The contract states independent repair shops must agree to audits and inspections by Apple, even if they leave the program. From a report: Last August, in what was widely hailed a victory for the right-to-repair movement, Apple announced it would begin selling parts, tools, and diagnostic services to independent repair shops in addition to its "authorized" repair partners. Apple's so-called Independent Repair Provider (IRP) program had its limitations, but was still seen as a step forward for a company that's fought independent repair for years. Recently, Motherboard obtained a copy of the contract businesses are required to sign before being admitted to Apple's IRP Program. The contract, which has not previously been made public, sheds new light on a program Apple initially touted as increasing access to repair but has been remarkably silent on ever since.

It contains terms that lawyers and repair advocates described as "onerous" and "crazy"; terms that could give Apple significant control over businesses that choose to participate. Concerningly, the contract is also invasive from a consumer privacy standpoint. In order to join the program, the contract states independent repair shops must agree to unannounced audits and inspections by Apple, which are intended, at least in part, to search for and identify the use of "prohibited" repair parts, which Apple can impose fines for. If they leave the program, Apple reserves the right to continue inspecting repair shops for up to five years after a repair shop leaves the program. Apple also requires repair shops in the program to share information about their customers at Apple's request, including names, phone numbers, and home addresses.

California helped create the modern Big Data industry, in which tech companies vacuum up and profit off personal information. Now a new law in the state is creating something like a solution to the loss of privacy. From a report: The California Consumer Privacy Act, which took effect Jan. 1, gives people the right to know what large companies know about them and the right to block the sale of that information to others. In effect, it created a market for privacy expertise and software. A wave of privacy-focused technology startups is offering a variety of services, from personal data scrubbing to business-focused software meant to help companies comply with the law. A brief list of the nearly 300 companies now selling privacy services includes Privacera, Privsee, Privally, Privitar and Privaon. There's DataFleets, DataGrail, DataGravity, Dataguise, DataTrue and Datastream.io. And there's HITRUST, Mighty Trust, OneTrust, trust-hub, TrustArc and The Media Trust, as well as SecureB2B, Securiti.ai, Security Scorecard and Very Good Security. Personal privacy is still under threat from data breaches, data harvesting and elsewhere, but it may also finally be living up to its promise as a profitable business.

ProtonVPN open sourced its code this week, ZDNet reports: On Tuesday, the virtual private network (VPN) provider, also known for the ProtonMail secure email service, said that the code backing ProtonVPN applications on every system -- Microsoft Windows, Apple macOS, Android, and iOS -- is now publicly available for review in what Switzerland-based ProtonVPN calls "natural" progression.

"There is a lack of transparency and accountability regarding who operates VPN services, their security qualifications, and whether they fully conform to privacy laws like GDPR," the company says. "Making all of our applications open source is, therefore, a natural next step." Each application has also undergone a security audit by SEC Consult, which ProtonVPN says builds upon a previous partnership with Mozilla...

The source code for each app is now available on GitHub (Windows, macOS, Android, iOS). "As a community-supported organization, we have a responsibility to be as transparent, accountable, and accessible as possible," ProtonVPN says.

"Going open source helps us to do that and serve you better at the same time."
They're also publishing the results of an independent security audit for each app. "As former CERN scientists, publication and peer review are a core part of our ethos..." the company wrote in a blog post. They also point out that Switzerland has some of the world's strongest privacy laws -- and that ProtonVPN observes a strict no-logs policy.

But how do they feel about their competition? "Studies have found that over one-third of Android VPNs actually contain malware, many VPNs suffered from major security lapses, and many free VPN services that claimed to protect privacy are secretly selling user data to third parties."

An anonymous reader quotes a report from Ars Technica: Frontier Communications is planning to file for bankruptcy within two months, Bloomberg reported last week. The telco "is asking creditors to help craft a turnaround deal that includes filing for bankruptcy by the middle of March, according to people with knowledge of the matter," Bloomberg wrote. Frontier CEO Bernie Han and other company executives "met with creditors and advisers Thursday and told them the company wants to negotiate a pre-packaged agreement before $356 million of debt payments come due March 15," the report said. The move would likely involve Chapter 11 bankruptcy to let Frontier "keep operating without interruption of telephone and broadband service to its customers." Frontier reported having $16.3 billion in long-term debt as of September 30, 2019.

