link
            fedilink
            arrow-up
            3
            arrow-down
            2
            ·
            9 months ago
            1. Pretty certain these things have razor thin margins, if any.

            2. You’re supporting them MUCH more by giving them your data. According to Proton the average Google user is worth ~$400/year.

            Pixel phones are mostly designed to be flagship Android experiences, not generate hardware revenue.

            • 🦄🦄🦄@feddit.de
              link
              fedilink
              arrow-up
              4
              ·
              edit-2
              9 months ago

              Will this still be true after safetynet is deprecated? Not trying to be difficult, just don’t want to get my hopes up.

              Edit: ah its adressed in the link lol

            • Hamartiogonic@sopuli.xyz
              link
              fedilink
              arrow-up
              5
              ·
              9 months ago

              When your bank tells you that the code booklet will be phased out and mobile app will be the only way in the future.

            • suppenloeffel@feddit.de
              link
              fedilink
              arrow-up
              3
              arrow-down
              1
              ·
              9 months ago

              As long as you don’t use some shady, unofficial ROM on a phone, most phones are actually vastly more secure than your typical Linux/Windows OS.

              • delirious_owl@discuss.online
                link
                fedilink
                arrow-up
                2
                arrow-down
                1
                ·
                9 months ago

                How long is your passphrase on your phone compared to your Linux/windows OS?

                A phone is designed for quick usability, which is the enemy of security.

                Sure, if you have a 20 char password on your phone and never install any sketchy apps, then it might be ok. But the whole phone ecosystem is just less secure because its designed for convince, not security.

              • delirious_owl@discuss.online
                link
                fedilink
                arrow-up
                1
                arrow-down
                2
                ·
                9 months ago

                Riiight, someone’s phone with a 4 digit pin that they tap out 100x per day in public in plain view of others (that I can easily pick out of your pocket) is more secure than a laptop with a 20 character passphrase that never leaves my house.

                Do you even think about what you’re saying?

                • EpicVision@monero.town
                  link
                  fedilink
                  arrow-up
                  2
                  ·
                  9 months ago

                  I’m talking about the security model of the platform, not the way you use your devices. If you do your online banking in a browser on your computer and your system gets infected with malware, that malware can access all the files on your computer. Including application data of your browser. It can access your cookies, which your bank’s website uses to store your login information. Such an attack is impossible on a mobile device, since apps can only access their own data, and inter-process communication is heavily restricted. Additionally, mobile operating systems like Android have complex permission systems, as well as kernel-based mandatory access control like SELinux/SE for Android. Your typical desktop OS has none of that. Android also has a strong implementation of Verified Boot, which makes sure that malware can’t persist on your system partition, even after your device gets infected. I recommend this video if you want to learn more about mobile device security: https://youtu.be/yTeAFoQnQPo

      • GolfNovemberUniform@lemmy.ml
        link
        fedilink
        arrow-up
        11
        ·
        9 months ago

        If you want a normie phone that you can install a privacy-focused OS on, Google Pixel is a surprisingly good option. Just take a look at the LineageOS’s and GrapheneOS’s officially supported devices lists before purchasing a specific model. You can also choose Xiaomi or Motorola but you won’t be able to lock the bootloader with a custom OS installed on that phones which can create some vulnerabilities. If you want to run Linux on your phone though, you either need a PinePhone or a OnePlus 6 series

      • Undertaker@feddit.de
        link
        fedilink
        arrow-up
        8
        ·
        edit-2
        9 months ago

        Look for DivestOS supported devices. What I cannot recommend is Fairphone. Several Hardware issues, support refuses to accept them. The support in general is horrible.

        Kind regards
        A Fairphone 4 user with /e/OS

      • Churbleyimyam@lemm.ee
        link
        fedilink
        arrow-up
        7
        ·
        9 months ago

        Look at which devices are supported my grapheneos, calyxos, /e/os and ubuntu touch/droidian and get the newest one of those that you can afford. Usually a google pixel (ironically) but also fairphone are well supported and are better IMO.

          • Churbleyimyam@lemm.ee
            link
            fedilink
            arrow-up
            2
            ·
            9 months ago

            Yeah buddy. It’s still getting updates; for how long though depends on the developers of course. Use it and bung them a donation! You can even install full Linux apps on it via Libertine, although it’s slightly easier on Droidian IIRC. Very, very cool stuff.

          • OminousOrange@lemmy.ca
            link
            fedilink
            arrow-up
            2
            ·
            9 months ago

            Toss Linux Mint on a bootable USB, fire up a live version and play around a bit. I was in the same boat and am working on fully transitioning over. The only minor hurdles are Office 365 and other Windows-only programs, but there are ways to get those to work, or just run a Windows VM.

