Difference between revisions of "Dating platforms"

From Gender and Tech Resources

 
(15 intermediate revisions by 2 users not shown)
Line 1: Line 1:
 +
 
== What are dating platforms? ==
 
== What are dating platforms? ==
  
Dating platforms are pages or applications oriented to facilitate meeting and encounters with other people, sometimes with the purpose of finding a partner or engage into sexual encounters. Usually these services are databases that collect information from users through a profile that can contain personal data, images, locations. There are many types of dating platforms, and all have different interfaces and features. Some are free and others offer payment options which in some cases enlarge the possibility to view more profiles. Sometimes, the use of free platforms implies that users that no not provide a lot of personal data get restrained in their possibilities to view and access other profiles.  
+
Dating websites and apps are widely used, but can often put their users at risk. Dating websites and apps collect large amounts of highly sensitive information from their users - consciously in some cases, for example age, physical characteristics and photos, and in some cases unknowingly, for example geo-location to show people nearby. This guide covers the basic issues you should be aware of when you use a dating website or app.
 +
 
 +
Dating platforms are pages or applications oriented to facilitate meeting and encounters with other people, sometimes with the purpose of finding a partner or engage into sexual encounters. Usually these services are databases that collect information from users through a profile that can contain personal data, images, locations. There are many types of dating platforms, and all have different interfaces and features. Some are free and others offer payment options which in some cases enlarge the possibility to view more profiles. Sometimes, the use of free platforms implies that users that no not provide a lot of personal data get restrained in their possibilities to view and access other profiles.
  
Broadly speaking these platforms are divided into two types: those that work through matching and those that focus on dating. "Matching" platforms seek to link profiles of users that are compatible, so they request a large amount of information about their preferences, customs, personal characteristics, hobbies, social status, etc. Platforms that concentrate on dating do not request so much personal and identity information because they focus more on the physical aspects and the immediate encounter between two persons. In both cases, platform's databases can be organized through users 'preferences (who choose other users) or algorithmically, based on the users' registered criteria.
+
Broadly speaking these platforms are divided into two types: those that work through matching and those that focus on dating. "Matching" platforms seek to link profiles of users that are compatible, so they request a large amount of information about their preferences, customs, personal characteristics, hobbies, social status, etc. Platforms that concentrate on dating do not request so much personal and identity information because they focus more on the physical aspects and the immediate encounter between two persons. In both cases, platform's databases can be organized through users 'preferences (who choose other users) or algorithmically, based on the users' registered criteria.
  
 
There are platforms that work as web pages and others like mobile phone apps. Some even combine both options. The expansion of these platforms through mobile apps has been a supplement to the services previously offered through websites, and has made the interaction with those platforms (and their users) constant, emphasizing a lot in their geolocation.
 
There are platforms that work as web pages and others like mobile phone apps. Some even combine both options. The expansion of these platforms through mobile apps has been a supplement to the services previously offered through websites, and has made the interaction with those platforms (and their users) constant, emphasizing a lot in their geolocation.
Line 9: Line 12:
 
==  Privacy policies of dating websites and apps ==
 
==  Privacy policies of dating websites and apps ==
  
Privacy policies change and evolve over time! That is to say that when accepting the terms of use and privacy policies of a platform does not ensure that those remain always the same. It will be necessary to review these periodically as many platforms do not inform their users about changes in their policies.
+
Dating website and apps frequently change their privacy policies and often without informing their users. If you've joined one or more dating websites or apps check the privacy policies regularly.
Unfortunately it is difficult to generalize with respect to the privacy policies of these platforms. Many platforms handle the users' personal information without encrypting it, so it can be easily retrieved by third parties. But even, in general, it is the same privacy policies that state that the information entered in the databases can be accessed by third parties.
+
  
La mayoría de estas plataformas se vuelven propietarias de las imágenes que se comparten, así como de la información personal que se ha configurado en el perfil. Esto incluso una vez cerrada la cuenta, por lo que hay que tener muy claro qué datos queremos compartir en estos espacios puesto que parece no haber vuelta atrás.
+
When you check the privacy policy of a dating webisite or app you should check for these issues in particular:
Finalmente, para poder conocer cada una de las plataformas en términos de privacidad habría que hacer un ejercicio de limpieza textual como el análisis de distintas redes sociales que se ha hecho en el proyecto myshadow:
+
https://myshadow.org/lost-in-small-print
+
  
 +
Data Storage - many websites store sensitive data unencrypted so third parties can easily access it. Many dating services will also state that the data will be shared with third parties
  
== Informaciones solicitadas por las plataformas ==
+
Intellectual property: Many dating services will claim ownership on any images uploaded and often the data entered when configured to their system.
  
