There are lots of reasons to want to shut off your car’s data collection. The Mozilla Foundation has
called modern cars “surveillance machines on wheels” and ranked them
worse than any other product category last year, with all 25 car brands they reviewed failing to offer adequate privacy protections.
With sensors, microphones, and cameras, cars collect way more data than needed to operate the vehicle. They also
share and sell that information to third parties, something many Americans don’t realize they’re opting into when they buy these cars. Companies are quick to flaunt their privacy policies, but those amount to pages upon pages of legalese that leave even professionals stumped about what exactly car companies collect and where that information might go.
So what can they collect?
“Pretty much everything,” said Misha Rykov, a research associate at the Mozilla Foundation, who worked on the car-privacy report. “Sex-life data, biometric data, demographic, race, sexual orientation, gender — everything.”
It doesn’t mean they necessarily do, but they’re leaving the car door open.
“The impression that we got — and this impression is supported by the official documents of the brands — is that they are trying to be a bit more like Big Tech,” Rykov said. “It looks like most of them are not entirely sure what's going on there.”
The data they may or may not collect can cause real trouble. It can
notify your insurance company that you braked too hard or sped up too fast. Car companies can share your info with law enforcement without your knowledge. A domestic abuser could use it to track your whereabouts. It doesn’t take a lot of imagination to see this heading south.
I wanted to turn off data collection on my car because it’s creepy and I thought the option would be simple. It turns out that shutting off data collection and figuring out what’s been collected is much more difficult than it would seem. I know because it took me — a reasonably informed and technologically savvy person — a month to finally do so.
I’m in good company.
“It’s comically difficult,” Thorin Klosowski, a security and privacy activist at Electronic Frontier Foundation, who’s
written about how to do just this, told me. “I do this for a living and I am not 100% positive I have gotten everything correct, which is ridiculous.”
…