I don’t understand how they are supposed to “sell your data” if you just never use a Mozilla account and uncheck all the telemetry. Its not like they can secretly steal your data, since its Open Source.
It seems to me like just more FUD that Google is spreading to undermine our trust in free software.
The rationalization they have given is that legally, they may have been seeking data all along, as some jurisdictions define it extremely loosely.
For example, if you use their translation feature, they are sending the page your looking at (data) to a third party, which provides a benefit to Mozilla. Thats technically a sale in some laws, but most would agree that is acceptable given the user asked for it to happen.
https://blog.mozilla.org/en/products/firefox/update-on-terms-of-use/
I’m overall concerned with Mozilla, but not sure this is malicious yet. But definitely needs to be closely scrutinized.
Anything you say after this point is irrelevant. (Nothing personal, though.)
As soon as a company has to rationalise their legal back-pedalling, it is explicit evidence that they are intending to do wrong.
This will not end well.
Something to note, however, is that the new terms apply to the browser as a whole. If it was due to some of the opt-in services the browser includes (sync, account, translation, etc.), they could have specified the terms apply to those services instead.
Agree this isn’t necessarily malicious yet, but it definitely is not beneficial to users.
I love how California basically defines a sale as “exchanging things for money” and Firefox is like, “its such a craaazy world we can’t even agree on the definition of exchanging things for money out here! Some call it a ‘sale’ apparently, so if we’re gonna exchange your data for money I guess we have to call it a ‘sale’… Stupid California, changing things to mean what they’ve always meant”
Its even more broad than that, because its any exchange of data for valuable consideration. No money has to change hands, but if it benefits FF, its a sale. And the benefit could simply be “if we do this we will function correctly as a browser”.
Here’s the crux of the problem.
Mozilla went from “explicitly not malicious” to “probably not malicious yet.”
What’s next?
Yup. And it doesn’t help that they have been throwing away good will for a while now, with their crypto/AI/etc bandwagon jumping. They are still the least worst option, as I dont trust the forks either, but its getting hard to trust them.
The privacy centric way for Mozilla to have address this would have been to:
Yup, its been terribly handled. Dunno if it was driven by a panicy lawyer, but those steps would have been much better. At a minimum, that blog post should have come first.
The current intention may not be malicious, but it leaves the way open for changes that are to slip in. If they were worried about services like translation being concidered ‘sales’, which is a reasonable concern, they should have split them out of the core browser into an extension and put the ‘might sell your data’ licence on that.
Yeah, its definitely wide open for abuse now. But the California law also seems way too vague as well. What about DNS lookup? That takes a users input and transfers it to someone else, is that a “sale”? Can hardly start separating that out of the browser? Http requests? Its all users initiated, but is it a “sale” in California? Not a lawyer, haven’t a clue.
DNS is fine as the exchange has to be for “monetary” or “other valuable consideration” to be considered a sale. The issue seems to be that Mozilla were profiting off of things like adverts placed on the new tab page, and possibly from the translation service too.
I’m not a lawyer, but “other valuable consideration” seems very broad. For DNS, getting the returned IP address is valuable. Ditto for http, getting the returned webpage is valuable?
I only suggested the translation thing because it (imo) fell under a “transfer of data for value provided”, which makes it a sale?