For Those Who Grind: Research - Grindr Is Sharing HIV Status Data With Third Parties
.
As I catch up on the details of the data theft of 5 million Saks Fifth Avenue credit card users, I noticed this:
Research done by the Norwegian nonprofit SINTEF revealed that Grindr, a gay dating application similar to Tinder, has been sharing highly sensitive information such as HIV status data with at least two other companies.
Grindrs Privacy Leaks
On Februayr 7, SINTEF conducted an experiment for a local Norwegian show to analyze privacy leaks in the Grindr dating application. Thats when the nonprofit discovered not only that Grindr was using many trackers, but also that it was directly sharing user data, including its users HIV status, with two other companies.
According to SINTEF, sharing the HIV status with analytics companies was unnecessary and those companies were not certified to hold medical data. Additionally, Grindr users were likely unaware that this sort of information was shared with third parties.
Unencrypted Sharing
Grindr wasnt just sharing highly sensitive information with other companies, but it was also doing it via unencrypted channels. That means other malicious groups or governments may have been able to acquire that sensitive information about Grindrs users, too.
These groups could have been listening on networks to discover who is using Grindr (and therefore learn about their sexual preferences), where the users may be located during the day, how they look, what they like, and what they browse. All of that information could have been exposed because of Grindrs poor data protection policies.
http://www.tomshardware.com/news/grindr-shares-hiv-status-third-parties,36795.html
.