=== Género y prácticas sexuales ===
+
Account deletion: Many dating services will not commit to removing all your data when you close or delete your account.
  
Muchas de estas plataformas obligan a modular una opción de género, géneros que muchas veces son excluyentes entre sí (sólo puedes ser hombre o mujer). Si es para homosexuales, o para lesbianas, siempre se solicita una identidad de género, casi siempre binaria.
 
Gran parte de estas plataformas son utilizadas para intercambios y contactos entre personas LGTBI, y siendo que en muchos casos estas prácticas son ilegales, prohibidas o perjudicarían a la usuaria en caso de convertirse en información pública, resulta muy delicado que los datos compartidos en las plataformas sean susceptibles de conocerse. El género y la opción sexual es en sí mismo para mucha gente información sensible.
 
  
 +
== Information requested by the platforms ==
  
=== Imagen y avatares de redes sociales ===
+
=== Gender, sexual orientation and practices ===
  
Varias plataformas de encuentros solicitan fotos (a veces a través de perfiles de otras redes sociales, como Facebook) como requisito de participación. Sin compartir imágenes no será posible en algunas de ellas acceder a otros perfiles o ingresar a las bases de datos que permiten ponerse en contacto.
+
Many of these platforms require you to enter a binary gender (you can only be male or female). If they are oriented towards gay men and/or lesbians, a gender identity is always requested, almost always offering only binary options.
Esto también sucede porque muchas plataformas usan las credenciales por ejemplo de Facebook para poder abrir un perfil. En ese sentido, no es claro cuánta información del perfil de la red social las plataformas de encuentros pueden llegar a manejar. Varias de las apps incorporan mucha más información a partir de Facebook de lo que la usuaria puede haber sido informada en el proceso de logueo, como por ejemplo videos compartidos desde otras plataformas comerciales (como Youtube o Vimeo), o páginas que ha marcado con “me gusta”
+
  
Más información sobre este tipo de riesgos:
+
Any information on gender and sexual choices is of course highly sensitive, particularly in contexts where LGBTQI prcactices are illegal or would harm the user if publicly known.
https://arxiv.org/pdf/1505.02906v1.pdf
+
  
 +
=== Images and avatars ===
  
=== Geolocalización ===
+
Several dating platforms require photos (sometimes through profiles of other social networks, such as Facebook) to join or to access other profiles.
  
Muchas plataformas, especialmente si son aplicaciones para el teléfono móvil, solicitan conocer tu ubicación para permitir el encuentro con otras personas. Esto tiene su lógica: como uno de los objetivos es facilitar encuentros casuales e inmediatos, es necesario saber quién está cerca en tiempo real, quiénes pueden estar alrededor en ese momento exacto en el que se consulta la app. Por lo tanto en varias de estas aplicaciones, las usuarias de alguna forma dependen de que se muestre la distancia en relación a otros perfiles, y esto mismo es lo que las convierte en potencialmente expuestas al riesgo de ser localizadas por alguien con quien no se había planificado un encuentro. A pesar de esto, la mayoría de las usuarias de estas plataformas basadas en los encuentros casuales e inmediatos comparten su localización en tiempo real a diario con estas apps. Esto podría permitir incluso determinar la dirección de la usuaria, rastrear sus movimientos e incluso acosarla durante el día.
+
Many platforms also use accounts from other services, such as Facebook, to create a profile. For these services, it is often not clear how much profile information is accessed from other services. Some apps incorporate much more information from say Facebook than the user may have been informed about when signing up, for example videos shared in other commercial platforms (such as Youtube or Vimeo), or pages that have been marked with likes.  
La información de la localización junto con otras informaciones usualmente compartidas en estas plataformas tales como altura, peso, edad, hábitos y costumbres, pueden servir para ubicar posibles víctimas.
+
You can read more on the [https://arxiv.org/pdf/1505.02906v1.pdf privacy risks on the mobile dating apps].
Estos datos pueden ser usados tanto por la vigilancia “legal” (de gobiernos, cuerpos policiales, estamentos del poder judicial, entre otros), o con propósitos ilegales y maliciosos (crimen, robo, asalto sexual, entre otros). Toda la información obtenida con estos propósitos podría ser utilizada con la finalidad de extorsionar a la usuaria.
+
  
Más información en el artículo “Privacy Risks in Mobile Dating Apps”:
+
=== Geolocation ==
https://arxiv.org/pdf/1505.02906v1.pdf
+
  
De lo anterior se desglosa que la vulnerabilidad de las usuarias al compartir su información personal en estas plataformas se expande al terreno físico. Muchas apps permiten detectar la ubicación exacta a partir de la triangulación de un perfil (a veces incluso teniendo desactivada la opción de geolocalización exacta), facilitando que esta persona pueda ser encontrada y atacada.
+
Many dating websites, and especially dating phone apps, access your location so you can meet other people nearby in real time. This may be the desired outcome, but sharing detailed and current location data could put people at risk of being located by anyone. This information could potentially reveal a person's physical address, their movements and routine. Many apps allow you to detect the exact location from the triangulation of a profile (sometimes even when the exact geolocation option is turned off), making it easy to find a person behind a specific profile.
  
