Location history was both surprisingly good and surprisingly bad in the past, but the last few times I looked it was less impressive.
On the good side it used to be remarkably accurate at identifying and tracking stops along with routes I had driven. At the same time it would have occasional astonishing jumps such as the 15 minutes I once spent in South Korea during the middle of the day.
At some point they appeared to dumb it down pretty radically and it would no longer even recognize that I had been at a location even when I had been there for hours.
These days I use a separate unfortunately discontinued app for tracking location and uploading to my own cloud storage a few times a day.
I've given up on Google not being evil, but it might be nice if they could avoid being so freaking creepy.
Not parent but personally I keep my location so if I lose something I can retrace my steps. It already saved me once from having to redo all of my documents, changing locks etc.
Many people (self included) I know use it for when their drunk out of their brains on Friday and Saturday evening. Where the fcuk did I go last night? Blackouts are less severe when you can collaborate your steps (~pub crawl, taxi home, what time i get home) with Google Timeline. Tbh, I dont think I've ever used it for anything else
Inertia at this point, but it started out as a help for billing clients when working onsite. A chunk of my work requires billable onsite visits and I was bad about tracking arrival and departure times as I arrived and departed.
At this point the software I'm using for mileage tracking covers that (and will show my route using a certain ubiquitous mapping system), but I still have that package generating kml files and uploading them twice a day.
Edit: looks like just over 5 years of daily kml files, likely mostly useful for showing just how few new places I go.
I've used it in the past when travelling abroad so family members can keep track of where I am. Like the OP, I don't use google, because of the creepiness of it all, but hosted my own as uploaded kml files. I set up a GPS logger to save my pos every 1/2 hour or so to keep battery usage light.
Which GPS logger do you use? I tried a few, but they were all a pain. I'm primarily interested in tagging photos of my cameras that don't have their own GPS.
If you can find an apk I'm using Backitude (gaugler.backitude), notable for using location 'steals' when some other app gets location rather than directly querying on its own. I just have it write to a kml file locally, and another program syncs that folder to cloud storage 2x daily.
It's also capable of pinging a url with location data if you prefer.
I got a traffic ticket on vacation in Germany a year or two ago. All the car rental place gave me was a timestamp, but I was able to use that and my Facebook location history to find out where it happened.
Personally, I don't view my location history as particularly sensitive information. Only slightly more sensitive than my home address, and I trust google far more than the dozens of other entities that know my home address not to divulge this information (either intentionally or by leaks).
At the same time, I get some slight value out of it. I find the history (and the monthly reminder e-mails that location history is on) mildly interesting to look at every now and then. On very rare occasions, I've been able to get some specific usefulness out of location history (I found a restaurant I previously visited on a road trip).
The data points surrounding those anomalies were reasonable, and the main sets of jumps I saw were either in places where I likely had poor GPS penetration or were quite old (back to the Google Latitude days). There were also precision indicators for many that made it pretty clear that they were locations based on connecting to a relatively distant cell tower.
My expectation for the absurd jumps was that Google was calculating locations based on identifying WiFi devices in the vicinity and that for some devices there were duplicate MACs distributed in different regions (or possibly that the MAC on some equipment was being set from configuration rather than being hard-coded). I did not check to see if any of them were 00:DE:AD:BE:EF or the like since I generally only noticed several weeks after the event.
One trope on this site that seems to always come up in this discussion is the presumption that if it's good for law enforcement it's a bad thing. But IMO that's not really how it works. Things are often good or bad depending on how they are used. If this is being used to target dissidents, that's bad. If this is being used to catch rapists and murderers, that's good, provided that their rights aren't being violated.
I don't want to be under constant surveillance. I don't want to be monitored all day, every day. I don't want to be tagged, tracked, and catalogued like an animal.
It's not like it's a button you can press to "turn it off". Google's smartphone which dominates the market and has billions of users is funded by a company whose whole business model is tracking + targeting users using the data they provide.
Rooting and install another Android OS is no easy task for a normie and comes with it's own maintenance baggage. And even then you have to install Google's proprietary software to even use the App Store.
A phone without the app store is a no-go for 99% of people.
The solution is allow the customers the option to "turn it on" (especially after they pay $300-900 for a phone) rather than being omnipresent.
