Let's be honest, who here is actually surprised that underpaid and overworked data workers would sell on our details for a few extra quid? Given the number of uninvited calls to our unlisted phone numbers, we know for a fact that somebody has been dishing our personal contacts to those Nigerian princes and caring loan consolidators, so it's no shock to learn that T-Mobile employees have been fingered for committing the deed and are now facing prosecution. We're told that inappropriately leaked information made its way into the hands of brokers, who then "cold-called the customers as their contracts were due to expire" without T-Mob's knowledge. Disappointed by the failure of current fines to discourage such illegal information trade, British Justice Minister Michael Wills has even called for "custodial sentences" to be levied against the poor slobs responsible. So, if you're scoring at home, that's now two black eyes for T-Mobile when it comes to keeping our data safe. For shame.

Wondering why you keep getting followed by shadowy figures in trenchcoats and fake moustaches? Worried that those snipers on the rooftops always seem to know exactly where you are? We think we know what's going on: it's the Pre in your pocket. Turns out that Palm has code tucked away in webOS that's uploading your location periodically -- once a day or so -- along with a list of applications you've used and how long they've been open. Here's our take on the situation:

• One of the very first screens you see when you power on the Pre for the first time is a disclaimer asking you to allow Google to collect, aggregate, and anonymize your location data in order to improve the performance of location-based services. Furthermore -- and this is important -- "collection will occur regardless of whether any applications are active." We don't know whether Palm acts as a conduit for that data to get to Google, but we'd be surprised if Palm had built services to pipe location data straight to Google within webOS itself; in all likelihood, Palm's getting the data first, which is why it's being uploaded there. Bear in mind that you're seeing this warning outside the context of any Google app on the Pre -- it's right in the operating system. Palm has its own terms and conditions that you agree to above and beyond Google's, too, and they flat-out say they "may collect, store, access, disclose, transmit, process, and otherwise use your location data." There you have it.
• App usage is a pretty benign stat -- equate it to TiVo anonymizing and selling your viewing habits, except even less interesting, because we have no evidence to suggest Palm's trying to sell this. We can totally understand why Palm would want insight into app popularity, and when you think about it, this could actually lead to some pretty clever ranking systems in the App Catalog; the iPhone has starkly demonstrated that download volume doesn't equate to replay value, and Palm might be able to do something about that. Oh, and seriously, you need to cut it out with the Jon & Kate Plus 8.
• When an app crashes, Palm gets some more in-depth information about the crash, most notably a list of installed apps. You know what else collects and sends a crapload of information when an app crashes? Mac OS. Windows, too. If they really wanted to go into CYA mode, they could ask before sending the way those desktop OSes do, but we're not sweating bullets here -- we just want stability, and this kind of data helps them get there.

Bottom line: we're all carrying phones that can identify who we are and where we are -- and they have the wireless means to ferry that data wherever their makers wish. And let's not forget that your Palm Profile lives out there in the cloud anyhow, right?

[Via PreCentral]

Update: Palm has issued a statement on the situation, basically confirming what we suspected -- it's collecting information to offer "a great user experience," which we take to mean that it's trying to squash bugs and keep location-centric apps functional, among other things. They've also mentioned that it's possible to turn data collecting services off without going into details -- ostensibly they're referring to the checkbox at setup (see above) that lets you stop sending aggregated location results to Google.

Hunker down and find that tin foil cap, pronto! Privacy advocates, we've a new target for you to bang on: Integrated Media Measurement. The 4,900-person media research company is looking to take advertising measurement to a whole new level (or new low, as it were) by embedding tracking modules within cellphones. In short, the module picks up audio from ads and records information about the exposure; in the future, if you were to purchase whatever product you heard about (like seeing a movie that was plugged), it would register a hit and deem you a sucker. As of now, the only testers with these freaky phones are individuals who signed up for this stuff, but you better believe major marketing firms (and TV / movie studios in particular) are perking their ears up and begging to know more.

[Image courtesy of Corbis, thanks ugotamesij]

Ask yourself this: Are you a statistic or a specific example? That's the question being raised in the aftermath of a study in which researchers secretly tracked the locations of 100,000 people to determine their movement patterns. Such studies are considered invasions of privacy -- and illegal -- in the United States, but this one was done in an undisclosed industrialized nation. The subjects were chosen at random out of a pool of 6 million from a mystery wireless provider and tracked based on cell tower triangulation and other "tracking devices." Study co-author Cesar Hidalgo at Northeastern University promises that researchers didn't know the individuals' phone numbers or identities, and offers that the results are a major advance for science. The study found that people are homebodies -- most stay within 20 miles of their home and are rather habitual. Scientists say the findings -- to be published in Nature on Thursday -- can help improve public transit systems and even fight contagious diseases.

[Thanks, Doug]

[Via MSNBC]

Although several Indian news outlets reported last week that RIM was preparing to let the Indian government monitor the domestic Blackberry network, it appears that the outcry has prompted the company to change course and announce that it's committed to "serving security-conscious businesses in the Indian market." That's a big reversal from the rumored plan, which would have allowed Indian security agencies access to the network in exchange for taking the blame for any leak of user data. Of course, not everything's quite settled yet: the Indian government is still demanding that RIM furnish "satisfactory answers" to its security questions, and RIM told the AFP that there are some other ways for "government to take care of security concerns" without elaborating further. Based on RIM's enterprise-heavy statements and refusal to comment on the consumer service, we'd guess that enterprise customers will probably get to keep their networks locked down, but that consumers shouldn't expect their messages to be secure. Not the best compromise, but we'll see how this all plays out.

