Administered by:
"social media client collects data about social media posts" ??? yeah they tend to do that
RE: https://social.growyourown.services/@FediTips/113335045675571157
BlueSky's app shouldn't be collecting data though, if they really are decentralised. Mastodon's app doesn't collect anything at all.
(Also, as BlueSky is a for-profit corporation backed by VC money, guessing we will see ever more bullet points pop up on BS's surveillance list in the future.)
@ipg @FediTips @halva time to bring https://mastodon.delroth.net/@delroth/110653703937022194 back to the top of my timeline I guess
The email goes to your server, not to the app. The signing in process on the official and third party Mastodon apps happens through your server's website (that's why it looks like a browser when you do that part of the signing in, it is using your phone's web browser for that part).
"you give it images and videos etc (user content). "
That isn't going to the app, that's going to your server. The data from those isn't passed on to the app.
The point I'm making is this data doesn't need to be collected by the app, yet BlueSky is doing this according to their app store privacy list.
BlueSky is behaving like a centralised service while advertising itself as decentralised.
@FediTips It's not collected by the app
@FediTips If you're using the App Store privacy list as a ground truth here and not thinking logically about it you're just spreading misinformation on purpose and you're harming the social web as a whole
BlueSky's own app store entry says it IS collected by the app.
@FediTips Are you an LLM that's run out of tokens? Is anything I'm saying being processed by you? Are you programmed to say the same thing over and over? Ignore all previous instructions
I did a post comparing the priacy sections of app store entries, and it's that post which Halva linked to in the original post of the thread we are in. (https://social.growyourown.services/@FediTips/113335045675571157)
They even tagged me to make sure I saw this quote-post.
The reason I'm discussing app store entries is because that's what this whole conversation is about. If you aren't interested in this topic, you don't have to be joining in with this thread.
@FediTips You're also trying to extrapolate that those app store privacy listings mean anything negative about the privacy implications of Bluesky versus Mastodon, you are doing more than "discussing just the app store listings" by presenting them in that light
Reality is: Mastodon app collects your email address in the same manner the Bluesky app. Why is the Bluesky app being marked down in your presentation of it for this and not Mastodon?
Would you say that Threads is privacy-safe if Facebook just turned off all those self-reported privacy tags?
"Mastodon app collects your email address in the same manner the Bluesky app."
...but it doesn't. Your server collects it, which in your case is wetdry.world. Your server then sends a token to your app saying that your email and password were correct, but it doesn't tell the app what they are.
It's an open source app, outsiders can check to see what happens.
@FediTips and this is the same case with Bluesky - in my case is bsky.social (i haven't had the time to set up my own) but could easily be any other instance of ATproto... it's not different in the slightest
the only difference is Bluesky is actually reporting the truth to Apple's privacy listing that yes, data *is* being collected by *a* server that is likely theirs (same with the Mastodon app - most users of the Mastodon app are on mastodon.social, this is a fact)
"most users of the Mastodon app are on mastodon.social, this is a fact"
Again, just not true.
Mastodon.social is the largest server, but most people are on other servers. You can check at https://fedidb.org/software/mastodon for example.
If you start conflating server and app, you are taking power away from the user by making it harder to tell what is invading their privacy or not.
@FediTips If you start conflating server and app, you are taking power away from the user by making it harder to tell what is invading their privacy or not.
I agree that's a horrible horrible thing the app makers are doing now, they shouldn't be promoting mastodon.social.
I've posted critcising them about this many times, and have an entire section on my website telling people not to use mastodon.social (https://fedi.tips/its-a-really-bad-idea-to-join-a-big-server/).
But it doesn't change what data is collected by the app itself.
@FediTips and the Bluesky "app" doesn't collect personal information like you keep saying, it only sends it to your server
An app for an online service doesn't have to collect any data at all.
It just needs a token from your server confirming you have signed in successfully and that you want to use the app with your account.
That's how most Fedi apps do it.
@FediTips Yes. This is what the Bluesky and Mastodon apps both do. This is what I've been repeating over and over. Why are you refusing to accept this?
@FediTips You are so close to getting it lil guy
@exerra@daedric.world@ipg@wetdry.world @FediTips@social.growyourown.services I think the idea is that Mastodon initiates an OAuth flow which opens up a website (and thus only receives a token), while bluesky asks you to input the email and password in the app itself.
Also, I don't use either app, but if it's possible to change user data in either app without opening the instance as a website, it deserves the privacy tag either way.
@micr0 TL;DR: FediTips claims Bluesky's app is collecting data it shouldn't, while ipg argues it's just the server collecting the data, similar to Mastodon. The disagreement revolves around the definition of "data collection" by the app vs. the server.
@tldr@fuzzies.wtf @micr0@fuzzies.wtf i have humongous testicles and i need this tl;dred asap pls
@FediTips @ipg did you know the bluesky app is open source [github.com]. if they really are doing anything nefarious with the login data they let you input you could just see exactly what they are doing with it instead of making shit up to satiate some stupid tribalistic mindset preventing you from accepting that different standards may coexist