      • pearable@lemmy.ml
        link
        fedilink
        arrow-up
        4
        ·
        9 months ago

        I bought a fairphone 4 awhile ago from Murena, the only US distributor. Other phones have more bells and whistles but I feel better knowing I can repair it if something goes wrong. If you’re in Europe the FP5 is a good bet but I don’t think anyone is selling them in North America. I don’t know about distribution elsewhere.

      • delirious_owl@discuss.online
        link
        fedilink
        arrow-up
        4
        ·
        9 months ago

        Get a Pixel and install a custom ROM. Any ROM is fine, just dont install gapps. You actually have to go out of your way to install google crap. By default a new install is google-free

  • 1984@lemmy.today
    link
    fedilink
    arrow-up
    67
    arrow-down
    1
    ·
    edit-2
    9 months ago

    They may even save every Google meet meeting for all we know. They may train their AI on how our faces look in meetings.

    Nothing is too creepy for Google.

      • Fishbone@lemmy.world
        link
        fedilink
        arrow-up
        12
        ·
        9 months ago

        For you, maybe. Mine is filled with black screen pocket photos, furry porn, and 714 copies of a video of a horrifying mecha furby that’s stepping on its own removed face.

        Another copy shows up every time I have a nightmare about it, which is pretty odd, now that I think about it.

    • PopMyCop@iusearchlinux.fyi
      link
      fedilink
      English
      arrow-up
      1
      ·
      9 months ago

      The faces training was all of the filters. Every single time someone took a video or picture and used filters to add cute moe eyes, or make themselves look like a crab, it was being used to make whichever company was doing it have a better bottom line or to accelerate their facial recognition.

  • rageagainstmachines@lemmy.world
    link
    fedilink
    arrow-up
    54
    arrow-down
    3
    ·
    9 months ago

    What’s even scarier is that takeout is probably only the data they want you to see, or are legally obliged to share.

    I would be willing to wager they have lots more on you that you’re not even aware of.

      • Fisch@lemmy.ml
        link
        fedilink
        arrow-up
        1
        ·
        8 months ago

        Idk about that. What data could they get with that, that they can’t already get through other (cheaper) means, that would justify all the network traffic and storage space?

  • om1k@sopuli.xyz
    link
    fedilink
    arrow-up
    51
    ·
    9 months ago

    don’t forget if you have location enabled in your phone it tracks every single place you’ve been to

    • Possibly linux@lemmy.zip
      link
      fedilink
      English
      arrow-up
      28
      arrow-down
      1
      ·
      9 months ago

      It does that even if you turn it off. The setting just controls location access by third party apps.

      Lineage os and F-droid is the better solution. It has the advantage of being bloat free as well

      • Churbleyimyam@lemm.ee
        link
        fedilink
        arrow-up
        11
        ·
        9 months ago

        You can also use GPS location without any google services running, it just takes a bit longer to find your position when you first connect. OsmAnd or Organic maps from f-droid, which are actually superior apps to google maps in a lot of ways, particularly OsmAnd.

        • Scary le Poo@beehaw.org
          link
          fedilink
          arrow-up
          5
          ·
          9 months ago

          These apps cannot find addresses in the US. Just a heads up so anyone that sees this doesn’t pull their hair out trying to figure it out. No, it isn’t you, it’s the app.

          • KISSmyOS@feddit.de
            link
            fedilink
            arrow-up
            9
            ·
            edit-2
            9 months ago

            It’s not the app, it’s the lack of volunteers mapping addresses in the US.
            Don’t pull your hair out, install StreetComplete and take a walk around your neighborhood.

            And if you find that fun, editing Openstreetmap in the browser isn’t all that hard, either.
            If you add addresses you are missing, you can increase the apps utility for yourself directly. Pretty fun seeing the stuff you entered appear in the map. And it doesn’t require any coding skills.

            Something you can’t do with missing info in Google Maps.

            • N4CHEM@lemmy.ml
              link
              fedilink
              arrow-up
              2
              ·
              edit-2
              9 months ago

              THIS! OsmAnd and Organic Maps are not worse apps because you cannot find some addresses. The data comes from OpenStreetMap, and if it’s missing there it won’t be available in these apps. That’s not a bug, that’s a feature. How? OpenStreetMap data is open and free for everyone to use and edit, it’s like the Wikipedia of maps. No, you don’t have Google mapping everything for you, you should probably chip in and help add addresses if you want a map that doesn’t depend on a huge corporation, a map where you can correct mistakes, and a map that’s free for anyone to use in their apps or websites. Otherwise we depend on what Google wants to map, how they want to map it, and the app that they offer us to access that data.