Un estudio comparativo de tres aplicaciones de celular al respecto: https://arxiv.org/pdf/1604.08235v1.pdf
+
The data from online dating services can be used both for "legal" surveillance (governments, police forces, judiciary among others), or for illegal and malicious purposes (harassment, crime, robbery, sexual assault among others). All the information obtained through these platforms could also be used for the purpose of extorting the user. You can read more information on these risks in the [https://arxiv.org/pdf/1505.02906v1.pdf following article  “Privacy Risks in Mobile Dating Apps”].
  
 +
[https://arxiv.org/pdf/1604.08235v1.pdf You can read a comparative study of three mobile dating apps here.]
  
=== Otras informaciones que pueden extraer estas plataformas ===  
+
=== Other data that can be extracted ===  
  
Hasta ahora se habían enunciado vulnerabilidades relacionadas con autoridades o crimen, sin embargo a través de la infrormación de las usuarias que circula a través de estas plataformas también terceras personas con fines publicitarios pueden acceder a ella.
+
Sensitive personal data in dating websites and apps is not just of interest to legal authorities and criminals, however, it can also be accessed by advertisers and data brokers.
  
En prácticamente ninguna de estas plataformas los datos son encriptados, por lo tanto terceros podrán acceder e interceptar informaciones relativas al aparato del usuario, su sistema operativo, la aplicación que está usando, su ubicación, el proveedor de internet, los detalles de tu tarjeta de crédito, entre otros.
+
Because virtually all dating services do not encrypt their data , third parties are able to access and collect information such as a user's device information, its operating system, the installed applications, its location, its internet provider, even sometimes the user's credit card details and potentially much more.
  
El hecho de que muchas plataformas de citas estén vinculadas a otras aplicaciones y redes sociales provoca que terceros puedan utilizar tus datos para incrementar el conocimiento sobre ti y saber “qué necesitas”. Un ejemplo podría ser la relación posible entre aplicaciones de fertilidad y ciclo menstrual y aplicaciones de citas. A través de conocer tus ciclos hormonales, terceros podrían enviarte información publicitaria o contactos “adecuados” para el momento del ciclo en el que te encuentres.
+
By linking with other services, dating websites and apps can enable other companies to cross reference your personal data  with other services to build a more detailed social profile of you to understand "what you need".   An example could be the possible relationship between fertility and menstrual applications and dating applications; through knowing your hormonal cycles, third parties could send you advertising information for a specific point  in your menstrual cycle.
  
Por otro lado, es posible que tu información sea utilizada para extorsionarte. Las plataformas a veces no pueden controlar en sí mismas lo que ponen a disposición de tu información. Un caso es cuando Tinder estuvo compartiendo más información de la que debía: https://www.theguardian.com/technology/2014/feb/20/tinder-app-dating-data-location-sharing
+
Furthermore, it is possible that your information could be used to blackmail you. Platforms sometimes can not control what they make available. One example of this was Tinder [https://www.theguardian.com/technology/2014/feb/20/tinder-app-dating-data-location-sharing more information than they  should, you an read about it here].
O el caso de Ashley Madison, cuyos usuarios fueron extorsionados a cambio de no publicar su información personal y específicamente el hecho de haber utilizado una plataforma de citas:
+
There was also the hack of the Ashley Madison extra-martial dating website. Users were blackmailed to prevent their personal data and activities on the website being published, [http://money.cnn.com/2015/08/24/technology/ashley-madison-hack-in-2-minutes you can read more here].
http://money.cnn.com/2015/08/24/technology/ashley-madison-hack-in-2-minutes
+
  
 +
== Erasing your profile ==
  
== Borrar tu perfil ==
+
Although many dating services offer the possibility of deleting your profile, they often do not ensure the removal of the information immediately and many will keep that data indefinitely. In general, platforms place the responsibility for privacy onto the users themselves as they are generally very unclear about the limitations of their own privacy policies.
  
