A couple years ago, Google came underÂ considerable fire for its Street View product, where the online services giantÂ photographed homes and other buildings in numerous countries as part of its online mapping service, as individuals said the photos invaded their privacy. Then, last year, GoogleÂ announced that, for more than three years â€” in more than 30 countries â€” it had been â€œmistakenly collectingâ€ personal data from open WiFi networks as its vehicles roamed the streets taking photos for its Street View mapping service.Â Later,Â the company admitted the data collected â€” without individualsâ€™ knowledge or consent â€” did include entire e-mails and passwords.Â The online services giant faced questions from states, and GoogleÂ reached a settlement with Connecticut over the data collection. There were international investigations and investigations by US federal agencies, as well.
Now, CNet reports more news about Google Street View concerning individuals’ privacy:
Google’s Street ViewÂ carsÂ collected the locations of millions of laptops, cell phones, and other Wi-Fi devices around the world, a practice that raises novel privacy concerns, CNET has confirmed.
TheÂ carsÂ were supposed to collect the locations of Wi-Fi access points. But Google also recorded the street addresses and unique identifiers of computers and other devices using those wireless networks and then made the dataÂ publicly available through Google.com until a few weeks ago.
The French data protection authority, known as theÂ Commission Nationale de l’Informatique et des LibertÃ©s (CNIL) recently contacted CNET and said its investigation confirmed that Street ViewÂ carsÂ collected these unique hardware IDs. In March, CNIL’s probeÂ resulted in a fine of 100,000 euros, about $143,000. […]
AÂ previous CNET article, published June 15 and triggered by the research of security consultantÂ Ashkan Soltani, was the first to report that Google made these unique hardware IDs–called MAC addresses–publicly available through a Web interface. GoogleÂ curbed the practice about a week later.
But it was unclear at the time whether Google’s location database included the hardware IDs of only access points and wireless routers orÂ client devices, such as computers and mobile phones, as well. […]
Google declined repeated requests for comment for this article over a period of more than a week. In a statement last month, the search company said only that “we collect the publicly broadcast MAC addresses of Wi-Fi access points,” which addressed only current and not past practices.