"Location History is not on by default. Google prompts users to enable it when they are setting up certain services — traffic alerts in Google Maps, for example, or group images tied to location in Google Photos.'
My experience contradicts the article's claims. I don't remember ever turning this on, and when I first learned about Location History (years ago), it was already populated with a significant amount of my location history data. Maybe I did technically agree to it in some piece of fine print or other text I didn't notice, but I contest the idea that legitimate, unambiguous user consent was obtained in all cases.
I also started with Location history years ago and I most definitely do remember Android specifically asking if I want it or not, and I remember checking what turning it on meant.
Maybe you don't remember it, but you can look at old version of Android and they all ask very clearly if you want it or not.
I guess maybe you didn't understand what was implied? But it was definitely asked.
What they're referring to in that article is that when you use Google Maps and as you're following driving directions, their servers get your location so they can compute your route and offer you better routes and notifications about accidents and such along the way. That part I feel I signed up for and is perfectly fine.
It's been stretched by media to make it sound nefarious, but no one has shown that they're actually sending location data when history is disabled and you're not using maps.
No, what they're referring to is that if you use an android phone, either with a sim card or with google services authenticated, they are are recording the location of the phone to provide 'services' such as phone calling and play store access.
The only thing location history toggles is whether your location data is branched off to the location history product line. It does not toggle the existence of that data or the fact that it's archived at several other points.
Take the time to watch the congress hearing and note the very carefully worded answers and why they are worded that way.
It was based on his wording that I drew my conclusions, they provide many services outside of location history which do mandate on demand location data, you know? Do you have any evidence that they're still doing periodic location after location history is disabled? I had heard concerns but it seemed they were exaggerated last I checked. Should be pretty obvious in RE if that's true.
Ultimately though, you're still not getting around being tracked, your cell provider collects that location data even if Google doesn't. Just having a cell phone and a SIM puts you in a pretty awful state privacy wise.
> For example, Google stores a snapshot of where you are when you merely open its Maps app
Yeah, that's exactly the kind of thing I'm talking about. In order to download map tiles around you, show nearby stuff, traffic, etc they need to know where you are. So yes, that means they get your location.
But that has nothing to do with the sort of periodic background location reporting used in Location History that people are concerned about. Disabling Location History and not using Maps or other Google location based apps or APIs means they won't get your location.
Also note that there's no mention of play store access, phone calls or any other sorts of usages which seem like they shouldn't ask for location in that article.
They make a bit of a big deal about searching for "chocolate chip cookies" not requiring localized results, but from a technical perspective I think it's obvious that they just send it with the request regardless, they don't know . Trivial to disable if you don't want that though. In fact, both this an the Maps example will happen even on iOS devices as the article points out.
When I said I found those claims exaggerated last time I looked into it, this is exactly what I meant. They must get a lot of clicks by making this stuff out to be more nefarious.
> Disabling Location History and not using Maps or other Google location based apps or APIs means they won't get your location.
Which is impossible unless you don't use the phone at all, hence the 3 hour long congressional hearing[1]. Turn off location history, turn off location services, it doesn't matter, your location tracks are being logged.
I'm not sure what you're trying to argue about since you seem agree with the premise. You think the news outlets exaggerated the fact that Google grossly underplayed the language around their always-on tracking and mislead hundreds of millions of users into thinking they're not being tracked when they in fact were? Okay then.
What you seem to be saying is that they're sending location data periodically even after disabling location history. That I believe is false. Any location sending after that is by user or app demand.
Achieving this on an Android device isn't impossible by any means: deny location to all apps and those apps won't be able to call the Google Fused Location API. If you want location without using Google's API, allow only select apps which use direct on-device GPS access, it's readily available in the Android API without the need to pull in the Google Play Location Services package.
Sure, you don't have to be. Turn the feature off. But convicting a criminal based on evidence they left when they turned it on? What's wrong with that?
The only solution is to not use your smartphone as a telephone. Directly, anyway. Have a smartphone with no cellular account. Better yet, use a small tablet with no cellular modem. Then do VoIP via WiFi hotspots. And for anonymity, do it through nested VPN chains.
I know, that's not a phone, really. But that's life, these days.
I'm all for targeting rapists and murders, but the negative reaction is when it targets everyone, just in case they're a rapist or a murderer or a dissident. Everyone's a criminal if the police can look at you hard enough.
