I doubt most of the companies tracking people with their phone even bother trying to get at that data since finding your identity is so easy when there is some tracking in almost every app.
It seems like a dystopian system, that we litterely can not hide from our governments without turning off our smartphones
That’s basically it.
However SIM cards that aren’t tied to people usually ends up scenarios like the US have where SIM swap attacks are common and you’ve a LOT of identity fraud. Note that we’ve an increasing number of services sending information and validation codes via SMS like banking apps and whatnot and you don’t secure the SIMs anyone will be able to get a replacement SIM because “I got my phone stolen” and you’ll have zero security.
I recently heard the episode of darknet diaries about it. I would think a simple PIN-Code that is mandatory would solve this issue? Or a letter send to the owner of the SIM?
Both solutions would make it safer, but not impossible to get around. Someone can get the PIN Code in some more analog (getting the paper with the PIN) or digital way (interception with physical access to a phone) and getting into the persons mailbox.
Even if those attacks wouldn’t happen there’s always the chance of something more complex like calling the carrier support and saying you’ve change your address and then a week later ask for a new SIM. It can go wrong very quickly, asking for a govt ID is the easy way to solve it all.
To be fair we can have a better solution, we simply force the fucktards that run banks and other places who send SMS codes to use a simple 2FA method without bullshit apps, just provide a QR code and live with it.
I think it’s actually the other way around. BECAUSE phone numbers are linked to our accounts and identities, it makes us vulnerable to SIM swapping. They should only be used for calling and texting people, nothing more. But nowadays we need to link our personal details to them, our accounts, which introduces this vulnerability because then it creates this incentive for an attack
If you live in a country where carriers are required to identify phone numbers and do identity checks for SIM swaps they’ll never, ever, allow someone to get a SIM with your number without providing valid govt ID. That’s why it solves the issue and its safe. Just look at the numbers / stats and you’ll find that the SIM swapping attacks happen on countries where no identification is required.
Honestly, it would just be nice if someone made a mobile computing device that wasn’t phone-capable at all. It is outdated functionality to have just one or two services use a totally separate protocol from everything else.
The ones I had which allow mobile data connections also allow use as a phone. Not to mention that most tablets are the wrong size to carry them around all the time.
The thing is, even if you would not need to link your identity to your sim card, it would still be trivial to identify who you are if you use your phone like a normal human. Thanks to cell towers.
But yes this is just an excuse and does not stop much crime. If you want to break into a bank or hurt someone just leave your phone at home and you already circumvented this measure.
It’s even simpler than that; you probably pay for your SIM credit online / with a card, which is much easier to tie to a person than using cell towers for tracking.
Considering that, but the doctor needs the report so my condition can be treated in a proper way. I need to contact more distributors and see if there are any “customer privacy conscious” kind, but I’m not getting my hopes up.
I’m not familiar with the companies mentioned, but have you tried talking to the doctor or the clinic? They may be able to provide you with better guidance, or tell you about other machines that are compatible with your treatment plan. Even if they don’t know about the privacy aspect, that might give you a shorter list to follow up on.
My guess (or hope) is that this is the option that the average person finds convenient, which is why the doctor recommended it. There should be other options that the doctor / clinic knows about, especially because an IOT CPAP machine is a fairly new thing.
Doctors modify treatment plans fairly often, even for things like patient comfort, and bringing this concern to their attention could also change what they recommend to future patients.
Personal thoughts unrelated to your case: This is a growing concern with healthcare technology and I think we need more attention on the harms. “Your insurance company will use it against you” is something that most people will understand.
Sounds like he wants to air that he’s willing to not sleep well for the sake of… People not knowing he doesn’t sleep well… I’m not losing any sleep over this, I hope Mr. “People can’t know I don’t sleep well” doesn’t either.
Also the idea of privacy while posting to a public forum. Er but by the grace of god go I.
The nature of his medical condition isn’t relevant here. It could be his blood pressure, heart beats, whatever that makes an insurance company charge a premium on that poor sucker.
I get your message, but I was not referring to the machine. I was referring that the what kind of data logged by the machine didn’t matter in the context of privacy.
It’s not the collected data itself that’s the problem you dipshit. Don’t you know that distributors often make customers sign contracts at lease or purchase for warranty and tie that customer data along with statistics? You must be fun at parties.
So what? I post concerns about user privacy on a privacy forum and this is what I get? A gatekeeping comment about how my concerns are overblown? Way to promote the platform.
Too expensive. There’s an import tax I have to pay if I ordered anything abroad, and the devices price in general are high enough to hurt my wallets even more. Older brands can’t be acquired from stores, and “not supported” if I bought a used one, I was told.