A pesar de que muchos servicios de este tipo ofrezcan la posibilidad de borrar tu perfil, no aseguran remover la información inmediatamente y muchas se la quedarán para siempre.
+
In the current state of privacy policies (which could change at any time), developers should consider the different types of sensitive data being collected and stored on mobile devices that could be subject to unauthorized access (whether physical or remotely), and evaluate how this data could be more protected.
En general las plataformas desplazan la responsabilidad en torno a la privacidad a las usuarias, ya que tampoco son muy claras en relación a las limitaciones de sus políticas de privacidad.
+
El actual estado de las políticas de privacidad (estado que podría cambiar en cualquier momento), los desarrolladores deberían considerar los diferentes tipos de datos sensibles que se están recolectando y almacenando en los dispositivos móviles que podrían estar sujetos a accesos no autorizados (ya sea física o remotamente), y cómo estos datos podrían estar más protegidos. Por ejemplo, encriptando la información sensible almacenada en un teléfono movil, aunque probablemente no resolvería el problema del acceso desautorizado, al menos proveería una capa de dificultad extra ante un ataque físico. Los proveedores podrían implementar también procedimientos técnicos para detectar almacenamiento incorrecto de datos sensibles en los dispositivos móviles durante el proceso de validación inicial de la app. Pero como se dijo antes, finalmente la mayor responsabilidad recae en las usuarias, quienes deben protegerse a sí mismas de apps que almacenan su información sensible sin tomar las medidad de privacidad adecuadas. Las usuarias han de ser cautelosas cuando seleccionan apps, particularmente con aquellas que usarán para almacenar y transmitir información personal.
+
  
 +
For example, encrypting sensitive information stored on a mobile phone, although not offering complete protection, will at least provide an extra layer of security against physical attack. Providers could also implement technical procedures to detect incorrect storage of sensitive data on mobile devices during the app's initial validation process. But as underlined before, the ultimate responsibility currently lies with the users, who must protect themselves from apps that store their sensitive information without appropriate security and privacy measures. Users should be cautious when selecting apps, particularly those they use to store and transmit personal information.
  
Estudio de Farnden-Martini-Choo:  Privacy risks in mobile dating apps
+
== Recomendations ==
https://arxiv.org/pdf/1505.02906v1.pdf
+
  
 +
=== When you create a profile on a dating platform, try to protect your identity and personal information as much as possible===
  
== Recomendaciones ==
+
- Choose a username that does not let anyone know who you are. Do not include your last name or information such as your place of work, address of your house, etc.
  
=== Al crear un perfil en una plataforma de citas intenta proteger al máximo tu identidad e información personal ===
+
- If possible do not include your personal e-mail or your phone number in your profile.
:
+
- Elije un nombre de usuario que no deje saber a cualquier persona quién eres. No incluyas tu apellido o información como tu lugar de trabajo, dirección de tu casa, etc.
+
- Si puedes no incluyas tu e-mail personal ni tu número de teléfono en tu perfil.
+
- Respecto a las imágenes, busca compartir las que no te importaría que pudiese ver cualquier persona del mundo.
+
Respecto a los passwords y a tu seguridad al usar estas plataformas:
+
  
- Sé cuidadosa cuando accedes a las plataformas desde un dispositivo compartido, y también sé cuidadosa si lo haces desde un wi-fi público puesto que terceras personas podrían interceptar tus datos.
+
- Only upload photos you are comfortable sharing with anyone, anywhere.
- No abras archivos adjuntos que te hayan enviado personas desconocidas (o que hayas recientemente conocido a través de una plataforma)
+
=== Respecto a cómo comunicarte con tus nuevos contactos ===
+
:
+
  
- Tras contactar a alguien puedes buscar utilizar otro tipo de plataforma para comunicarte con esa persona. Busca un medio de comunicación encriptado, por ejemplo Signal
+
Regarding passwords and your security when using these platforms:
https://es.wikipedia.org/wiki/Signal_(software)
+
Una vez que estés usando otro medio, fuera de las plataformas de citas, puedes seguir algunas recomendaciones del colectivo Coding Rights
+
  
=== Algunas recomendaciones de coding rights para hacer sexting ===
+
- Be careful when you access the platforms from a shared device, and also be careful if you log in using public wi-fi since third parties could intercept your data.
:
+
  
- Utiliza canales seguros: Necesitas una app de código libre que ofrezca encriptación a todos los niveles, que permita bloquear las capturas de pantalla, que mande imágenes que se autodestruyan tanto en el aparato desde el que se han enviado como en el servidor, y que no pida un teléfono, un nombre real o un mail. Desgraciadamente el app que haga todo a la vez no existe. Tenlo en cuenta.
+
- Do not open attachments that have been sent to you by unknown people (or that you have recently met through the platform)
  