Frontier offers residential and business services in 29 states over its fiber and copper networks. Frontier offers broadband, TV, and phone services and reported revenue of $2 billion and a net loss of $345 million in the most recent quarter. Frontier has been losing customers and reducing its staff. Its residential-customer base dropped from 4.15 million to 3.81 million in the 12-month period ending September 30, 2019, including a loss of 90,000 customers in the most recent quarter. Also in that 12-month period, Frontier's business-customer base declined from 422,000 to 381,000. Meanwhile, Frontier had 19,132 employees as of September 30, 2019, down from 21,375 one year earlier. Frontier's financial performance last year was so bad that it refused to take any questions from investors during its quarterly earnings call in August. Frontier is in the process of selling its operations in Washington, Oregon, Idaho, and Montana to WaveDivision Capital.

An anonymous reader quotes a report from CNN: Verizon is changing the way it sells its internet and cable packages as customers are increasingly seeking ways to cut the costly cord. The company is eliminating bundles and contracts, Verizon announced Thursday. Instead, it will sell its Fios TV and internet services separately. Long-term contracts are also being trashed in favor of charging customers month-to-month. That is similar to how streaming services charge customers. Verizon is calling the new offers "Mix and Match on Fios." There are now three internet packages and five Fios TV packages. Notably, Verizon will continue selling Google's YouTube TV for $49.99 per month as a TV option under an agreement the two companies signed last year. A home telephone package will also be sold for $20 per month. The new bundle-free packages offer more price transparency for customers, Verizon claims. Not all surcharges are going away though. "Verizon will continue charging a $15 monthly fee for routers in some of its internet packages and a $12 set-top monthly fee in most of its Fios TV packages," the report adds. "But other fees it previously charged, including for regional sports networks, will now be included in the total Fios TV price."

An anonymous reader quotes a report from Motherboard: A surveillance vendor that works with U.S. government agencies, such as the FBI, DEA, and ICE, is marketing spying capabilities to local police departments, including cameras that are hidden inside a tombstone, a baby car seat, and a vacuum cleaner. The brochure highlights some of the capabilities on offer to law enforcement agencies, from the novel to the sometimes straight-up bizarre. Special Services Group, the vendor behind the brochure, does not advertise its products publicly. Its logo is the floating-eye-in-pyramid logo seen on the back of the $1 bill, which conspiracy theorists associate with the Illuminati, and the company's slogan is "Constant Vigilance." The company is so secretive that, when asked for comment for this story, it threatened VICE with legal action if we published this article.

The brochure, dubbed "Black Book" by its authors, contains a cornucopia of surveillance devices. "The Tombstone Cam is our newest video concealment offering the ability to conduct remote surveillance operations from cemeteries," one section of the Black Book reads. The device can also capture audio, its battery can last for two days, and "the Tombstone Cam is fully portable and can be easily moved from location to location as necessary," the brochure adds. Another product is a video and audio capturing device that looks like an alarm clock, suitable for "hotel room stings," and other cameras are designed to appear like small tree trunks and rocks, the brochure reads. Other products include more traditional surveillance cameras and lenses as well as tools for surreptitiously gaining entry to buildings. The "Phantom RFID Exploitation Toolkit" lets a user clone an access card or fob, and the so-called "Shadow" product can "covertly provide the user with PIN code to an alarm panel," the brochure reads.

The discounts and freebies many tech startups have used to lure customers-- free lunch delivery, $3 beauty products and bargain taxi rides -- have fallen out of favor with investors who are losing patience with the failure of these companies to turn a profit. From a report: The proliferation of subsidized products and services from venture-capital-backed startups over the past decade reflected a rush by investors to fund the next behemoth consumer-tech company. The thesis: Create a market leader with loyal customers hooked by attractive deals delivered at the touch of a smartphone app. Once the company got big enough, profits would flow and the subsidies could end.

Startup investors are re-evaluating that approach. Following a year of dismal performances from companies that were heavily subsidized by venture capital, investors and board members are pressuring companies to figure out a more profitable business model, tech deal makers and startup founders say. Investors want startups to become less dependent on raised capital to cover the cost of customer discounts, such as e-commerce startup Brandless selling home and beauty products for a fraction of the cost of shipping, ride-hailing companies Uber UBER and Lyft discounting the cost of their rides, and meal-delivery service Postmates offering coupons for $100 off delivery fees.

