this post was submitted on 30 May 2024
474 points (99.8% liked)

Privacy

32109 readers
853 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
 

ASUS rolled out an update to its firmware (3.0.0.6.102_34791) that now requires users to be over the age of 16 and to send a slew of metrics and data back to ASUS. If you do not agree or do not check the box to verify you are 16y or older, you cannot use the router. At this time, I’m not sure if ASUS has meant to disable the router for anyone under 16 or if it’s a bug.

You can opt out at any time but lose access to a slew of features:

Please note that users are required to agree to share their information before using DDNS, Remote Connection (ASUS Router APP, Lyra APP. AiCloud, AiDisk), AiProtection, Traffic analyzer, Apps analyzer, Adaptive QoS, Game Boost and Web history. At any time, users can search the contents of the terms at this page or stop sharing their information with other parties by choosing Withdraw.

Moreover, ASUS disables automatic firmware updates and worse, all security upgrades unless you opt into the data sharing. Security upgrades perform the following:

Security upgrade incorporates security measures that continuously update its security file and scans to protect against malware, malicious scripts, and emerging threats in order to secure the router and ensure system stability. Some upgrades addressing important security issues or meeting legal/regulatory requirements will still be downloaded and installed automatically, even if "Security Upgrade" is turned off.

Edit: I have personally contacted their CEO's office, but if others would like to voice their disapproval as well, here is a link: https://www.asus.com/us/support/article/787/

you are viewing a single comment's thread
view the rest of the comments
[–] DmMacniel@feddit.de 32 points 5 months ago (1 children)

Because they aren't legally allowed to spy on minors they add this shit to bypass it?

[–] ultratiem@lemmy.ca 13 points 5 months ago (1 children)
[–] fluckx@lemmy.world 16 points 5 months ago (1 children)

Is the train of thought that if the adult approves they can harvest data from minors regardless? It harvests data from anybody using the internet, not just person handling the settings. It doesn't seem legal that the data harvest agreement binds all users in a household rather than the one managing the settings?

Is that legal in Europe? is it legal to suddenly semi brick a device if you dont allow them to data harvest? Is it really considered giving consent freely when the device you paid $$ for suddenly no longer does 90% because you disagree with sudden data harvest practices?

I can understand a feature not working because you disagree on sharing something. E.g: can't tell you which pizza place is near you if you dont share your location.

But this? I hope it's illegal and they get sued into oblivion for this. This is super invasive.

[–] ultratiem@lemmy.ca 5 points 5 months ago (1 children)

I think it’s literally just legalize to appease law makers with regards to collecting info from a minor. That’s typically a no-no in NA. If you lie and click the box but you’re 15, that’s on you. There isn’t any legal recourse if someone just lies. I’m totally ok not needing to send anyone “proof” of my age for anything on the net (this, porn, NSFW, etc,).

[–] fluckx@lemmy.world 7 points 5 months ago

But that's the point. You, the 15 year old, never click or see the box. Your data is harvested because somebody somewhere else agreed to it.

It's like giving any website the right to farm your data because somebody else on the same shared IP clicked accept all.

I'm also totally okay not having to send any identity data over the net. I fully agree there. It's just their standpoint of "let an admin click it and we can farm everybody's data behind that device" seems like a very unstable legal standpoint.

Then again. I'm not a lawyer and the law doesn't work based on how lawful i feel something is or should be.