    • WarmSoda@lemm.ee
      link
      fedilink
      arrow-up
      16
      ·
      9 months ago

      And it can be very wrong about those locations, too. For better or worse, idk. My old phone showed me going to completely different cities on the other side of my state when I went to the corner store.

  • ooli@lemmy.world
    link
    fedilink
    arrow-up
    45
    ·
    edit-2
    9 months ago

    The worst part, is even when you try to avoid, you cant.

    You send an email from proton, to mostly gmail account, now they have your email.

    You mean your business, the guy next to you talk to google home, and you get recorded.

    Every time I 'm forced to use a google account by some 3rd party, I get a panic attack from how predatory it is to get you to give them your data, you cant log out without 4 clic, it is a true dystopia we let that compagny rule our world

    • risencode@lemmy.ml
      link
      fedilink
      arrow-up
      6
      ·
      9 months ago

      now they have your email.

      That’s why you use hide-my-email aliases when you sign up to sites, so they can’t tie “your” email to you anymore.

      Every time I 'm forced to use a google account

      Create a few junk accounts, send recovery to a hide-my-email alias

      If you use password managers it really is no bother to have multiple accounts, and Proton Pass integrates hide-my-email, it’s pretty neat.

      • glasgitarrewelt@feddit.de
        link
        fedilink
        arrow-up
        1
        ·
        9 months ago

        Thanks for the hint with hide-my-email! I will ask my mail provider, if they offer something like this as a service.

    • Scolding0513@sh.itjust.works
      link
      fedilink
      arrow-up
      2
      ·
      8 months ago

      dont panic. you can protect yourself. dont depend on others. you can use random email aliases for everything. always take the mindset that anything you say outside your home is public information. use throwaway phone numbers like jmp.chat if you have to use phone numbers at all. etc etc.

      take the approach of compartmentalizing your identities and contact info, and take the approach of protecting your SELF first, dont depend on others. sorta like a shady arms dealer or something, but you’re not dealing arms :P!

  • anticurrent@sh.itjust.works
    link
    fedilink
    arrow-up
    40
    arrow-down
    2
    ·
    9 months ago

    Friends don’t let friends use Google and meta. show those you care about what you have discovered. don’t lecture them just make them aware, share your findings.

    • Jessvj93@lemmy.world
      link
      fedilink
      arrow-up
      3
      ·
      edit-2
      9 months ago

      Also for a good read on Google and Meta, check out Jedi Blue. It’s a plan that FB and Google got sued for, for manipulating ad auction timings in favor of FB on Google in exchange for FB to promise to not open a competing ad service plans. They also gave FB access to every google device with Facebook (preinstalled esp) on it. The name Jedi Blue is a reference to the Jedi mind trick, assholes.

  • Sir_Kevin@lemmy.dbzer0.com
    link
    fedilink
    English
    arrow-up
    38
    arrow-down
    3
    ·
    9 months ago

    This shouldn’t be a surprise to anyone. It’s the same with all the big data companies. Everything you type, say or do gets logged and never deleted.

    • panicnow@lemmy.world
      link
      fedilink
      arrow-up
      11
      arrow-down
      1
      ·
      9 months ago

      It could be they are collecting and hiding the data, but what they publicly disclose they have certainly varies. My de-google-fication really started when I used google takeout (like the OP here). Excluding things I wanted backed up (e.g. photos), Google still had more than a GB of textual data (this was 7 years ago or so—my memory may be wrong). I use Apple a lot so I went to their “takeout” page. They had a few MB of data pretty much all of which I considered innocuous. I don’t think they are equivalent.

      I do agree Facebook probably collects as much data as Google, but I gave that up long ago.

    • SharkAttak@kbin.social
      link
      fedilink
      arrow-up
      7
      ·
      9 months ago

      That’s why I’m still in doubt wether to use my fingerprint to unlock my phone. Would be convenient, but where is it stored, who can access it?

      • Churbleyimyam@lemm.ee
        link
        fedilink
        arrow-up
        9
        arrow-down
        1
        ·
        9 months ago

        Anybody with access to your finger, which means they don’t need you to be conscious or even alive to access your phone.

        • Tak@lemmy.ml
          link
          fedilink
          arrow-up
          6
          ·
          9 months ago

          If they have me dead or unconscious my phone is the least of my concerns.

            • Tak@lemmy.ml
              link
              fedilink
              arrow-up
              3
              ·
              9 months ago

              Totally. I’m not saying it’s better security just that in a situation like that I’m not really worried about what’s going on with my phone.

