E-scooter app may be overcollecting data about Hamilton riders: privacy consultant

CBC

Updated April 17, 2023 at 2:45 p.m.·5 min read

Hamilton is now one of more than 10 cities in Canada where Bird Canada operates. (Bobby Hristova/CBC - image credit)

Hamilton's new e-scooter app may be overcollecting information about riders, according to a privacy consultant.

The city launched the service two weeks ago on April 3, after selecting Bird Canada as the operator. Hamilton is now one of more than 10 cities in Canada with Bird Canada operations.

Riders download the Bird app and can pay to ride the electric scooters.

But Sharon Bauer, founder of Toronto-based Bamboo Data Consulting, has concerns about what's written in the app's privacy policy.

"There are holes in the privacy policy … as in, you're not going to get all the information you need to truly assess whether a vendor is doing anything shady with your information," she said.

She also said the city should've done a privacy impact assessment (PIA) before debuting the service. The city confirmed to CBC Hamilton it didn't do a PIA.

A PIA looks at how the technology may impact people's privacy and is in compliance with privacy laws.

"Hamilton should have done a PIA. Although Hamilton itself is not technically collecting personal information ... they're essentially putting residents at risk," Bauer said, adding many other apps collect people's information but the city should've done more due diligence.

How does the app work?

CBC downloaded and used the app on an iPhone to test out how it works.

On an iPhone, when someone first opens the app, it asks to access their phone's bluetooth technology to have an easier time connecting to the e-scooter. It also asks users to use their location to find scooters.

People sign in on the app using an email or Apple ID. When people sign in, the app says doing so confirms they're 18 or older.

It also asks people to add a payment card. People pay for the scooter to unlock it.

When people ride an e-scooter on the app, it tracks their route, how many kilometres they rode and their speed. At the end of the ride, it asks people to lock up the scooter and take a picture of how it was locked up.

It'll also tell you if you rode on sidewalks, no-ride zones, if you were speeding or if you parked in a permitted area. It also tells you how much carbon dioxide you prevented from being emitted by riding the scooter instead of a vehicle.

What are the privacy concerns?

Bauer listed numerous concerns about the privacy policy.

The policy states Bird Canada automatically collects the real-time location of the user through their phone and through the scooter.

Bauer said "there's absolutely no reason" for Bird to track the user's entire trip instead of simply tracking the start point and end point of the trip.

"It does seem that there's overcollection of information," she said.

She also has questions about why the app tracks through a user's phone and the scooter.

"That's also a little strange because why would they need both?"

Bauer said users should never let any app, including this one, track your location at all times.

The privacy policy also states it may ask for a user's birth date and driver's licence or piece of government-issued ID to confirm their age, but that didn't occur when CBC tried the app. Bauer said if you need to provide ID to use the app, you shouldn't use it at all.

Bauer also noted how Bird Canada says it shares information within the "Bird family of companies." It's unclear what companies those are. Bird Global Inc. says it has operations "in more than 350 cities, primarily across the United States, Canada, Europe, the Middle East, and Australia."

Bird Canada also shares information with public partners and transportation authorities, which Bauer said is likely the city in this case. It could include anonymized data that could help the city improve traffic flow.

She said if enough data about any single user is shared, you could potentially identify the user based on where they've been.

For example, if someone users the scooter to ride from home, to work, a grocery store and back home on a regular basis, one could look at those points and determine where they live, work or shop.

"While it's anonymized, it's not truly anonymized," she said.

She added Bird Canada forcing users to take a picture of the scooter when it is locked up is "overreaching."

Bird Canada responds to privacy concerns

Stewart Lyons, chief executive officer of Bird Canada, declined an interview and didn't answer specific questions from CBC Hamilton about who it shares data with, why someone's entire trip is tracked and where user data is stored.

"The answers are available in the privacy policy," he said, adding that the company is committed to users's privacy.

He said Bird Canada only uses personal information when there's a "legitimate business purpose."

"All Bird data is encrypted in both transit and in storage in accordance with industry standards, personal data is anonymized and aggregated whenever possible, and Bird does not retain any personal data longer than is necessary for the legitimate business purpose," Lyons wrote.

He added that Bird Canada is in 13 cities and hasn't faced a single privacy concern previously.

"We don't sell the data to anyone. We don't share the data with anyone, other than the city in which we serve whereby all data is anonymized and shared via the global [mobility data specification] standard."

Alvaro Cruz, a downtown Hamilton resident, tried the e-scooter out for the first time at Bayfront Park on Saturday.

"I'll probably just try them this one time … I drive everywhere," he said, just a few minutes before zooming off in the scooter down the Waterfront Trail.

Cruz said he isn't worried about the privacy concerns because he's using the e-scooter recreationally, but said people using them to commute to work may be more impacted.

The city didn't answer specific questions from CBC about concerns about the app or if Hamilton Bike Share's SoBi app ever underwent a PIA but said moving forward, it will require vendors to submit PIAs, "as applicable."

