Trackers

Originalcahummer

Total newbie please be kind
In my life before Graphene OS, I used Duckduckgo to block app trackers being sent by my apps. Starbucks was expectedly a huge culprit so I'll use it for an example app. In Graphene, I set up a "google user"for maps and Starbucks. I was traveling at the time so it made sense. Now, it's a pain to switch just to order coffee.
My questions...can apps still send trackers in Graphene? What are the implications of putting an app like Starbucks in my main user?
Thanks
BTW: I like coffee and Starbucks is my only ok choice where I live. In an ideal world it wouldn't be my first choice :(

de0u

Originalcahummer Can apps still send trackers in Graphene?

There is no magic privacy shield that can stop a privacy-invasive app from sharing information you provide with the app authors if using the app requires communicating with the app's servers. So GrapheneOS is not such a shield.

If it is possible to state which specific information you are hoping to conceal from Starbucks while using their app, perhaps people here can offer advice. For example, what is meant by "send trackers"?

de0u

Originalcahummer P.S. You could try running the DDG blocker on GrapheneOS if you want. I think many users of this forum use Rethink DNS instead.

But as time goes by more and more apps are checking for blockers, and some are just sending the data to their home servers for analysis instead of going through third-party sites. Giving a network-connected app information about you pretty much means trusting the app authors not to abuse (or leak) the data.

(Personally, when I'm in a Starbucks I don't use their Wi-Fi, my Bluetooth is off, and I pay cash.)

Originalcahummer

My apologies for being too vague. According to the Duckduckgo blocker.... In the case of Starbucks, their app attempted to send information gathered from my phone. This information included, device make and model, location, screen resolution, email, os build, language, network connection details ...etc. This information was destined for companies called New Relic, Urban Airship, and Apptentive. Other apps send info to Facebook or Amazon or Adobe.

de0u

Originalcahummer In the case of Starbucks, their app attempted to send information gathered from my phone. This information included, device make and model, location, screen resolution, email, os build, language, network connection details ...etc. This information was destined for companies called New Relic, Urban Airship, and Apptentive.

You could try the DDG blocker or Rethink DNS. But if SBUX really wants the information to go to those companies they can just relay it through their servers.

And maybe their app already has a blocker detector and has already been bouncing the information to those companies through their servers every time DDG blocked it.

When I'm in a Starbucks I don't use their Wi-Fi, my Bluetooth is off, and I pay cash. On the other hand, maybe their security cameras are doing gait analysis on each customer!

pit2p

You may wanna consider getting a coffee machine at home ☕☕☕

zynex

You can use apps like App Manager (from F-Droid) to disable known trackers, I have blocked almost all on my phone. But it's still much up to you to handle your OPSec for this. There is no silver bullet for privacy unfortunately. Then you can use AdAway to block a lot of stuff to. But if you are logged in to services like Discord and Snapchat, you are still traceable to some extent (Device ID etc).

nunyo

Do you have to use the app? Can you use Vanadium and order online?

nunyo

I use Next DNS to block traffic to those sites you mentioned in an earlier post. However, like another used pointed out, if the app wants to sell your data bad enough, they can sell directly from their own servers.

I'm counting on some apps to "give up" and be happy enough with the data they can exfiltrate via those 3rd party trackers. Maybe I'm getting "some" benefit.