The thing is that this system hasn't been used to "target everyone," at least not based on any reporting that I've seen. Yes, a lot of people are allowing Google to capture their location. And yes, law enforcement is able to correlate that with other evidence, like DNA evidence, to narrow down the list of possible suspects. But it hasn't been used to, for example, catch everyone who has been speeding in an area. Being able to find the small number of people in an area who were present when a crime was committed, and correlating that with other information to gain a high probability estimate of the true criminal, is the opposite of dystopian.
I was pleased to see the discretion being used so far in the cases presented in this article.
But thats only because the warrants werent sealed by the judge, the state law allowed for public knowledge, the detectives were willing to talk with media, and those available warrants happened to use discretion that is more agreeable so far.
So lets not get this confused with something good. All these people know it is a questionable tool and that as soon as they or anyone else in the public sector uses this more broadly then it is going to mess up their ability to use the tool at all.
> So lets not get this confused with something good.
If I understand your argument, you're saying that, yes, this tool has been used justly so far, but it's still not good, because those using it would have behaved unjustly if there were no consequences for just behavior?
I don't really think this argument flies. There are so many other things that have this property and are widely considered to be good things.
Bad = additional tool state uses to potentially circumvent established rights in an unexpected way, which may result in prior assumptions about established rights becoming obsolete in subsequent court rulings
Good = things that dont do that
Yes, the consequences are a check on the use of this tool.
In the article they jailed an innocent man who probably wouldn’t have been involved if it wasn’t for this system. How many of us can afford to wait in jail for a week or two? I’d probably be fired from my job, loose my house and wind up on the street!
This is one of the reasons I've switched to Apple, turned off all my location services, use various VPNs, and often leave my phone at home (or use my secondary work device).
Its astonishing what companies and law enforcement can do. For instance, people are concerned with some of Trump's laws/actions already. Why would we want to give him or anyone in such a position the ability to sweep up whole populations based on being near an event. It goes beyond that obviously, Google can predict movement and predict interests, even what you'll say at this point.
Eventually, law enforcement will be issuing a warrant on the model which predicts/represents you as well.
Yes, iOS has a superficially similar feature called Significant Locations [1].
No, it doesn't work anything like Sensorvault. Significant Locations are collected and stored locally on the device. They are only used to provide relevant suggestions to the user of the device (e.g, to suggest Maps destinations based on where the user frequently travels), not for advertising or analytics.
I got a kick out of Significant Locations when someone told me about it. It says I go to a liquor store every night at 7pm. Of course, this is the corner store on my block, but without context it looks like I drink a lot of beer. It didn't really bother me enough to turn it off.
I think that's an accurate (enough) caption for the photo, which is a picture of a thing that says "Google" -- ie it's the headquarters in Manhattan; which is not the world headquarters.
> Google, which already employs about 7,000 in the city, has its New York headquarters at 111 Eighth Avenue, one of the city’s largest buildings that it bought in 2010.
> Google's current New York Headquarters is in the former Port Authority of New York building. It occupies an entire long city block between 8th and 9th Avenues and between 15th and 16th Streets.
From the Reuters story: "Google also plans to expand its existing property at Chelsea Market by about 300,000 square feet, WSJ said citing people briefed with the matter."
Off-topic: The Chelsea Market location is where I had to go to pick up my Google Glass in June 2013. Early adopters ("Explorers":https://en.wikipedia.org/wiki/Google_Glass) had to go to Google offices in LA, SF, or NYC to get them and have them fitted and calibrated. Later, when Google expanded their availability to the general public, they simply shipped them to your home or office like any other electronic device. "... either a benefit or a hazard":https://youtu.be/o_AXOjlPF0Y
I have had Android devices for many years and this issue makes me want to seriously consider an is device. If apple really has nothing like this bank of locations stored and centrally searchable, why would anyone who cares be okay with Android? I feel like I need more info about Apple's security reliability.
Most of this can be disabled simply by disabling Location History. Apple is definitely better for not keeping this kind of thing - however even with an Apple or Librem device, your carrier will store your location and hand it off to law enforcement more readily than even Google would, so keep that in mind.
Being concerned about your location privacy and having a connected cell phone in your possession at all times are mutually exclusive ideas with the current state of things. Short of major legal changes it will not be possible.
