New York Attorney General Asks Apple and Google to Vet Third-Party Contact Tracing Apps

by

Apple and Google have been asked by New York's Attorney General to do more to prevent sensitive health data from being collected by third-party contact tracing apps.

exposure notification cartoon
According to Business Insider, AG Letitia James sent letters to both companies and urged them to impose tighter restrictions on the apps if they are to be available in their app stores, following concerns that some of the apps have not been properly vetted.

"As businesses open back up and Americans venture outdoors, technology can be an invaluable tool in helping us battle the coronavirus," said Attorney General James. "But some companies may seek to take advantage of consumers and use personal information to advertise, mine data, and unethically profit off this pandemic. Both Apple and Google can be invaluable partners in weeding out these bad actors and ensuring consumers are not taken advantage of by those seeking to capitalize on the fear around this public health crisis."

James noted that the privacy-centric exposure notification technology that Apple and Google developed isn't being used by all contact tracing apps. As such, she is urging the two companies to commit to greater oversight by only allowing apps affiliated with federal or state public health agencies to collect personal health data.

The hope is that by prohibiting third-party contact tracing apps from collecting personal data, it won't be used for targeted advertising or for identifying anonymous users.

James wrote that third-party apps should be required to delete personal health information on a rolling 14-day basis, and that the companies' respective app stores should disclose which apps were launched by governments and which are made by private developers.

"Consumers should always check with the Apple App Store or Android Play Store for information on what entity operates the app and whether the app collects geolocation information or other data," cautioned James.

According to the report, Apple and Google have until June 19 to acknowledge the Attorney General's letter.

Tags: COVID-19 Coronavirus Guide, Exposure Notification Guide

Popular Stories

AirPods Pro Firmware Feature

Apple Releases New Firmware for AirPods Pro 2, AirPods Pro 3, and AirPods 4

Thursday November 13, 2025 11:35 am PST by
Apple today released new firmware designed for the AirPods Pro 3, the AirPods 4, and the prior-generation AirPods Pro 2. The AirPods Pro 3 firmware is 8B25, while the AirPods Pro 2 and AirPods 4 firmware is 8B21, all up from the prior 8A358 firmware released in October. There's no word on what's include in the updated firmware, but the AirPods Pro 2, AirPods 4 with ANC, and AirPods Pro 3...
Read Full Article63 comments
iOS 26

iOS 26.2 Available Next Month With These 8 New Features

Tuesday November 11, 2025 9:48 am PST by
Apple released the first iOS 26.2 beta last week. The upcoming update includes a handful of new features and changes on the iPhone, including a new Liquid Glass slider for the Lock Screen's clock, offline lyrics in Apple Music, and more. In a recent press release, Apple confirmed that iOS 26.2 will be released to all users in December, but it did not provide a specific release date....
Read Full Article68 comments
CarPlay Pinned Messages

iOS 26.2 Adds New CarPlay Setting

Thursday November 13, 2025 6:48 am PST by
iOS 26 extended pinned conversations in the Messages app to CarPlay, for quick access to your most frequent chats. However, some drivers may prefer the classic view with a list of individual conversations only, and Apple now lets users choose. Apple released the second beta of iOS 26.2 this week, and it introduces a new CarPlay setting for turning off pinned conversations in the Messages...
Read Full Article24 comments
homepod mini thumb feature

New HomePod Mini, Apple TV, and AirTag Were Expected This Year — Where Are They?

Wednesday November 12, 2025 11:42 am PST by
While it was rumored that Apple planned to release new versions of the HomePod mini, Apple TV, and AirTag this year, it is no longer clear if that will still happen. Back in January, Bloomberg's Mark Gurman said Apple planned to release new HomePod mini and Apple TV models "toward the end of the year," while he at one point expected a new AirTag to launch "around the middle of 2025." Yet,...
Read Full Article116 comments
ios 26 digital id passport wallet

Apple Announces Launch of U.S. Passport Feature in iPhone's Wallet App

Wednesday November 12, 2025 9:15 am PST by
Apple today announced that iPhone users can now create a Digital ID in the Apple Wallet app based on information from their U.S. passport. To create and present a Digital ID based on a U.S. passport, you need: An iPhone 11 or later running iOS 26.1 or later, or an Apple Watch Series 6 or later running watchOS 26.1 or later Face ID or Touch ID and Bluetooth turned on An Apple Account ...
Read Full Article287 comments
Tesla Charging

Tesla Working to Add Apple CarPlay Support to Vehicles

Thursday November 13, 2025 8:31 am PST by
Tesla is working to add support for Apple CarPlay in its vehicles, Bloomberg's Mark Gurman reports. Tesla vehicles rely on its own infotainment software system, which integrates vehicle functions, navigation, music, web browsing, and more. The automaker has been an outlier in foregoing support for Apple CarPlay, which has otherwise become an industry standard feature, allowing users to...
Read Full Article283 comments
m1 chip slide

Five Years of Apple Silicon: M1 to M5 Performance Comparison

Monday November 10, 2025 1:08 pm PST by
Today marks the fifth anniversary of the Apple silicon chip that replaced Intel chips in Apple's Mac lineup. The first Apple silicon chip, the M1, was unveiled on November 10, 2020. The M1 debuted in the MacBook Air, Mac mini, and 13-inch MacBook Pro. The M1 chip was impressive when it launched, featuring the "world's fastest CPU core" and industry-leading performance per watt, and it's only ...
Read Full Article177 comments
tvOS 26 Profiles

tvOS 26.2 Adds a Useful New Feature to Your Apple TV

Friday November 14, 2025 10:02 am PST by
Starting with the upcoming tvOS 26.2 update, currently in beta, additional profiles created on the Apple TV no longer require their own Apple Account. In the Settings app on the Apple TV, under Profiles and Accounts, anyone can create a new profile by simply entering a name and indicating whether the profile is for a kid. The profile will be associated with the primary user's Apple Account,...
Read Full Article
iOS 26

