The launch of the new version of the app follows our complaint to the Norwegian Data Protection Authority on Friday, where we ask them to investigate what we deem to be several violations of Data Protection Law.
The circumstance that this leading fitness app with more than 45 million users inadvertently collects personal user data tracking users when the app is not in use and sending the data to third parties, indicates that the app industry needs to do more to earn their users’ trust.
This quick response to criticism by Runkeeper is, of course, welcome, but it is not enough. We expect Runkeeper to ensure that the third party (www.kiip.me) deletes the illegally collected data immediately.
Runkeeper should fix a few more things while they are at it. In our app report, published in March, we criticize Runkeeper for having:
- Too wide licenses for user generated content using (we filed a complaint against Tinder earlier this year for having similar terms)
- No clear policy for deletion of data of inactive users
- No advance notice when changing their terms
- No specification of with which party they share user data
All of these issues, are breaching either the EU Unfair Contract Terms Directive or key articles of Data Protection law, according to our analysis. Runkeeper should now use this opportunity to become the best fitness app when it comes to consumer and data protection. This way they will finally earn their user’s trust.