A recent report has highlighted privacy concerns surrounding some of the most popular apps and games on our smartphones. These findings, revealed by 404 Media on January 9, indicate that apps like Candy Crush Saga and Tinder may be collecting and sharing sensitive location data without users' consent.

A Troubling Data Breach

The breach revolves around Gravy Analytics, a location data broker, which has come under scrutiny after a hacker accessed terabytes of consumer data. This data reportedly included information sourced from popular apps, raising questions about how these apps are tracking users covertly.

This revelation follows a Federal Trade Commission (FTC) ruling that banned Gravy Analytics and its subsidiary, Venntel, from selling consumer location data without obtaining proper consent.

What Was Exposed?

The leaked database reportedly includes over 30 million location data points. Alarmingly, some of these data points involve devices tracked in high-security locations, such as the White House, Kremlin, Vatican City, and military bases.

Gravy Analytics does not directly collect data from apps but partners with advertising agencies that gain access to user data on Android and iOS devices.

Protecting Your Data

While there’s little you can do to reclaim your data after a breach, you can take steps to protect your information moving forward.

1. Limit Permissions: Revoke unnecessary app permissions, especially those involving location, contacts, or personal data.
2. Use Privacy Features: iOS users can utilize the "Ask App Not to Track" feature to restrict data sharing with third parties. Android users should regularly review app permissions and disable those that aren’t essential.
3. Be Vigilant: Regularly monitor which apps have access to sensitive data and uninstall apps that seem overly invasive.

By staying proactive about your digital privacy, you can reduce the risks of unauthorized data collection and safeguard your personal information.