It's not like the Japanese government hasn't dabbled in GPS (and RFID, too) tracking before, but the nation's latest idea involving Big Brother is (unsurprisingly) catching a fair amount of criticism. Reportedly, Japan wants to equip senior defense officials with GPS-enabled mobiles, and it's making no bones about the reasoning behind it. Quite frankly, it's looking for ways to keep a more watchful eye on officials' whereabouts after a higher-up was recently "treated to hundreds of expensive rounds of golf by a defense contractor." Reportedly, the handsets would only be given out to senior staff "required to report for duty in the case of a security emergency," but a number of anonymous individuals have already expressed disdain for the plan through local news outlets. Nothing to hide, nothing to fear, right?

Here's one that is sure to get the pro-privacy crowd all riled up, and rightfully so. Apparently, Verizon is sending out notices to customers that update them on all the fine print, but if you actually take a moment to peruse the documentation, you may notice something you're not exactly kosher with. The carrier is now planning on sharing its database of CPNI records -- which is defined as "data collected by telecommunications corporations about a consumer's telephone calls, including time, data, duration and destination" -- to outside sources unless you take the initiative to opt out. The notice claims that users will have to remove themselves from the process within 30 days of receiving the letter, or else it "will assume that you give the Verizon Companies the right to share your CPNI with the authorized companies as described above." We just can't see this going over well. [Warning: PDF read link]

[Via mocoNews]

Just in case fixed sensors all across the country, bomb-sniffing bees, and Bay Area nuke detectors weren't enough to make you rest easy, Homeland Security is cookin' up another safeguard at the expense of privacy. Reportedly, the Department is looking into the idea of "outfitting cellphones with tiny, sensitive detectors that would alert the government and emergency responders to the presence of radiological isotopes, toxic chemicals, and deadly biological agents." Essentially, future mobiles could come pre-loaded with such a device that continuously monitors said chemicals and sends off alerts via GPS if anything goes awry. Of course, officials are expecting "quite a few hurdles" along the way, one of which will be battling the privacy advocates who don't understand that their handset probably already contains the technology for Big Brother to see everywhere they go. No word on when these plans could take effect, nor whether older phones will be retrofitted with the toxic sensors, but we can already envision quite a few false alarms care of the cellphone-totin' chemists in the crowd.

[Via Textually]

Whether ECHELON is true or not is debatable, but for now we know that Integrated Media Measurement, Inc. is, in fact, real. The IMMI has developed special cellphones that can eavesdrop on conversations, so it can find out what you are watching or listening to. The devices work by randomly recording 10 seconds of "room audio" every 30 seconds, and then comparing it to digital signatures on IMMI servers. The signatures, which can be determined up to two weeks later to accommodate for TiVo users, are then matched and grouped with your demographic data for marketers' consumption. However -- before you run for your Reynolds Wrap -- like Neilsen ratings, this is an opt-in program, so unless your already enlisted we're pretty sure your phone won't judge you for enjoying Beauty and the Geek.

[Via Futurismic]

Intelligent roadways and traffic monitoring systems have been available (albeit not always entirely accurate) for some time now, but if IntelliOne and AirSage have their way, finding out about real-time roadblocks (and voyeurism lawsuits) could become a more fleshed-out reality. The firms are looking to utilize that oh-so-telling "anonymous" location data from each traveler's cellphone to pinpoint locations and overlay that information with maps. If wireless companies open up that data at a rate of "twice per second" while users are conversing and "once every 30 seconds" when not on a call, the entrepreneurial duo hopes to offer more detailed information and pragmatic advice than "radar, helicopters, or cameras" currently do. While keeping a keen eye on traffic developments certainly has its benefits, the real issue here is privacy (or the lack thereof); while government uses have already been in place, carriers are (understandably) more hesitant to turn over consumer data for locating purposes. While the service would be marketed free of charge to wireless carriers, interested customers not enraged by such intrusions could purchase the data for a monthly fee, and if all goes as planned, the Tampa pilot that is currently ongoing will lead to "40 other markets" being invaded by this time next year.

[Via The Wireless Report]

Out of the many gadgets and devices that have been featured on these pages over the years, the last one you'd think someone would make improvements upon would be the personal cellphone booth invented last year by Nick Rodrigues, which seems to perform its intended duty almost perfectly. Well NYU student Jenny Chowdhury, the same person who brought us that team-building Mobile Assassins game, decided to take the mobile phone booth to the next level by making it both lighter and more private. Instead of the folding plastic and metal design built by Rodrigues, Chowdhury decided to use Chinese merchant bags to stitch together her cleverly-named, full-length "cell atlantic" phonebooth, as a symbol of the structure's nomadic nature. Chowdhury hopes that people seeing or using the booth will take a moment to consider the impact of cellphones on our daily lives, while forcing them to stand still and concentrate on a call instead of engaging in the usual multitasking.

[Via textually]

Were you aware that your phone records are available to just about anyone willing to fork over $100 beans in exchange for a month’s worth of activity? Yeah, in what has become a booming Internet business aimed primary at Private Dicks, your phone records (including lists of incoming and outgoing calls) are being made available via dozens of web-based brokers who openly advertise their ability to obtain your data with the help of company insiders or via a little deception -- in violation of law. See, the 1996 Telecommunication Act which deregulated the phone and media industries, also states that consumers’ phone records are private property and can only be publicly disclosed with our approval. As such, the FTC has now taken action and like Cingular, T-Mobile, Sprint Nextel, and Verizon before them, are going after these bastages in a variety of sting operations and costly litigation meant to oust and ultimately shut ‘em down. The five sites targetted by the FTC in their lawsuit include 77 Investigations, Accusearch, Check Em Out, Information Search, and Integrity Security & Investigations Services with the latter accused of selling personal financial info and credit card deets to boot. Sure, these US-based companies will just reopen off-shore but still, we’ve got your back on this one FTC.