> Most of this can be disabled simply by disabling Location History
That disables the location tracking specifically for the purposes of location history, but not any of google’s location tracking for other purposes. Who’s to say whether that other data like “was at X when you opened google maps” ends up in the same location database that these warrants are querying?
Yes, this is why I said most of what I feel is problematic, you're able to disable automatic location collection but not all location collection.
Your opening maps question is an interesting one, I automatically assume any data that goes to their servers is fair game, so if I'm asking Google to give me driving directions or even open a map and show me where I am (which requires loading map data for the area), I'm clearly making that choice.
I suppose it's possible they could behave better, but once data leaves my device, it's out of my control and I have to assume the worst.
This is from congressional testimony in the past month that hasn't gotten virtually any coverage from the traditional media outlets:
>Hawley pointed out on Tuesday that a user's location is sent to Google hundreds of times a day, even when the phone is not in use. In fact, Hawley said, a user's location is tracked "every four minutes, or 14 times an hour, roughly 340 times during a 24-hour period," even when the phone is not in use.
>DeVries confessed that "location information is absolutely core to making a mobile phone work the way that you want it to work." He said that Google has an "optional service" called Location History that is opt-in and "can collect location over time when people turn that on."
>"But Google collects geolocation data even if Location History is turned off, correct?" Hawley pressed.
>"Yes, senator, it can in order to operate other services—"
Google's privacy head was passing off the location data harvesting as something that is necessary for the phone to function, which is untrue. They are using the devices to surveil on people, which, among other things, allows intelligence agencies to outsource an important task.
I think you're misunderstanding what was said in that testimony. Yes, Google still collects your location if you turn off location history and then use Google Maps or an app calls their fused location API, they do not periodically collect it unprompted if you have location history off. That's why I used the word "most". Because I feel it's obvious that they'll get your location in the other cases.
Your first link is broken, but if you think I'm mistaken here, please point me in the direction of a technical analysis showing this, I'd love to see it.
Also your phone connects to up to 7+ cell towers at once giving good location history to AT&T who then sells your location history as a product to law enforcement. We are tracked multiple ways. Logging into Gmail gives your ip and a less precise but overall description of where you are, etc.
Apple won't save you. Qualcom does this in the baseband, from what I understand:
https://firmwaresecurity.com/2018/05/18/qualcomm-izat-and-ba...
Of course the cell companies have it too, along with anyone they sell the data too. My recent work with location smart showed that verizon was the only carrier that required user consent for that.
He's an MBA, and not a techie. All he knows is how to strip-mine a company to make Wall Street happy. These people all play from the same playbook: maximize profits and minimize expenses per quarter.
Google shows so many more ads today than 3 years ago. It's all Pichai's doing.
he has a bachelors and masters in engineering from IIT and Stanford. only then MBA from wharton. granted he did not study computer science, but he is leagues different from a accounting-only number-crunching management-jargon MBA.
69 comments
[ 3.6 ms ] story [ 142 ms ] threadOn the good side it used to be remarkably accurate at identifying and tracking stops along with routes I had driven. At the same time it would have occasional astonishing jumps such as the 15 minutes I once spent in South Korea during the middle of the day.
At some point they appeared to dumb it down pretty radically and it would no longer even recognize that I had been at a location even when I had been there for hours.
These days I use a separate unfortunately discontinued app for tracking location and uploading to my own cloud storage a few times a day.
I've given up on Google not being evil, but it might be nice if they could avoid being so freaking creepy.
At this point the software I'm using for mileage tracking covers that (and will show my route using a certain ubiquitous mapping system), but I still have that package generating kml files and uploading them twice a day.
Edit: looks like just over 5 years of daily kml files, likely mostly useful for showing just how few new places I go.
It's also capable of pinging a url with location data if you prefer.
Edit: this may be interesting from someone else actively using it for their own tracking and reporting (includes parsing scripts) https://petermolnar.net/location-tracking-without-server/
At the same time, I get some slight value out of it. I find the history (and the monthly reminder e-mails that location history is on) mildly interesting to look at every now and then. On very rare occasions, I've been able to get some specific usefulness out of location history (I found a restaurant I previously visited on a road trip).
Now that I think of it bad things will happen as well even if the data was accurate.