- Usa la cabeza: No hagas sexting vía SMS, Whatsapp, Telegram, Facebook, Tinder ya que permita identificarte y descargarse la fotos. Wickr, por ejemplo, encripta end-to-end y hace que las fotos se borren tras ser vistas. Eso sí, no lo sincronices con ninguna red social.
+
=== Regarding how to communicate with new contacts ===
https://en.wikipedia.org/wiki/Wickr
+
  
- ¿Y Telegram?: Pese a que es más segura que otras apps, guarda tus fotos 24 horas en el servidor y pide que te registres.
+
- After contacting someone suggest using another chat app with that person as soon as possible. Look for an encrypted tool, for example [https://en.wikipedia.org/wiki/Signal_(software) Signal]
  
- ¿Quién quiere verme desnuda/o?: Básicamente los gobiernos y las empresas privadas (sobre todo si tienen servidores) pueden hacerlo. Si, además, utilizas una wi-fi pública, cualquiera que sepa como interceptar el tráfico.
+
Once you are using a secure chat app, you can follow some recommendations of the collective Coding Rights
  
- Borra o escóndete bien: Guardar las fotos encriptadas en una buena medida de seguridad, pero borrar es otra alternativa. Recuerda que tu móvil almacena las fotos en diferentes carpetas así que utiliza programas como CC Cleaner. Piensa que tu móvil se puede perder y caer en malas manos, así que hacer un borrado general de vez en cuando es buena idea. Si decides guardarlas, recuerda que la suite de PGP permite encriptar muy bien y de manera sencilla. Eso sí, que las claves de acceso sean seguras y no las compartas con nadie nunca.
+
- Use secure channels: You need an app based on free software that offers encryption at all levels, which allows you to block screenshots, send images that self-destruct on both the device from which they were sent and on the server, do not ask for a related phone number, a real name or an email. Unfortunately the app that does all the above does not exist yet. Keep that in mind.
  
- Pide ayuda: Que tus fotos salgan a la luz no es ningún problema si esa es tu decisión, pero si no es así toma medidas. A veces basta con mandar un mail al servidor que aloja la página, otras será necesario buscar un abogado. Pero, sobre todo, busca ayuda. Hay webs como withoutmyconsent.org, womenagainstrevendeporn.com o takebackthetech.net/know-more que estarán encantadas de hacerlo.
+
- Use your head: Do not sext via SMS, Whatsapp, Telegram, Facebook or Tinder, as those platforms enable you to be identified and your pictures to be downloaded. [https://en.wikipedia.org/wiki/Wickr Wickr], for example, encrypts end-to-end and causes the photos to be erased after being viewed. However Wickr is not open source so its code can not be audited and reviewed. Last but not least, do not synchronize your dating apps with any social network.
  
== Lecturas Interesantes, links: ==
+
- And Telegram?: Although it is safer than other apps, it saves your photos for 24 hours on the server and also requires you to register.
  
Comparativa en seguridad de electronic frontier foundation:  
+
- Who can see me naked ?: Basically governments and private companies (especially if they have servers) can. And, in addition, if you use a public WiFi, anyone who knows how to intercept WiFi traffic.
 +
 
 +
- Erase or hide well: Saving encrypted photos is a good security measure, but deleting photos is a better option. Remember that your mobile stores photos in different folders, so use programs like CC Cleaner to erase pictures. Remember that your mobile can be lost and can fall into the wrong hands, so doing a general erasure/cleaning from time to time is a good idea. If you decide to save your photos, remember that PGP suite allows you to encrypt them securely.
 +
 
 +
- Ask for help: If your photos become public without your consent, you will need to take action. Sometimes it is enough to send an email to the server that hosts the page, in other situations you may need to look for a lawyer. But above all, seek help of trusted friends. Check the following websites for further information about what to do [http://www.withoutmyconsent.org/ withoutmyconsent.org] and [https://www.takebackthetech.net/know-more takebackthetech.net/know-more].
 +
 
 +
 
 +
== Useful reading==
 +
 
 +
Security comparison from Electronic Frontier Foundation:  
 
https://www.eff.org/es/deeplinks/2012/02/comparing-privacy-and-security-online-dating-sites
 
https://www.eff.org/es/deeplinks/2012/02/comparing-privacy-and-security-online-dating-sites
  
Nguyen Phong HOANG, Yasuhito ASANO, Masatoshi YOSHIKAWA, "Your Neighbors Are My Spies: Location and other Privacy Concerns in GLBT-focused Location-based Dating Applications"  
+
Nguyen Phong HOANG, Yasuhito ASANO, Masatoshi YOSHIKAWA, "Your Neighbors Are My Spies: Location and other Privacy Concerns in LBGT-focused Location-based Dating Applications"  
 
https://arxiv.org/pdf/1604.08235v1.pdf
 
https://arxiv.org/pdf/1604.08235v1.pdf
 
    
 