HuffPost
Trump Throws Middle-Of-The-Night Fit After Nancy Pelosi Called Him Out On Live TV
The former president attacked the former House speaker as a “sick puppy.”
The Hill
Pat Tillman’s mother ‘shocked’ by Prince Harry getting son’s award
The mother of U.S. soldier and former NFL star Pat Tillman said she was “shocked” to hear Prince Harry, Duke of Sussex, would be the recipient of an annual award made in the name of her son, who was killed by friendly fire in Afghanistan in 2004. Mary Tillman, the mother of the Pat Tillman,…
INSIDER
After my husband and I stopped wearing our wedding rings, we tried polyamory. 3 years later, we're happily nonmonogamous.
My husband and I were monogamous before we got married. When we stopped wearing our wedding rings, we decided to try polyamory.
HuffPost
Lara Trump’s Latest Donald Trump Claim Receives Easiest Fact Check Of All Time
Donald Trump's daughter-in-law confused the heck out of critics with her boast.
The Canadian Press
A private call of top Democrats fuels more insider anger about Biden's debate performance
NEW YORK (AP) — A sense of concern is growing inside the top ranks of the Democratic Party that leaders of Joe Biden’s campaign and the Democratic National Committee are not taking seriously enough the impact of the president’s troubling debate performance earlier in the week.
BuzzFeed
17 Kids Of Sex Workers Confessed What Their Lives Were Reallyyyy Like, And It's A Lot To Handle
A lot goes on behind closed doors.
CNN
Opinion: What Trump said during the debate that has many Black Americans and Palestinians outraged
While many are focused on President Biden’s debate performance, Dean Obeidallah says it was former President Trump’s statements during the event that gave offense.
BBC
Four die after drinking from bottles found in sea
The fishermen drank the contents of the bottles thinking it was alcohol, local media reports.
Hello!
Amal Clooney, 46, is glowing in flirty floral dress as she walks hand in hand with George Clooney
George Clooney and his wife, Amal, were spotted in St Tropez this past week, and Amal made the most of the glorious sunshine with a flirty floral mini dress. See the pictures here...
The Olympian
Daddy died a MAGA. His last words were apologies for how his Trumpism hurt our family | Opinion
Your memory is all you leave, writes Jess Piper. That’s it. You are what you say and the way you make others feel. Nothing else matters. | Opinion
The Daily Beast
Gretchen Whitmer: I Won’t Run, but Joe Biden Has Lost Michigan After Debate
Gretchen Whitmer, the Michigan governor seen as one of the Democrats’ best prospects to replace Joe Biden, has ruled out running, Politico reported Monday.But the swing state leader delivered a damning message to the campaign aide whom she called, the outlet’s Jonathan Martin reported, saying that the president’s debate performance will cost him Michigan.Whitmer called the campaign chair, Jen O’Malley Dillon Friday, after a day of frenzied speculation that she would be a frontrunner if Biden cou
The Canadian Press
In their own words: Prime Minister Justin Trudeau's message on Canada Day
OTTAWA — Prime Minister Justin Trudeau has released a video message to Canadians on Canada Day. Here's what he had to say, in his own words.
BuzzFeed
People Who Won A Lifetime Supply Of Something Are Sharing How It Turned Out (And How Long It Actually Lasted)
"I won a 'lifetime' supply of donuts (up to a dozen per day) at a local bakery, and it lasted two years until the original owner died and his A-hole son took over the business."
Hello!
Lila Moss cosplays Kate Moss in sheer outfit at Glastonbury
The daughter of Kate Moss and Jefferson Hack, donned a lightweight fabric that made it an ideal choice for Worthy Farm's unusually good weather this year - See Photos
Wichita Eagle
Julia Roberts seemed smitten with Chiefs’ Travis Kelce at Taylor Swift’s Dublin show
Cameras caught Academy Award-winning actress Julia Roberts sharing a moment with Chiefs’ Travis Kelce at Taylor Swift’s Dublin concert.
Glamour
Jennifer Lopez Rocks Her Wedding Ring After Ben Affleck Reportedly Removes His Stuff From Their Home
It's unclear where the couple currently stand.
BuzzFeed
This Guy Shared The One Thing His Date Said That Made Him Stand Up And Leave Immediately, And Now He's Wondering If He Was Too Harsh
"We started having the 'our past relationships' talk, and she told me about her high school and college boyfriends. Then, she admitted that she cheated on her college boyfriend..."
USA TODAY Sports
2024 NHL free agent rankings: Top 25 players to watch when free agency opens
The NHL salary cap is going up, but the unrestricted free agent pool is also big this offseason. Here are 25 players to watch.
The Canadian Press
Where do things stand with the sexual assault case involving 2018 Canada world junior players?
A scandal has rocked Canadian hockey and led to multiple investigations of several players who were on the nation's gold medal-winning 2018 world junior team, including some who have moved on to the NHL.
People
Eva Amurri Marries Chef Ian Hock in ‘French Garden Party’ Wedding: ‘Felt Like a Fairytale’ (Exclusive)
The actress, who is the daughter of Susan Sarandon, tied the knot with Hock in Hudson Valley, New York, on Saturday, June 29, in front of 40 guests

Latest Stories