Here’s something tangentially related that makes it difficult to find older options, the support. In the US a piece of medical device has to be supported for 7 years. My hospital has these bladder scanners that are in quite a few departments, regular fixture in hospitals (ultrasounds). Jan 1 2024 was when our came up on the 7 year mark. To do preventative maintenance calibration required logging on their server, guess what’s no longer accessible? So to stay in compliance all of us in the biomed department has to figure out how to get new ones to replace the 10 $11k each paperweights we have now.
I found some older models around my area, but are all used and not very clear on what functions are still supported. I wish companies were more open about those things.
You can put an SD card in the side and potentially use OSCAR to read the data with the ResMed Airsense 11.
My insurance, if in a poor cell area, would let me ship the data to them on an SD card. I had to if I didn’t want to pay full sticker price for the machine.
I have and use a resimed that does the phone home option. Once my doctor got what he needed I put it in airplane mode.
Distributor used the stats while I was reporting to call me and tell me I need new filters or other parts. I lol’d and bought them online for way cheaper. They stopped trying even before the doctor got all the data he needed.
Also, AFAICT it’s only data out, so I’m not worried about some exploit being delivered to the machine.
Final thought: I work in med tech. We have better security than credit agencies because we get fined more if we screw up. Personal data leaks are so common no one even cares anymore, but leaking someone’s medical info will shut a company down. You are likely safe, but ultimately never as safe as a “dumb” machine would be except they just don’t exist anymore.
Actual final thought: you will be amazed at how much better you feel every morning after actually sleeping instead of the dirty pseudo sleep you’re currently getting.
I thought it was data out only too, but at my sleep apnea orientation was told (and I double checked that they really meant it) that they could also tweak settings remotely. ResMed. Always possible that they had misunderstood something too, of course.
Learn more about the machine and do your own management as well. It’s very easy to get into the machine settings to control your air flow, temperature settings, and so on. Take the time to learn what the data from the machine means.
I currently use a Resmed Airsense 10 and can’t recommend it enough; best sleep I’ve ever had.
Just avoid anything by Philips Respironics. They’ve been messing around hard, class action suits and recalls and haven’t really made anyone whole from the debacle (myself included, I came out of pocket to replace my old Dreamstation).
Yes, I read about the recalls. In fact the local distributor that used to deal with Phillips had stopped doing it for the same reason. Thanks for the warning.
Hey, check out the resmed airsense 10 autoset card-to-cloud version. It’s a lot cheaper and has no cellular connectivity, no wireless module. I just found out about it tonight, thinking of buying one as a backup machine. Looks like it ticks all your boxes.
CPAP.com has a starter bundle for it right now for $400.
Years ago the predecessor to Oscar didn’t support BMC devices, and doesn’t look like it’s changed. Yuwell isn’t listed either. Otherwise would be great. Maybe just don’t connect one of the more established ones?
Search through your settings for a “Quick Pair” or “Fast Pair” option. Turn it OFF. Do not leave it turned on except during times when you’re wanting to use a known device you’ve bought new that supports the feature.
Turn the feature off when not setting up new devices to work with other devices.
For anyone running a ROM based very closely on AOSP, the ability to disable Fast Pair was sadly not built into the OS until Android 14
Before Android 14, it is possible that Google has backported this setting to your device using Play Services. It can be found under Google Settings, Devices and sharing, Devices, and “Show Notifications”
That’s just how it is. If you try hard enough everything can be spoofed. You can also try guessing someone’s password and creation date of an account. This is not the issue here.
Email (on domains without DKIM and SPF at least) can be spoofed so easily, you could literally do it with on-board tools and a few lines of typing though. It is literally just sending an email that has your email address in the From header.
In terms of domains not really. Only the free-mailers use domains by one of those. The corporate users still need to set up their DNS properly for those technologies even if they use one of them as a mail hoster.
Why would OP contact OPPO using a corporate email?
It’s extremely likely that they don’t have their own domain since it’s very uncommon for personal usage. Some absolutely do but they are in the minority.
Of course custom emails need to be set up properly, otherwise all mails would just go to spam.
it’s not illegal to put account deletion behind a login at all. Its also legal for them to request identification.
However if you request data deletion and they have no valid exception to avoid doing that they must comply, it doesn’t matter if they have a mechanism for deletion that you can use, they have to still delete the data even if you don’t press the “delete account” button.
you can file a complaint with your countries regulatory departments but if they refuse to press the delete account button for you, there’s not much else you can do outside of that.
privacy
Oldest
This magazine is from a federated server and may be incomplete. Browse more on the original instance.