Hot topics

80% of apps lie about data handling: Are Apple's privacy rules too relaxed?

NextPit Apple iPhone 13 test
© nextpit

Read in other languages:

Apple's app tracking transparency should make it easier for Apple users to see which apps are collecting personal data. That's because Apple introduced accompanying charts in which developers have to indicate what kind of data they collect. However, a German researcher's analysis now shows that many of these disclosures are misleading. However, according to researcher Kollnig, the problem lies neither with Apple nor with developers.


  • Analysis shows: 80% of the apps studied that claimed not to pass on personal data did so after all.
  • According to researcher Konrad Kollnig, the problem is app libraries that automatically forward user data.
  • Responsibility, therefore, lies with large corporations such as Google.
  • This may cause problems with existing data protection laws in Europe.

Along with app tracking transparency, Apple launched an attempt to make the collection of personal data more transparent in 2021. Since then, if developers want to make their apps available for download in the AppStore for iPhones and iPads, they must state whether the app collects or forwards user data. However, the analysis by researcher Konrad Kollnig for Netzpolitik shows that the calculation does not add up in the end.

As part of his doctoral thesis, Kollnig examined 1,682 randomly selected apps, 373 of which claimed not to collect any personal data. The researcher launched the apps in his experimental setup and then examined traffic through a man-in-the-middle proxy. So he inserted himself between an iPhone 8 running iOS 15.2 and the servers to see where his usage data ended up. The result: 80% of the apps that said they didn't forward personal data did.

The problem is app libraries - and the GDPR.

According to Kollnig however, the responsibility does not necessarily lie with the app developers. According to Netzpolitik, they rely on app libraries - comparable to prefabricated building blocks for construction - for development, which they can't really view themselves. And the tracking code is hidden in these libraries, says Alexander Fanta for Netzpolitik. In return for using these libraries, developers receive revenue, which companies like Google, in turn, utilize for personalized advertising.

apple app store privacy data tracking
This is what App Store application sheets will look like, with information about how your data is collected and used / © Montage: NextPit / Illustrations: Apple

So while developers are in a bit of a vulnerable position and Apple relies on their information, the need for action lies with the corporations that offer app libraries in a non-transparent manner.

In Europe, such business practices violate the GDPR (General Data Protection Regulation), a set of laws and regulations that protect the privacy rights of users. Kollnig sees an opportunity here to improve data protection for individuals. For a change, "existing EU data protection law must be consistently implemented in practice," Netzpolitik quotes Kollnig at the end of the report.

What do you think about the results of the analysis? Does it worry you? Would you like to see something similar to the GDPR in the US? 

The best camera phones to buy in 2024

  Editor's Choice The Best Android Alternative The Best Camera iPhone The Best Camera Under $1,000 The Best Camera Under $600 The Best Camera Under $400 The Best Camera Foldable
Image Google Pixel 8 Pro Product Image Samsung Galaxy S23 Ultra Product Image Apple iPhone 15 Pro Max Product Image Google Pixel 8 Product Image Google Pixel 7 Product Image Google Pixel 6a Product Image OnePlus Open Product Image
Review: Google Pixel 8 Pro
Review: Samsung Galaxy S23 Ultra
Review: Apple iPhone 15 Pro Max
Review: Google Pixel 8
Review: Google Pixel 7
Review: Google Pixel 6a
Review: OnePlus Open
nextpit receives a commission for purchases made via the marked links. This has no influence on the editorial content and there are no costs for you. You can find out more about how we make money on our transparency page.
Go to comment (2)
Benjamin Lucks

Benjamin Lucks
Head of Editorial DE

Ben has been working in tech journalism since 2018, was a freelancer in the middle of the CoVid-crisis and has been full-time at NextPit since November '20. Since then he has tries to find the right mix between professional competence, humor and fresh perspectives in reviews and texts.

View all articles
Liked this article? Share now!
Recommended articles
Latest articles
Next article
Write new comment:
All changes will be saved. No drafts are saved when editing
Write new comment:
All changes will be saved. No drafts are saved when editing

  • 1
    Therese Johnsen Jan 25, 2022 Link to comment

    Most of the applications collect a big part of your data, but there are still some ways to avoid total surveillance. Not everyone want to share every step, so the idea of application providing full anonymity gains another sense. I’m not sure if all of them really keep your data safe, but Utopia p2p really does. If I’m not mistaken, it was launched about 4 years ago and never faced any privacy scandals. Moreover I hadn’t seen any negative reviews.

  • 49
    storm Jan 21, 2022 Link to comment

    The fact you can't trivially firewall any or all apps of you choice, including OS services, on iOS or Android is highly indicative of the kinds of data fishing going on.

    Zois Bekios Zannikos