Everything New in iOS 26.2 Beta 2

Wednesday November 12, 2025 3:29 pm PST by
Apple today provided developers with the second beta of iOS 26.2, which adds a few new features worth knowing about. Measure App Apple's Measure app now features a Liquid Glass design for the level, with two Liquid Glass bubbles instead of white circles. Games App There's now an option to sort games in the Games app Library by size, in addition to Name and Recent. CarPlay The...
Read Full Article64 comments
apple intelligence erroneous support list

Apple Intelligence Apparently Too Smart for M1 Macs After Listing Error

Wednesday November 12, 2025 2:49 am PST by
Update: It took a day, but Apple has now corrected its Apple Intelligence device compatibility list to show support for the earliest Apple silicon Macs. The original article follows. Apple's website is causing some confusion among Mac owners, and for good reason – its device compatibility listing for Apple Intelligence appears to have dropped support for M1 Macs. The U.S. version...
Read Full Article113 comments

Top Rated Comments

Ritsuka Avatar
Ritsuka
71 months ago

Apple should have never gotten into this absolute BS.

Now they have to live with it.

Actually what Apple needs to do is to allow alternative app stores. Remove stupid tracking hooks from iOS - idiots who want to contact trace everyone can then install apps that do it, and normal people can then ignore it.

Since when was Apple a company that tracks and traces its customers anyway? They spent decades building up a reputation for privacy just to throw it all away over the flu? ?‍♂️
Did you even spend two seconds to check how Apple and Google contact tracing works? First, it's totally local, nothing is sent to a server, and an app developer can't change the way it works. Second, an app needs a special entitlement to use it, and Apple gives it to only one per country, so there is no way for a third-party developer to use it (and use it for what, to store the contacts locally in a way they can't even be read back?). Third, it needs an actual app installed to work, so if you don't install anything it won't magically start to locally track contacts in a way no one will be able to read.

Plus on iOS Apple contact tracing API is the only way to track bluetooth contacts in background.

I would worry more about your cellphone carrier selling your phone location to everyone that asks in the USA, or people posting photos with GPS info…
Score: 19 Votes (Like | Disagree)
phenste Avatar
phenste
71 months ago

Yeah Apple totally cares about your privacy: this after opening just 3 Apps in one minute:

Forgive me, but—what is the point you mean to make here? I’m guessing (big guess) that these are ad trackers/analytics from third party apps. Those are not things Apple would be within their bounds to restrict; those are the exact ways some third-party companies make money outside the 30% ecosystem. (If I’m not mistaken. I’m asking these questions precisely because I am super ignorant to what the meaning of this message is.)

Attachment Image
Score: 6 Votes (Like | Disagree)
Tekguy0 Avatar
Tekguy0
71 months ago

Forgive me, but—what is the point you mean to make here? I’m guessing (big guess) that these are ad trackers/analytics from third party apps. Those are not things Apple would be within their bounds to restrict; those are the exact ways some third-party companies make money outside the 30% ecosystem. (If I’m not mistaken. I’m asking these questions precisely because I am super ignorant to what the meaning of this message is.)
I think Apple is within their bounds to restrict this, but they chose not to. A rule for apps for iOS 14 could be that you must use a new, built-in analytics kit, and that all third-party analytics and tracking networks (including for ads) are no longer allowed. Seeing scorecard research in that screenshot is especially scary, since it collects browsing data.
Score: 4 Votes (Like | Disagree)
Ritsuka Avatar
Ritsuka
71 months ago

Except, Apple built this right into iOS 13.5 and beyond. So if a customer want to choose not to have the tracing, their option would be stay on iOS 13.4.1, unfortunately.
That's not it works. For the bluetooth contact tracing to work you have to manually install one of the few apps (one per country) available, and manually enable it. And even when enabled, the contact list is stored locally on your iPhone, and no one will be able to access it, and the contacts are stored as alphanumeric identifier, and each phone identifier changes after 15 minutes or so, so it's completely useless for everything else.
Score: 3 Votes (Like | Disagree)
itsmilo Avatar
itsmilo
71 months ago
All this tracking spyware that is part of basically any app should be illegal or at least easy to be disabled manually.

when I see all the outgoing ad connections that apps try to send makes me cringe.
Score: 2 Votes (Like | Disagree)
Dainin Avatar
Dainin
71 months ago

I don't think the answer is going federal — keeping it local/state has many benefits and allows the opportunity to phase out per region. The issue is using a proper back end and one with a high level of data security and most important (I feel) I trust Apple/Google more than I do the government at the moment that this centralized hashed data will be dumped and not leveraged at a later date.
That is the great thing about the API, the hashes are completely worthless to keep and stored only on your phone. I do not support a centralized app that does not use the Apple/Google API.

The problem is only a few states are actually using the API, most are using draconian tracking and identity information. On top of that, even if I did use my states app (which I will not unless they use the API) it is worthless if I travel. I will get no notification if I drive across State lines or someone else drives through using a contact tracing app.
Score: 2 Votes (Like | Disagree)
Read All Comments