    
Estudio comparativo en torno a las plataformas de citas en estados unidos entre 2005 y 2013: http://www.secretintelligenceservice.org/wp-content/uploads/2016/02/PIP_Online-Dating-2013.pdf  
+
Security comparison for dating platforms in USA between 2005 and 2013: http://www.secretintelligenceservice.org/wp-content/uploads/2016/02/PIP_Online-Dating-2013.pdf  
  
 
Margaret Feltz "The Security of Tinder. A Mobile App That May Be More Intimate Than We Thought":
 
Margaret Feltz "The Security of Tinder. A Mobile App That May Be More Intimate Than We Thought":
 
http://www.cs.tufts.edu/comp/116/archive/fall2015/mfeltz.pdf
 
http://www.cs.tufts.edu/comp/116/archive/fall2015/mfeltz.pdf
  
Otras estadísticas:  
+
Other Statistics:  
 
http://www.datingsitesreviews.com/staticpages/index.php?page=Online-Dating-Industry-Facts-Statistics
 
http://www.datingsitesreviews.com/staticpages/index.php?page=Online-Dating-Industry-Facts-Statistics
  
 +
=== Platforms ===
  
=== Plataformas ===
+
1.- Tinder
:
+
http://www.forbes.com/sites/anthonykosner/2014/02/18/tinder-dating-app-users-are-playing-with-privacy-fire/#1388ac786758
1.- TINDER
+
(Inglés).- http://www.forbes.com/sites/anthonykosner/2014/02/18/tinder-dating-app-users-are-playing-with-privacy-fire/#1388ac786758
+
  
Política de privacidad https://www.gotinder.com/privacy
+
Privacy Policy https://www.gotinder.com/privacy
  
2.- Bumble, ¿alernativa feminista?.- http://www.semana.com/gente/articulo/tinder-su-competencia-feminista/439477-3
+
2.- Bumble, feminist alternative?
 +
http://www.semana.com/gente/articulo/tinder-su-competencia-feminista/439477-3
  
3.- Grindr (Inglés).- https://nakedsecurity.sophos.com/2014/09/01/grindr-app-has-privacy-issues-whos-surprised/
+
3.- Grindr  
 +
https://nakedsecurity.sophos.com/2014/09/01/grindr-app-has-privacy-issues-whos-surprised/
  
4.- KickOff.- http://www.fmbox.cl/2016/05/25/kickoff-la-nueva-app-de-citas-que-la-esta-rompiendo-en-latinoamerica/
+
4.- KickOff
 +
http://www.fmbox.cl/2016/05/25/kickoff-la-nueva-app-de-citas-que-la-esta-rompiendo-en-latinoamerica/
  
5.- WooPlus.- http://latam.askmen.com/noticias-dating/2027/article/wooplus-la-app-de-citas-para-quienes-gustan-de-las-chicas-co
+
5.- WooPlus
 +
http://latam.askmen.com/noticias-dating/2027/article/wooplus-la-app-de-citas-para-quienes-gustan-de-las-chicas-co
  
6.- Wapa (antes Brenda).-
+
6.- Wapa (before called Brenda)
 
https://play.google.com/store/apps/details?id=com.wapoapp.wapa&hl=es_419
 
https://play.google.com/store/apps/details?id=com.wapoapp.wapa&hl=es_419
 
Ejemplos de Latino América:
 
http://www.sentidog.com/lat/2014/12/uruguayas-crean-red-social-para-comunidad-gay-de-latinoamerica.html
 
https://www.buzzfeed.com/josehernandez/probamos-todas-las-apps-para-ligar?utm_term=.kcv1zVbz0N#.cexwx2BxE
 
Recomendaciones para sexting seguro: http://valenciaplaza.com/guia-para-enviar-tus-desnudos-en-internet
 
 
 
 
 
 
  
  

Latest revision as of 09:29, 20 March 2017

What are dating platforms?

Dating websites and apps are widely used, but can often put their users at risk. Dating websites and apps collect large amounts of highly sensitive information from their users - consciously in some cases, for example age, physical characteristics and photos, and in some cases unknowingly, for example geo-location to show people nearby. This guide covers the basic issues you should be aware of when you use a dating website or app.