According to iFixit, Nikon is ending its authorized repair program next year, "likely leaving more than a dozen repair shops without access to official parts and tools, and cutting the number of places you can get your camera fixed with official parts from more than a dozen independent shops to two facilities at the ends of the U.S." From the report: That means that Nikon's roughly 15 remaining Authorized Repair Station members are about to become non-authorized repair shops. Since Nikon decided to stop selling genuine parts to non-authorized shops back in 2012, it's unlikely those stores will continue to have access to the specialty components, tools, software, manuals, and model training Nikon previously provided. But Nikon hasn't clarified this, so repair shops have been left in the dark.

In a letter obtained by iFixit, Nikon USA told its roughly 15 remaining Authorized Repair Station members in early November that it would not renew their agreements after March 31, 2020. The letter notes that "The climate in which we do business has evolved, and Nikon Inc. must do the same." And so, Nikon writes, it must "change the manner in which we make product service available to our end user customers." [...] In a statement, Nikon confirmed the termination of Authorized Repair Stations contracts after March 2020. Authorized service, Nikon stated, will be provided at its Melville, NY and Los Angeles, Calif. facilities. "We remain committed to providing the best product support and repair services to our customers," Nikon stated. Nikon did not answer our questions about the former authorized shops' access to parts or other official services.

Chairman Ajit Pai is pressing for a public auction of wireless frequencies in the C-band spectrum (the 4GHz to 8GHz range often used by satellite companies) for the sake of 5G service. Engadget reports: This would help the FCC clear up "significant" frequency space in a quick fashion, generate money for the government and "ensure continued delivery" of existing services, Pai argued. He hoped to auction off a 280MHz slice while leaving the upper 200MHz available. An FCC official told the Wall Street Journal that the regulator hoped to bring the C-band auction up for a vote in 2020 and start the auction by the end of that year.

Satellite companies, however, might not be so happy. Industry giants like Intelsat and SES haven't been averse to selling their spectrum, but they've wanted a private auction to share the money they make and have claimed the FCC isn't allowed to take in-use spectrum without paying them. A public auction flies in the face of that. The C-Band Alliance, a group representing the satellite firms, has hinted at "protracted litigation" if the FCC pushes forward. Carriers are also of mixed opinions. AT&T, which owns DirecTV, has called C-band an "opportunity" but also wanted compensation and a "reasonable transition plan" to avoid disruptions. Verizon (Engadget's parent company and Pai's former employer) likewise wanted "appropriate incentives and protections" to ensure a quick process.

Apple is considering bundling its paid internet services, including News+, Apple TV+ and Apple Music, as soon as 2020, in a bid to gain more subscribers, Bloomberg reported on Thursday, citing people familiar with the matter. From a report: The latest sign of this strategy is a provision that Apple included in deals with publishers that lets the iPhone maker bundle the News+ subscription service with other paid digital offerings, the people said. They asked not to be identified discussing private deals. Apple News+, which debuted in March, sells access to dozens of publications for $10 a month. It's often called the "Netflix of News." Apple keeps about half of the monthly subscription price, while magazines and newspapers pocket the other half.

If Apple sold Apple News+ as part of a bundle with Apple TV+ and Apple Music, publishers would get less money because the cost of the news service would likely be reduced, the people said. As the smartphone market stagnates, Apple is seeking growth by selling online subscriptions to news, music, video and other content. Bundling these offerings could attract more subscribers, as Amazon.com's Prime service has done.

SpaceX president Gwynne Shotwell said the goal is to complete six to eight Starlink launches to get sufficient coverage to start offering the service to consumers in 2020. SpaceNews reports: SpaceX is confident it can start offering broadband service in the United States via its Starlink constellation in mid-2020, the company's president and chief operating officer Gwynne Shotwell said Oct. 22. Getting there will require the company to launch six to eight batches of satellites, Shotwell told reporters during a media roundtable. SpaceX also has to finish the design and engineering of the user terminals, which is not a minor challenge, Shotwell acknowledged.

