At this point I don't think there's a solution for this crap except regulation. Any PM of practically any product that has a software component is now expected to include revenue-generating spyware in the package; if she doesn't she gets fired. Regulation is the only solution.
And the fines need to be stiff, like $10,000 per incident per user. It's gotta hurt or companies won't stop doing it.
Is this what you believe happened with Wacom in this case? How could these tracking points be converted into revenue?
Personally I think this was a good case of "Any sufficiently advanced incompetence is indistinguishable from malice", but maybe my imagination is just insufficient.
It wouldn't surprise me a single bit if this is against the GDPR. Actually it would surprise me slightly if this is not against the GDPR.
Contrary to what many, both companies and individuals, seem to think, GDPR is not about cookie pop-ups but about regulating collection, storage and use of personal data.
Well the thing is, it’s really hard to define what “spyware” is from a legal sense. For example anti-malware software is highly invasive by definition.
It seems the real problem is consent… There should be a “nutrition facts” for software that is enforced at the OS level through an aggressive permissions model and backed by a privately run app stores subject to audit by government regulators.
And the fines need to be stiff, like $10,000 per incident per user. It's gotta hurt or companies won't stop doing it.