I wrote to Flock’s privacy contact to opt out of their domestic spying program:

I am a resident of California. As such, and because you are subject to the CCPA, delete all information about me, my vehicle, and other household members from all of your databases. I do not give you permission to collect or store data about me, my vehicles, or my relatives, in any future situation.

[Me] [My address]

They replied today:

Dear [misspelled name, i.e. not copied and pasted],

Your request cannot be completed at this time.

Dear [misspelling again],

Thank you for submitting your privacy request. At this time, we are unable to process this request for the reasons detailed below.

Flock Safety provides its services to our customers, and our customers are owners and controllers of the data Flock Safety processes on their behalf. Flock Safety processes data as a service provider and processor for our customers and as a result, we are unable to directly fulfill your request. We recommend contacting the organization that engaged Flock Safety’s services to submit your request, as they are responsible for assessing and responding to it.

Here are a few additional points about Flock Safety’s data collection and privacy practices:

• Customer Contracts: Flock Safety’s processing activity as a service provider and processor is governed by the contract we have with our customers, which captures their instructions and the limitations on how Flock Safety may process their data. Flock Safety’s customers own the data and make all decisions around how such data is used and shared.
• No Sale of Data: Because Flock Safety’s customers own the data, Flock Safety may only process the data in accordance with our customer’s instructions, as outlined in our contracts with customers. Flock Safety is not permitted to sell, publish, or exchange such data for our own commercial purposes.
• Information Collected: Where Flock Safety’s customers leverage License Plate Reader (LPR) technology, the LPRs do not process sensitive information like names or addresses. Instead, LPRs only capture images of publicly available and visible vehicle characteristics that are taken in the public view.
• Purpose: Flock Safety customers use data for security purposes, including managing public safety or responding to safety concerns and reports. Additionally, such data may be used to help solve crimes and provide objective evidence.
• Retention: By default, Flock Safety’s systems only retain data for 30 days, which means that any data collected on behalf of customers is permanently hard deleted on a rolling 30 day basis. Flock Safety customers are able to adjust this retention period based on their local laws or policies.

For more information about how Flock Safety processes data, please refer to our Privacy Policy and LPR Policy.

Thank you,

Flock Safety Privacy Team

I think that’s legally inaccurate. They’re the entity collecting and processing my personally identifiable information, and my non-lawyer reading of the California Consumer Privacy Act (CCPA) would seem to obligate them to comply with my request. I haven’t decided to engage a lawyer yet, but neither have I ruled it out.

Proton Mail Helped FBI Unmask Anonymous ‘Stop Cop City’ Protester

Privacy-focused email provider Proton Mail provided Swiss authorities with payment data that the FBI then used to determine who was allegedly behind an anonymous account affiliated with the Stop Cop City movement in Atlanta, according to a court record reviewed by 404 Media.

This is a definition of “privacy-focused” with which I am not acquainted.

Comcast verified that they processed my data deletion request, with exceptions including:

For internal purposes that are compatible with the context in which you provided it, such as to support and enhance he [sic] products and services we provide

No! I don’t want you using my data to enhance your services. On to filling a CCPA complaint it is, then.

JetBrains will be opting all free IDE users into sharing their program code to train JetBrains’s AI models.

Today I’m blocking JetBrains IDEs in our MDM. Then we can turn it back on for employees who show that they have a paid license and it’s configured to opt out of the sharing.

blog.jetbrains.com/blog/2025…

A Swift Cloud - Things Blog - Cultured Code culturedcode.com/things/bl…

This is so frustrating. Things is really neat, but they went through all the effort of rewriting its backend from scratch with no mention of end-to-end encryption. You just have to trust that they’re not selling your data, training AIs with it, giggling at your notes to buy flowers for your SO, or whatever. I’m pretty sure they’re not, but having to trust that they’re not is a dealbreaker.

How California sent residents’ personal health data to LinkedIn – The Markup:

As visitors filled out forms on the website, trackers on the same pages told LinkedIn their answers to questions about whether they were blind, pregnant, or used a high number of prescription medications.

Do not, ever, use a web browser without an ad-blocker. Even the FBI and NSA officially recommend it.

France Fines Apple €150 Million Over iOS Data Consent Rules - Bloomberg

Things like this are why it’s hard for me to take EU regulation seriously. (In before “but what about the US…” Yeah, I know.)

It’s purely good that Apple makes apps get your approval before allowing them to track your actions. France claims this is hard for the poor companies like Facebook that want to collect every move you make. Yes. It’s supposed to be. That’s the point. I want it to be.

AG Bonta reminds 23andMe customers of right to delete data:

California Attorney General Rob Bonta issued a consumer alert Friday urgently warning the public that 23andMe is in financial distress and instructing customers on how to delete their data.

That’s good enough for me. I used 23andMe when it launched and love the promise of gaining medical insights from my own genetic data. That’s a powerful vision I still support. But given the lack of federal privacy protections on this most sensitive and personal of all data, I’d rather delete it than let some creep buy it in a fire sale.

Some friends and I got a pack of Orbic mobile hotspots so we can install the EFF’s Rayhunter software on them to detect “StingRay” IMSI-catchers. This is what one looks like.

In Memoriam: Mark Klein, AT&T Whistleblower Who Revealed NSA Mass Spying

I moved in down the block from Mark when we first came to the Bay Area. One day he saw me getting out of my car and noticed my EFF hat. He asked if I worked for them, and I said I’m just a happy supporter. He told me they once helped him out of a bind and said I should look him up.

Mark was a super nice guy. He also had the world’s most aggressive golden retrievers that would bark at me as I walked down the block. One day I found a “sewer cleaning” van parked on the parallel street behind his house, but to this day I wonder what it really was. They drove off right after I took a picture of it.