SpaceX CEO Elon Musk has a Starlink terminal at his house and he used it to send a tweet early on Oct. 22. "Sending this tweet through space via Starlink satellite," he tweeted to his 29 million followers. "Whoa, it worked!!" Shotwell said SpaceX will need to complete six to eight Starlink launches -- including the one that already took place in May -- to ensure continuous service in upper and lower latitude bands. "We need 24 launches to get global coverage," she said. "Every launch after that gives you more capacity." SpaceX wants to offer the service to the U.S. government but is now focused on how it will serve the consumer market. Many of the details of how the service will be rolled out remain to be worked out, she said. When possible it will be offered directly to consumers following Musk's Tesla model for selling cars. In many countries the company will be required to partner with local telecom firms to offer the service. Last week, the company requested the International Telecommunication Union to approve spectrum for 30,000 Starlink satellites that would be in addition to the 12,000 already approved by the U.S. FCC.

"A comprehensive national privacy law cannot be developed overnight..." argues the chief "data ethics officer" for Acxiom, a database marketing company, in a New York Times op-ed: Still, people deserve to know who is collecting data about them, why it's being collected and the types of companies with which the data is being shared. They should also have assurances that companies collecting data have adequate measures in place to ensure security and confidentiality. That's why, until we have a national privacy law, we should pursue a national data broker registry to help consumers discover this information -- and learn the difference between good data actors and bad ones.

People who today use Facebook, Google, Amazon and Apple understand that these companies collect their data in an effort to improve their experience and to generate revenue by selling advertising. But there is less awareness of companies -- generally referred to as data brokers -- that collect, source and otherwise license information about consumers who are not their customers. The growing commercial use of data is outpacing the public's understanding....

Data-driven marketing helps businesses reduce wasteful ad spending and helps fund free or low-cost consumer products and services on the internet, including free search, email and social media platforms, as well as customized content. In many cases, it also funds the press and other channels of expression. Our business is underpinned by policies on comprehensive data governance, in an effort to ensure that data use is transparent, fair and just, that there are benefits for both businesses and consumers. We help marketers follow the golden rule of business -- "Know Your Customer" -- so that they can deliver a better experience. Unfortunately, the irresponsible actions of some individuals and organizations have cast a shadow over our industry. They violate consumers' privacy, profit from stolen data and commit fraud.

Increasing transparency -- initially through a data broker registry and ultimately through a robust and balanced national privacy law -- would help reduce the conflation of legitimate, regulated entities with unethical companies and criminals.

Developers have come to accept that, without warning, Apple can make their work obsolete by announcing a new app or feature that essentially copies their ideas. Some apps have simply buckled under the pressure. The Washington Post: Clue, a popular app women use to track their periods, has risen to near the top of Apple's Health and Fitness category. It could be downhill from here. Apple plans this month to incorporate some of Clue's core functionality such as fertility and period prediction into its own Health app that comes pre-installed in every iPhone and is free, unlike Clue, which earns money by selling subscriptions and services in its free app. Apple's past incorporation of functionality included in other third-party apps has often led to their demise. Clue's new threat shows how Apple plays a dual role in the app economy: provider of access to independent apps and giant competitor to them.

Developers have come to accept that, without warning, Apple can make their work obsolete by announcing a new app or feature that uses or incorporates their ideas. Some apps have simply buckled under the pressure, in some cases shutting down. They generally don't sue Apple because of the difficulty and expense in fighting the tech giant -- and the consequences they might face from being dependent on the platform. The imbalance of power between Apple and the apps on its platform could turn into a rare chink in the company's armor as regulators and lawmakers put the dominance of big technology companies under an antitrust microscope. When Apple made a flashlight part of its operating system in 2013, it rendered instantly redundant a myriad apps that offered that functionality. Everything from the iPhone's included "Measure" app to its built-in animated emoji were originally apps in the App Store.

Michigan is poised to become the first US state to ban online and retail sales of flavored e-cigarettes. From a report: The ban, which would last six months, comes at the direction of Michigan Gov. Gretchen Whitmer from the state's Department of Health and Human Services, according to a statement Wednesday. "Companies selling vaping products are using candy flavors to hook children on nicotine and misleading claims to promote the belief that these products are safe. That ends today," Whitmer said. The ban also covers the marketing of vaping products with words like clean, safe and healthy. Whitmer also ordered the Michigan Department of Transportation to enforce a statute that already exists, barring the advertisement of vaping products on billboards.

