Hope your app team can answer every single one these questions...I'm very eager to hear their reasoning for all of them.
Possibly. We don't know that yet.
Apps should only have the necessary permissions and function to do their job. I'm not sure that I understand the reasons for requesting all of these permissions on our personal device. There are many other competing dashcams on the market (with just as many or even more features than your product) that don't require nor collect these invasive permissions or data.
All these information is being collected and *could* potentially be sent somewhere. Where? I don't know.
Thank you for answering those last 2 questions.
That answer sounds reasonable. Although I'm not sure that using that method makes it easier than using a generic WiFi AP with a generic password that can be later changed at the user's discretion.
I also don't see the reason for having those permissions when your app already has an existing Bluetooth permission and can achieve the same result via pairing/sharing of connection.
The remaining questions that I need answer for are:
1.) Why does the app need to see what other apps I have installed and running? What other apps or list of apps is the company looking for here, and how exactly does it relate to the functionality of the product? What does your company do with these list of apps that I have installed or running tied to my IMEI/device ID? Is this list of apps being sold to data brokers?
2.) Why does it need to read "sensitive" log data? What does it do with this "sensitive" log data that it reads?
3.) Why does it need to read phone status and identity? Why does the app need the IMEI of my mobile device to function?
4.) Why does it need to read device ID and call information?
I got answers yesterday. But I was too busy last night to focus on this post.
Now, Let me answer Lothar's question about permission questions on HikDashcam app.
Questions
1.) Why does the app need to see what other apps I have installed and running? What other apps or list of apps is the company looking for here, and how exactly does it relate to the functionality of the product? What does your company do with these list of apps that I have installed or running tied to my IMEI/device ID? Is this list of apps being sold to data brokers?
2.) Why does it need to read "sensitive" log data? What does it do with this "sensitive" log data that it reads?
3.) Why does it need to read phone status and identity? Why does the app need the IMEI of my mobile device to function?
4.) Why does it need to read device ID and call information?
Answers:
HikDashcam or any other Apps require permissions to see my IMEI/device ID for 2 things:
1)Push notifications, such as App or Dashcam new firmware version notifications, remote alarm notifications, Geofence notifications, etc.
This is a basic requirement for sending notifications to an App on a phone.
2) Those permissions are needed to do app crash analysis and app optimization.
These permissions to see what app is running as well as log data is not to be used for collecting other apps information.
it is only used to collect running status of our own app for crash analysis.
HikDashcam has no intention to invade your privacy. You can disable those permissions anytime.
We are going to release a new app to remove all those functions like push notifications , crush analysis and app optimization.
Then none of those permissions are needed.
Ok, I hope this answered your questions.