Bluefire Comments on Adobe Spying Scandal: It’s Not Our Thing, Baby

Bluefire Comments on Adobe Spying Scandal: It's Not Our Thing, Baby Security & Privacy Following in the wake of the news that Adobe was tracking users' activities and then uploading the data to their servers without encryption, many ebook users, including librarians, readers, and even those in the digital publishing industry are wondering just how safe other Epub apps actually are.

At the request of several readers, I checked with Bluefire, one of the leading developers of Adobe compatible Epub apps. Bluefire makes an reading app for Android, iDevices, and Windows, but they use a very different standard when it comes to privacy:

We have been asked if we perform similar data collection in our free Bluefire Reader apps. The answer is No. While our apps are built on Adobe Reader Mobile SDK (RMSDK) versions 9 and 10, we are not aware of similar data collection by Adobe in these SDKs.

We do support an optional Bluefire developed sync feature that (when enabled by the user) sends anonymous, encrypted data to our servers. This data is used to sync the user’s reading location across the user’s activated reading devices. We also collect a limited amount of anonymous aggregated usage information. All of this is spelled out in our “Terms and Conditions” and “Privacy” statements.

We want you, our users, to know that we respect and value your privacy. While it is true that some technologies (like page location sync) require the transmission of user data, we believe that it is essential to implement these services in a manner that respects and protects the privacy of our users. We believe that our current apps meet this standard.

For those just tuning in, on Monday I broke the news that the latest version of Adobe Digital Editions was logging my reading activities and uploading the data to their servers in clear text. This feature, which has not been found in earlier versions of Adobe DE, was added for no clear reason. It involved collecting detailed into on everything a reader was doing inside of an ebook, including pages read, ebooks opened, and more.

Adobe defended the tracking with the claim that the data was "collected solely for purposes such as license validation and to facilitate the implementation of different licensing models by publishers". I'll leave it up to you to decide whether knowing which pages had been read will help with that purpose.

As for me, I will simply remind you that the data was sent in the clear.

Nate Hoffelder

View posts by Nate Hoffelder
Nate Hoffelder is the founder and editor of The Digital Reader:He's here to chew bubble gum and fix broken websites, and he is all out of bubble gum. He has been blogging about indie authors since 2010 while learning new tech skills at the drop of a hat. He fixes author sites, and shares what he learns on The Digital Reader's blog. In his spare time, he fosters dogs for A Forever Home, a local rescue group.

3 Comments

  1. Geoffrey Kidd8 October, 2014

    The fact that the data is being sent at all without the foreknowledge and APPROVAL of the users is already criminal misconduct. Sending it in the clear should be a felony.

    Reply
  2. Colleen9 October, 2014

    Well, I’m done with Adobe DE. Thanks for that info. I’d like to see where the info is kept, like you did. How about a seminar on how to do it? How do we have any privacy now? I don’t want anything up in a ‘cloud’. It would have been super helpful back in the day when the computers were too heavy and large to travel with and it was difficult to deal with your documents in an internet place in a foreign country. Now they can all be on your phone and the tablet is small and portable. I don’t need it and want to make sure nothing is going up there. Too much sharing. Tho I agree it is or should be considered criminal, once upon a time if a phone call was intercepted and you were calling from or answering a call at a phone booth, you were told that you had no “expectation of privacy” and therefore there was no need for a search warrant. Well, we certainly don’t have any expectation of privacy once we go online or even if we are doing something off line on the computer. They’ll get it eventually.

    Thanks for the info. Please ‘share’ how I can check it out.

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Scroll to top
%d bloggers like this: