Recently, the evaluation found that 40 apps had problems in the collection and use of personal information, and did not disclose the effective contact information. Among the 40 apps named, there are 13 Internet lending platforms, including Xiaoying card loan operated by Shenzhen yingzhongtong Financial Information Service Co., Ltd. and 'qianqianhua' under Baidu finance (duxiaoman Finance). So, what are the 40 apps? Do you have it on your mobile phone?
Among them, Shanghai Youyang new media information technology Co., Ltd. is the main operator of qianqianhua, and Zhu Guang, CEO of duxiaoman finance, is its legal representative, holding 51% of the shares.
The notice requires that the relevant app operators contact the working group within 10 days from the date of this notice to receive the rectification notice, complete the rectification within 30 days from the date of this notice and submit the rectification report to the working group. If they fail to receive the rectification notice or complete the rectification within the time limit, the working group will recommend the relevant departments to deal with them.
It is understood that in January 2019, according to the notice on carrying out special governance of illegal collection and use of personal information by app, the central network information office jointly established a special governance working group of app, including the National Information Security Standardization Technical Committee, to evaluate the privacy policies of app and the collection and use of personal information, which have a large number of users and are closely related to people's life.
On July 4, the Public Security Department of Guangdong Province also announced the list of 42 apps found to have violations in the second quarter of 2019. 42 apps, such as' Shenzhou Haoyi loan ', have prominent security problems, such as reading user's call records, SMS or MMS beyond the scope, collecting user's address book and known accounts on user's equipment, and using user's equipment microphone beyond the authority.
In addition, according to the National Information Security Standardization Technical Committee's "network security practice guide - essential information specification for basic business functions of mobile Internet applications", among the 16 types of commonly used mobile apps, the essential information collected by the basic business functions of financial lending includes mobile phone number, account information, identity information, bank information and personal credit information Interest, emergency contact information and loan transaction information.
Among them, the identity information is only used for identification and authentication of the lending user, and the emergency contact information is only used for the financial institutions to urge the borrowers when they are overdue. Network operators should allow users to enter emergency contact information, but should not force users to read the address book.