this post was submitted on 26 Aug 2024
81 points (95.5% liked)

Asklemmy

43803 readers
760 users here now

A loosely moderated place to ask open-ended questions

Search asklemmy πŸ”

If your post meets the following criteria, it's welcome here!

  1. Open-ended question
  2. Not offensive: at this point, we do not have the bandwidth to moderate overtly political discussions. Assume best intent and be excellent to each other.
  3. Not regarding using or support for Lemmy: context, see the list of support communities and tools for finding communities below
  4. Not ad nauseam inducing: please make sure it is a question that would be new to most members
  5. An actual topic of discussion

Looking for support?

Looking for a community?

~Icon~ ~by~ ~@Double_A@discuss.tchncs.de~

founded 5 years ago
MODERATORS
 

Out of a reflex of distrust, I refuse to participate in any kind of loyalty program of the outlet of the large retail store around the corner.

I tell myself that by refusing to join the loyalty program (which basically comes down to scanning an anonymous loyalty card every time I make a purchase), I prevent them from adding my correlations (what products I buy, in what combos, at what time) to their data.

But since I normally pay by card, I guess they can (and do) already do that with my bank account information?

If I would pay with cash, they can still see those correlations per purchase, but they can't track my purchases over time?

you are viewing a single comment's thread
view the rest of the comments
[–] mosiacmango@lemm.ee 20 points 2 months ago* (last edited 2 months ago) (4 children)

IPhone/android randomize their MAC addresses now to prevent this kind of long term tracking.

Stores will see you walking the store anonymously and be able to create a general customer heatmap, but since this virtual MAC rotates, they won't be able to correlate this to you indivdually long term.

[–] otp@sh.itjust.works 7 points 2 months ago (1 children)

I believe phones broadcast a sort of fingerprint when searching for wifi and/or Bluetooth connections. No MAC address needed!

[–] mosiacmango@lemm.ee 4 points 2 months ago* (last edited 2 months ago) (2 children)

The MAC is generally the fingerprint. Looks like Apple handles this when searching as well:

https://support.apple.com/guide/security/wi-fi-privacy-secb9cb3140c/web

I haven't heard of anything else besides MAC being broadcast during the searching phase. Can you give an example or technical term?

[–] herrvogel@lemmy.world 4 points 2 months ago* (last edited 2 months ago)

Phones routinely look for specific SSIDs by their names. Imagine you're strolling through a mall while your appearance changes every 2 seconds, but you keep yelling out the names of 5 other peoole. People will not know who you are really, but they will be able to follow you around because they will know that it's you who yells those 5 names no matter what you look like.

[–] otp@sh.itjust.works 1 points 2 months ago

Whenever wifi is enabled, your device is sending out probe request frames, which includes your list of preferred networks/networks you've connected to before.

Discussion here

More details from an old article

[–] scytale@lemm.ee 6 points 2 months ago

That, and things like Apple Pay randomize the card number when you pay. It’s why my local grocery store refused to switch to contactless payments for so long. They finally gave in and are piloting it on some stores now.

[–] med@sh.itjust.works 1 points 2 months ago (1 children)

How does that work for broadcasts from your device, designed to prompt beacons from dorman aps you might have joined before? Once you join it provides a random mac, but before then?

[–] mosiacmango@lemm.ee 6 points 2 months ago

They use randomized MACs there too.

You can set MACs to not randomize for specific WiFi, but by default it's on and random.

[–] intensely_human@lemm.ee 1 points 2 months ago

AI can identify individuals by gait now