Dating platforms are pages or applications oriented to facilitate meeting and encounters with other people, sometimes with the purpose of finding a partner or engage into sexual encounters. Usually these services are databases that collect information from users through a profile that can contain personal data, images, locations. There are many types of dating platforms, and all have different interfaces and features. Some are free and others offer payment options which in some cases enlarge the possibility to view more profiles. Sometimes, the use of free platforms implies that users that no not provide a lot of personal data get restrained in their possibilities to view and access other profiles.

Broadly speaking these platforms are divided into two types: those that work through matching and those that focus on dating. "Matching" platforms seek to link profiles of users that are compatible, so they request a large amount of information about their preferences, customs, personal characteristics, hobbies, social status, etc. Platforms that concentrate on dating do not request so much personal and identity information because they focus more on the physical aspects and the immediate encounter between two persons. In both cases, platform's databases can be organized through users 'preferences (who choose other users) or algorithmically, based on the users' registered criteria.

There are platforms that work as web pages and others like mobile phone apps. Some even combine both options. The expansion of these platforms through mobile apps has been a supplement to the services previously offered through websites, and has made the interaction with those platforms (and their users) constant, emphasizing a lot in their geolocation.

Privacy policies of dating websites and apps

Dating website and apps frequently change their privacy policies and often without informing their users. If you've joined one or more dating websites or apps check the privacy policies regularly.

When you check the privacy policy of a dating webisite or app you should check for these issues in particular:

Data Storage - many websites store sensitive data unencrypted so third parties can easily access it. Many dating services will also state that the data will be shared with third parties

Intellectual property: Many dating services will claim ownership on any images uploaded and often the data entered when configured to their system.

Account deletion: Many dating services will not commit to removing all your data when you close or delete your account.


Information requested by the platforms

Gender, sexual orientation and practices

Many of these platforms require you to enter a binary gender (you can only be male or female). If they are oriented towards gay men and/or lesbians, a gender identity is always requested, almost always offering only binary options.

Any information on gender and sexual choices is of course highly sensitive, particularly in contexts where LGBTQI prcactices are illegal or would harm the user if publicly known.

Images and avatars

Several dating platforms require photos (sometimes through profiles of other social networks, such as Facebook) to join or to access other profiles.

Many platforms also use accounts from other services, such as Facebook, to create a profile. For these services, it is often not clear how much profile information is accessed from other services. Some apps incorporate much more information from say Facebook than the user may have been informed about when signing up, for example videos shared in other commercial platforms (such as Youtube or Vimeo), or pages that have been marked with likes. You can read more on the privacy risks on the mobile dating apps.

= Geolocation

Many dating websites, and especially dating phone apps, access your location so you can meet other people nearby in real time. This may be the desired outcome, but sharing detailed and current location data could put people at risk of being located by anyone. This information could potentially reveal a person's physical address, their movements and routine. Many apps allow you to detect the exact location from the triangulation of a profile (sometimes even when the exact geolocation option is turned off), making it easy to find a person behind a specific profile.

The data from online dating services can be used both for "legal" surveillance (governments, police forces, judiciary among others), or for illegal and malicious purposes (harassment, crime, robbery, sexual assault among others). All the information obtained through these platforms could also be used for the purpose of extorting the user. You can read more information on these risks in the following article “Privacy Risks in Mobile Dating Apps”.

You can read a comparative study of three mobile dating apps here.

Other data that can be extracted

Sensitive personal data in dating websites and apps is not just of interest to legal authorities and criminals, however, it can also be accessed by advertisers and data brokers.

Because virtually all dating services do not encrypt their data , third parties are able to access and collect information such as a user's device information, its operating system, the installed applications, its location, its internet provider, even sometimes the user's credit card details and potentially much more.

By linking with other services, dating websites and apps can enable other companies to cross reference your personal data with other services to build a more detailed social profile of you to understand "what you need". An example could be the possible relationship between fertility and menstrual applications and dating applications; through knowing your hormonal cycles, third parties could send you advertising information for a specific point in your menstrual cycle.

Furthermore, it is possible that your information could be used to blackmail you. Platforms sometimes can not control what they make available. One example of this was Tinder more information than they should, you an read about it here. There was also the hack of the Ashley Madison extra-martial dating website. Users were blackmailed to prevent their personal data and activities on the website being published, you can read more here.

Erasing your profile

Although many dating services offer the possibility of deleting your profile, they often do not ensure the removal of the information immediately and many will keep that data indefinitely. In general, platforms place the responsibility for privacy onto the users themselves as they are generally very unclear about the limitations of their own privacy policies.

In the current state of privacy policies (which could change at any time), developers should consider the different types of sensitive data being collected and stored on mobile devices that could be subject to unauthorized access (whether physical or remotely), and evaluate how this data could be more protected.