              • delirious_owl@discuss.online
                link
                fedilink
                arrow-up
                2
                ·
                9 months ago

                Thats kinda fucked up. So you dont mind if all the conversations with your friends get published publicly?

                You’re not a good friend.

                • Tak@lemmy.ml
                  link
                  fedilink
                  arrow-up
                  1
                  ·
                  9 months ago

                  My friends don’t want to use end to end encrypted platforms so it’s one data leak from being public anyway.

              • Churbleyimyam@lemm.ee
                link
                fedilink
                arrow-up
                2
                ·
                edit-2
                9 months ago

                The suspect was later arrested in possession of a severed finger and a dank porn stash on the victims mobile phone

          • SharkAttak@kbin.social
            link
            fedilink
            arrow-up
            3
            ·
            9 months ago

            Depends if you wanna be remembered as John Smith instead of “Ah Yeah, John Smith the furry midget lover”

      • ChallengeApathy@infosec.pub
        link
        fedilink
        English
        arrow-up
        3
        ·
        9 months ago

        Smart for many reasons as people listed here. Your fourth amendment rights to your phone also go out the window when you use biometrics like fingerprint. PIN/password is protected, fingerprint/face scan is not. Backwards world we’re in, huh?

      • Sir_Kevin@lemmy.dbzer0.com
        link
        fedilink
        English
        arrow-up
        1
        ·
        9 months ago

        Not literally everything. But if you’re sending unencrypted data via internet, even data you may not be aware of. It’s likely being stored by some company.

  • zwekihoyy@lemmy.ml
    link
    fedilink
    arrow-up
    34
    ·
    9 months ago

    while, yes, regardless of your privacy settings google still collects a sickening amount of data on you, much of these things (like voice recordings and location history) can be managed and disabled in the settings. if you wish to go further, grapheneos removes A LOT of tracking potential.

    these should be opt in features, but one can opt out of much of them.

  • risencode@lemmy.ml
    link
    fedilink
    arrow-up
    31
    arrow-down
    2
    ·
    9 months ago

    Today you learned a valuable lesson:

    When an online service is free it generally means you’re the product.

    • conti473@thelemmy.club
      link
      fedilink
      arrow-up
      13
      arrow-down
      1
      ·
      9 months ago

      Today companies will snoop your info even if you pay 1000s for a device.

      Why wouldn’t they, obviously no one cares

    • frostysauce@lemmy.world
      link
      fedilink
      arrow-up
      5
      ·
      9 months ago

      It’s [current year], nobody is learning that lesson today. We’ve all known it for well over a decade now.

    • unwarlikeExtortion@lemmy.ml
      link
      fedilink
      arrow-up
      1
      ·
      9 months ago

      It’s not even online only anymore. You can’t do the setup process of Android OR Windows without connecting to the Internet, and I doubt Apple’s products are any better in that regard.

    • suppenloeffel@feddit.de
      link
      fedilink
      arrow-up
      43
      arrow-down
      1
      ·
      9 months ago

      I’m really not a fan of such gatekeeping rhetoric.

      Congrats on already knowing stuff, I guess. The vast majority of people don’t have the ability, will or exposure to engage with most technical stuff, especially since the concept of (digital) privacy still is surprisingly controversial.

      We all benefit from more people caring about privacy. Comments like yours achieve the exact opposite and don’t provide any value at all to the conversation.

  • ivanafterall@kbin.social
    link
    fedilink
    arrow-up
    21
    ·
    9 months ago

    Yeah, anyone who’s never done this really should. It’s eye-opening to see it go from a theoretical discussion to “HOLY SHIT THEY HAVE ALL MY DATA” in real-time.

  • generalpotato@lemmy.world
    link
    fedilink
    arrow-up
    15
    ·
    9 months ago

    Google has a data privacy setting that lets you delete your data history at some intervals. The lowest is 3 months last I checked. Make sure to use it.

      • generalpotato@lemmy.world
        link
        fedilink
        arrow-up
        10
        arrow-down
        1
        ·
        9 months ago

        Ideally you should, but a lot people use Android or want to use Google services. An as example, if you use Google Maps, then you have to opt in to giving Google location access and Google will collect your data. In that case, the least you can do is limit the amount of time Google keeps your data and change from the default setting which I think is forever.

      • generalpotato@lemmy.world
        link
        fedilink
        arrow-up
        4
        ·
        edit-2
        9 months ago

        Yes. You can select what to delete and what to retain if I recall correctly. It’s grouped by “activities”, by app if you will.