Huawei's next flagship smartphone will not come with Google's popular apps, such as Maps, YouTube, and Drive. The BBC reports: Google confirmed that due to a U.S. government ban on sales to Huawei, it could not license its apps to the Chinese smartphone giant. It also means the next Huawei phone will not have access to the Google Play app store, which could leave customers without access to other popular apps. The U.S. government restricted American companies from selling products and services to Huawei in May, citing national security concerns, which Huawei rejects.

Huawei is just weeks away from launching its next flagship phone, the Mate 30 Pro. It will be Huawei's first major phone launch since the U.S. restrictions were applied in May. But analysts say launching without Google's apps in Europe will be a major blow. Consumers expect to have access to all the major apps they are used to - including Maps and YouTube. Without them, Huawei's phones will seem a lot less appealing. And losing the Play Store means Huawei will need to provide another way for customers to access other popular apps such as Facebook, Twitter and BBC News. Huawei said in a statement: "Huawei will continue to use the Android OS and ecosystem if the U.S. government allows us to do so. Otherwise, we will continue to develop our own operating system and ecosystem."

Tom's Guide notes that consumers can still download apps from APK repositories like APKmirror.com. "While this is certainly a nuisance, it's far from crippling."

An anonymous Slashdot reader shares an opinion piece from The New York Times, written by Matthew Ball, former head of strategic planning for Amazon Studios. Here's an excerpt: The next 12 months will see several video services come to market, including Disney+, AT&T/WarnerMedia's HBO Max, Comcast/NBCUniversal's unnamed service, Apple TV+ and Quibi from the Hollywood executive Jeffrey Katzenberg. This increased competition will offer audiences even more high-quality series, the sorts of films that can no longer be found in theaters, interactive storytelling they've never seen before, and further improvements in navigation and advertising. Yet in this new multiplatform world, viewers will find they have to pay for a fistful of streaming subscriptions to watch all of their favorite programs -- and in the process, they'll again end up paying for lots of shows and movies they'll never care to watch. AT&T's WarnerMedia, for example, is bundling its TV channels, like TBS, HBO and TruTV, and film studios, including Warner Bros., DC Films and New Line, into its HBO Max service. Disney+ will have Marvel, Pixar and Lucasfilm, but also National Geographic, "The Simpsons" and Disney's offerings for children. And to navigate these many subscriptions, most households will want companies like Amazon or Apple to further bundle these services together into a single app -- just as they do with Dish or Xfinity. All of this bundling will eventually mean the return of a high monthly bill. Behind this bill is the cost of making high-quality programming. Although much has been said about how Netflix and Amazon have disrupted the video business, no media company has figured out how to make premium movies or TV shows significantly more cheaply. In fact, competition has driven production budgets even higher. Ultimately, these costs are paid by viewers (especially if they choose to watch without ads).

But the rise of digital video is bringing back more than just bloated bundles and bills. Many companies are returning to TV's original business model: selling you anything and everything but the television show in front of you. For decades, all TV content was "free." Networks like ABC and CBS distributed their shows free of charge because they weren't really in the business of selling audiences 30 minutes of entertainment. Instead, they were selling advertisers eight or so minutes of the audience's attention. While most digital video services do charge their viewers, their real objective is to lock audiences into their ever-expanding ecosystem. Their TV network is the ad. Amazon, Apple and Roku, for example, use their networks to drive sales of their devices, software, services and other products. For YouTube and Facebook, original movies and shows are about increasing the number of ads they serve and the prices they charge for these ads. "Even as the video industry reconstitutes with new players -- under old business models and familiar problems -- most people agree that TV has never been better," Ball writes in closing. "Consumers have more options, better shows and more diversity than ever before."

"But at the same time, weâ(TM)re entering a world in which our culture is programmed by vertically integrated trillion-dollar corporations," he adds. "This may help us escape high prices and ads in the short term, but eventually the bill will come due."