My expectation for the absurd jumps was that Google was calculating locations based on identifying WiFi devices in the vicinity and that for some devices there were duplicate MACs distributed in different regions (or possibly that the MAC on some equipment was being set from configuration rather than being hard-coded). I did not check to see if any of them were 00:DE:AD:BE:EF or the like since I generally only noticed several weeks after the event.
It doesn't suit me.
Rooting and install another Android OS is no easy task for a normie and comes with it's own maintenance baggage. And even then you have to install Google's proprietary software to even use the App Store.
A phone without the app store is a no-go for 99% of people.
The solution is allow the customers the option to "turn it on" (especially after they pay $300-900 for a phone) rather than being omnipresent.
"Location History is not on by default. Google prompts users to enable it when they are setting up certain services — traffic alerts in Google Maps, for example, or group images tied to location in Google Photos.'
Maybe you don't remember it, but you can look at old version of Android and they all ask very clearly if you want it or not.
I guess maybe you didn't understand what was implied? But it was definitely asked.
https://thehill.com/policy/technology/433742-google-takes-he...
https://www.youtube.com/watch?v=Oqw81WF_eqw
It's been stretched by media to make it sound nefarious, but no one has shown that they're actually sending location data when history is disabled and you're not using maps.
The only thing location history toggles is whether your location data is branched off to the location history product line. It does not toggle the existence of that data or the fact that it's archived at several other points.
Take the time to watch the congress hearing and note the very carefully worded answers and why they are worded that way.
Ultimately though, you're still not getting around being tracked, your cell provider collects that location data even if Google doesn't. Just having a cell phone and a SIM puts you in a pretty awful state privacy wise.
https://www.theguardian.com/technology/2018/aug/13/google-lo...
> For example, Google stores a snapshot of where you are when you merely open its Maps app
Yeah, that's exactly the kind of thing I'm talking about. In order to download map tiles around you, show nearby stuff, traffic, etc they need to know where you are. So yes, that means they get your location.
But that has nothing to do with the sort of periodic background location reporting used in Location History that people are concerned about. Disabling Location History and not using Maps or other Google location based apps or APIs means they won't get your location.
Also note that there's no mention of play store access, phone calls or any other sorts of usages which seem like they shouldn't ask for location in that article.
They make a bit of a big deal about searching for "chocolate chip cookies" not requiring localized results, but from a technical perspective I think it's obvious that they just send it with the request regardless, they don't know . Trivial to disable if you don't want that though. In fact, both this an the Maps example will happen even on iOS devices as the article points out.
When I said I found those claims exaggerated last time I looked into it, this is exactly what I meant. They must get a lot of clicks by making this stuff out to be more nefarious.
Which is impossible unless you don't use the phone at all, hence the 3 hour long congressional hearing[1]. Turn off location history, turn off location services, it doesn't matter, your location tracks are being logged.
I'm not sure what you're trying to argue about since you seem agree with the premise. You think the news outlets exaggerated the fact that Google grossly underplayed the language around their always-on tracking and mislead hundreds of millions of users into thinking they're not being tracked when they in fact were? Okay then.
[1] https://www.youtube.com/watch?v=WfbTbPEEJxI
Achieving this on an Android device isn't impossible by any means: deny location to all apps and those apps won't be able to call the Google Fused Location API. If you want location without using Google's API, allow only select apps which use direct on-device GPS access, it's readily available in the Android API without the need to pull in the Google Play Location Services package.
Yes, there's literally a button you can press. No rooting, no reflashing necessary.
Google Account -> Data & Personlization -> Location History
Done. In fact, as is mentioned in this article even, Google explicitly alerts you when you first enable it and allows you to opt out of it.
Once you've done this, the only time Google will get your location is if you use Maps or Location API services.
https://www.youtube.com/watch?v=PwyuCtbK3qw
https://en.wikipedia.org/wiki/Data_retention
How do I turn that off?
I know, that's not a phone, really. But that's life, these days.
Death
Taxes
Tracking
"You are Number Six".
"I am not a number. I am a free man!"
Laughter.
[1] https://www.youtube.com/watch?v=nW-bFGzNMXw
But thats only because the warrants werent sealed by the judge, the state law allowed for public knowledge, the detectives were willing to talk with media, and those available warrants happened to use discretion that is more agreeable so far.
So lets not get this confused with something good. All these people know it is a questionable tool and that as soon as they or anyone else in the public sector uses this more broadly then it is going to mess up their ability to use the tool at all.
If I understand your argument, you're saying that, yes, this tool has been used justly so far, but it's still not good, because those using it would have behaved unjustly if there were no consequences for just behavior?
I don't really think this argument flies. There are so many other things that have this property and are widely considered to be good things.
Bad = additional tool state uses to potentially circumvent established rights in an unexpected way, which may result in prior assumptions about established rights becoming obsolete in subsequent court rulings
Good = things that dont do that
Yes, the consequences are a check on the use of this tool.
Its astonishing what companies and law enforcement can do. For instance, people are concerned with some of Trump's laws/actions already. Why would we want to give him or anyone in such a position the ability to sweep up whole populations based on being near an event. It goes beyond that obviously, Google can predict movement and predict interests, even what you'll say at this point.
Eventually, law enforcement will be issuing a warrant on the model which predicts/represents you as well.
Yes, iOS has a superficially similar feature called Significant Locations [1].
No, it doesn't work anything like Sensorvault. Significant Locations are collected and stored locally on the device. They are only used to provide relevant suggestions to the user of the device (e.g, to suggest Maps destinations based on where the user frequently travels), not for advertising or analytics.
[1]: https://support.apple.com/en-us/HT207056
People forget that with google you are always the “product”; even when you buy a $900 device.
More quality New York-centrism from The New York Times :P
> Google, which already employs about 7,000 in the city, has its New York headquarters at 111 Eighth Avenue, one of the city’s largest buildings that it bought in 2010.
https://www.reuters.com/article/us-alphabet-google-new-york/...
> Google's current New York Headquarters is in the former Port Authority of New York building. It occupies an entire long city block between 8th and 9th Avenues and between 15th and 16th Streets.
https://arstechnica.com/tech-policy/2018/12/google-announces...
Being concerned about your location privacy and having a connected cell phone in your possession at all times are mutually exclusive ideas with the current state of things. Short of major legal changes it will not be possible.
The point about carriers is the most valid though. That’s the weakest point in location privacy.
That disables the location tracking specifically for the purposes of location history, but not any of google’s location tracking for other purposes. Who’s to say whether that other data like “was at X when you opened google maps” ends up in the same location database that these warrants are querying?
https://www.wired.com/story/google-location-tracking-turn-of...
Your opening maps question is an interesting one, I automatically assume any data that goes to their servers is fair game, so if I'm asking Google to give me driving directions or even open a map and show me where I am (which requires loading map data for the area), I'm clearly making that choice.
I suppose it's possible they could behave better, but once data leaves my device, it's out of my control and I have to assume the worst.
This is from congressional testimony in the past month that hasn't gotten virtually any coverage from the traditional media outlets:
>Hawley pointed out on Tuesday that a user's location is sent to Google hundreds of times a day, even when the phone is not in use. In fact, Hawley said, a user's location is tracked "every four minutes, or 14 times an hour, roughly 340 times during a 24-hour period," even when the phone is not in use.
>DeVries confessed that "location information is absolutely core to making a mobile phone work the way that you want it to work." He said that Google has an "optional service" called Location History that is opt-in and "can collect location over time when people turn that on."
>"But Google collects geolocation data even if Location History is turned off, correct?" Hawley pressed.
>"Yes, senator, it can in order to operate other services—"
Google's privacy head was passing off the location data harvesting as something that is necessary for the phone to function, which is untrue. They are using the devices to surveil on people, which, among other things, allows intelligence agencies to outsource an important task.
https://pjmedia.com/trending/google-tracks-you-even-when-loc....
The actual hearing itself: https://www.youtube.com/watch?v=PwyuCtbK3qw
Your first link is broken, but if you think I'm mistaken here, please point me in the direction of a technical analysis showing this, I'd love to see it.
A. make money because that's the most important thing (e.g. China population surveillance projects).
B. Keep the trust busters at bay by making itself useful to the government any way it can (e.g. this).
Google shows so many more ads today than 3 years ago. It's all Pichai's doing.
Your chosen education has nothing to do with how big of a douche bag you chose to be.
he has a bachelors and masters in engineering from IIT and Stanford. only then MBA from wharton. granted he did not study computer science, but he is leagues different from a accounting-only number-crunching management-jargon MBA.
https://news.ycombinator.com/item?id=19653647