> "I assume FB has good data practices based on nothing, and I assume this app has bad data practices based on nothing, thus this app is probably bad".
That is a strawman. FB probably has decent (at least industry standard) data practices because they're a public company, spend a lot of money on hiring engineers, and have been under investigation for keeping data secure. I think that if they're doing something wrong, they're probably not doing something obviously stupid.
Now, you have another app which was written by "Now, Marler has a second job: She’s one of about two dozen current and former employees who helped construct an app called WorkIt that answers questions about Walmart’s policies and workplace rights using Watson, IBM’s artificial intelligence bot."
I'm not saying that this app is bad, I'm saying that they have a huge probability of overlooking data security vulnerabilities. Of their two dozen employees, how many of them are really well versed in inf sec or IT?
The belief that FB has good data practices and there are no assurances that another random app has unknown data practices is rooted in reality.
The fact that the random act is asking for so much possible PII is not a good sign.
That is a strawman. FB probably has decent (at least industry standard) data practices because they're a public company, spend a lot of money on hiring engineers, and have been under investigation for keeping data secure. I think that if they're doing something wrong, they're probably not doing something obviously stupid.
Now, you have another app which was written by "Now, Marler has a second job: She’s one of about two dozen current and former employees who helped construct an app called WorkIt that answers questions about Walmart’s policies and workplace rights using Watson, IBM’s artificial intelligence bot."
I'm not saying that this app is bad, I'm saying that they have a huge probability of overlooking data security vulnerabilities. Of their two dozen employees, how many of them are really well versed in inf sec or IT?
The belief that FB has good data practices and there are no assurances that another random app has unknown data practices is rooted in reality.
The fact that the random act is asking for so much possible PII is not a good sign.