Unroll.me, a firm that helps people manage their email list subscriptions but also sells users' data for profit, has settled with the FTC after allegations of deceiving consumers, the agency said. In a press release, the agency wrote: In a complaint, the FTC alleges that Unrollme , falsely told consumers that it would not "touch" their personal emails, when in fact it was sharing the users' email receipts (e-receipts) with its parent company, Slice Technologies. E-receipts are emails sent to consumers following a completed transaction and can include, among other things, the user's name, billing and shipping addresses, and information about products or services purchased by the consumer. Slice uses anonymous purchase information from Unrollme users' e-receipts in the market research analytics products it sells. Unrollme helps users unsubscribe from unwanted subscription emails and consolidates wanted email subscriptions into one daily email called the Rollup. The service requires users to provide Unrollme with access to their email accounts.

Apple Wireless Direct Link (AWDL), a protocol installed on over 1.2 billion Apple devices, contains vulnerabilities that enable attackers to track users, crash devices, or intercept files transferred between devices via man-in-the-middle (MitM) attacks. From a report: These are the findings of a research project that started last year at the Technical University of Darmstadt, in Germany, and has recently concluded, and whose findings researchers will be presenting later this month at a security conference in the US. The project sought to analyze the Apple Wireless Direct Link (AWDL), a protocol that Apple rolled out in 2014 and which also plays a key role in enabling device-to-device communications in the Apple ecosystem. While most Apple end users might not be aware of the protocol's existence, AWDL is at the core of Apple services like AirPlay and AirDrop, and Apple has been including AWDL by default on all devices the company has been selling, such as Macs, iPhones, iPads, Apple watches, Apple TVs, and HomePods. But in the past five years, Apple has never published any in-depth technical details about how AWDL works. This, in turn, has resulted in very few security researchers looking at AWDL for bugs or implementation errors.

An activism director and a legislative analyst at the EFF have co-authored an essay arguing that the key to children's safetly online "is user empowerment, not censorship," reporting on a recent hearing by the U.S. Senate's Judiciary Commitee: While children do face problems online, some committee members seemed bent on using those problems as an excuse to censor the Internet and undermine the legal protections for free expression that we all rely on, including kids. Don't censor users; empower them to choose... [W]hen lawmakers give online platforms the impossible task of ensuring that every post meets a certain standard, those companies have little choice but to over-censor.

During the hearing, Stephen Balkam of the Family Online Safety Institute provided an astute counterpoint to the calls for a more highly filtered Internet, calling to move the discussion "from protection to empowerment." In other words, tech companies ought to give users more control over their online experience rather than forcing all of their users into an increasingly sanitized web. We agree.

It's foolish to think that one set of standards would be appropriate for all children, let alone all Internet users. But today, social media companies frequently make censorship decisions that affect everyone. Instead, companies should empower users to make their own decisions about what they see online by letting them calibrate and customize the content filtering methods those companies use. Furthermore, tech and media companies shouldn't abuse copyright and other laws to prevent third parties from offering customization options to people who want them.
The essay also argues that Congress "should closely examine companies whose business models rely on collecting, using, and selling children's personal information..."

"We've highlighted numerous examples of students effectively being forced to share data with Google through the free or low-cost cloud services and Chromebooks it provides to cash-strapped schools. We filed a complaint with the FTC in 2015 asking it to investigate Google's student data practices, but the agency never responded."

Telecommunications firms and mobile-based apps make billions of dollars per year by selling customer location data to marketers and other businesses, offering a vast window into the whereabouts of cellphone and app users, often without their knowledge. That practice, which has come under increasing scrutiny and criticism in recent years, is now the subject of proposed legislation in New York [Editor's note: the link may be paywalled; alternative source]. If passed, it is believed that the city would become the first to ban the sale of geolocation data to third parties. From a report: The bill, which will be introduced on Tuesday, would make it illegal for cellphone companies and mobile app developers to share location data gathered while a customer's mobile device is within the five boroughs. Cellphone companies and mobile apps collect detailed geolocation data of their users and then sell that information to legitimate companies such as digital marketers, roadside emergency assistance services, retail advertisers, hedge funds or -- in the case of a class-action lawsuit filed against AT&T -- bounty hunters. "The average person has no idea they are vulnerable to this," said Councilman Justin L. Brannan, a Brooklyn Democrat who is introducing the bill. "We are concerned by the fact that someone can sign up for cell service and their data can wind up in the hands of five different companies."