For example, encrypting sensitive information stored on a mobile phone, although not offering complete protection, will at least provide an extra layer of security against physical attack. Providers could also implement technical procedures to detect incorrect storage of sensitive data on mobile devices during the app's initial validation process. But as underlined before, the ultimate responsibility currently lies with the users, who must protect themselves from apps that store their sensitive information without appropriate security and privacy measures. Users should be cautious when selecting apps, particularly those they use to store and transmit personal information.

Recomendations

When you create a profile on a dating platform, try to protect your identity and personal information as much as possible

- Choose a username that does not let anyone know who you are. Do not include your last name or information such as your place of work, address of your house, etc.

- If possible do not include your personal e-mail or your phone number in your profile.

- Only upload photos you are comfortable sharing with anyone, anywhere.

Regarding passwords and your security when using these platforms:

- Be careful when you access the platforms from a shared device, and also be careful if you log in using public wi-fi since third parties could intercept your data.

- Do not open attachments that have been sent to you by unknown people (or that you have recently met through the platform)

Regarding how to communicate with new contacts

- After contacting someone suggest using another chat app with that person as soon as possible. Look for an encrypted tool, for example Signal

Once you are using a secure chat app, you can follow some recommendations of the collective Coding Rights

- Use secure channels: You need an app based on free software that offers encryption at all levels, which allows you to block screenshots, send images that self-destruct on both the device from which they were sent and on the server, do not ask for a related phone number, a real name or an email. Unfortunately the app that does all the above does not exist yet. Keep that in mind.

- Use your head: Do not sext via SMS, Whatsapp, Telegram, Facebook or Tinder, as those platforms enable you to be identified and your pictures to be downloaded. Wickr, for example, encrypts end-to-end and causes the photos to be erased after being viewed. However Wickr is not open source so its code can not be audited and reviewed. Last but not least, do not synchronize your dating apps with any social network.

- And Telegram?: Although it is safer than other apps, it saves your photos for 24 hours on the server and also requires you to register.

- Who can see me naked ?: Basically governments and private companies (especially if they have servers) can. And, in addition, if you use a public WiFi, anyone who knows how to intercept WiFi traffic.

- Erase or hide well: Saving encrypted photos is a good security measure, but deleting photos is a better option. Remember that your mobile stores photos in different folders, so use programs like CC Cleaner to erase pictures. Remember that your mobile can be lost and can fall into the wrong hands, so doing a general erasure/cleaning from time to time is a good idea. If you decide to save your photos, remember that PGP suite allows you to encrypt them securely.

- Ask for help: If your photos become public without your consent, you will need to take action. Sometimes it is enough to send an email to the server that hosts the page, in other situations you may need to look for a lawyer. But above all, seek help of trusted friends. Check the following websites for further information about what to do withoutmyconsent.org and takebackthetech.net/know-more.


Useful reading

Security comparison from Electronic Frontier Foundation: https://www.eff.org/es/deeplinks/2012/02/comparing-privacy-and-security-online-dating-sites

Nguyen Phong HOANG, Yasuhito ASANO, Masatoshi YOSHIKAWA, "Your Neighbors Are My Spies: Location and other Privacy Concerns in LBGT-focused Location-based Dating Applications" https://arxiv.org/pdf/1604.08235v1.pdf

Security comparison for dating platforms in USA between 2005 and 2013: http://www.secretintelligenceservice.org/wp-content/uploads/2016/02/PIP_Online-Dating-2013.pdf

Margaret Feltz "The Security of Tinder. A Mobile App That May Be More Intimate Than We Thought": http://www.cs.tufts.edu/comp/116/archive/fall2015/mfeltz.pdf

Other Statistics: http://www.datingsitesreviews.com/staticpages/index.php?page=Online-Dating-Industry-Facts-Statistics

Platforms

1.- Tinder http://www.forbes.com/sites/anthonykosner/2014/02/18/tinder-dating-app-users-are-playing-with-privacy-fire/#1388ac786758

Privacy Policy https://www.gotinder.com/privacy

2.- Bumble, feminist alternative? http://www.semana.com/gente/articulo/tinder-su-competencia-feminista/439477-3

3.- Grindr https://nakedsecurity.sophos.com/2014/09/01/grindr-app-has-privacy-issues-whos-surprised/

4.- KickOff http://www.fmbox.cl/2016/05/25/kickoff-la-nueva-app-de-citas-que-la-esta-rompiendo-en-latinoamerica/

5.- WooPlus http://latam.askmen.com/noticias-dating/2027/article/wooplus-la-app-de-citas-para-quienes-gustan-de-las-chicas-co

6.- Wapa (before called Brenda) https://play.google.com/store/apps/details?id=com.wapoapp.wapa&hl=es_419