this post was submitted on 24 Jul 2024
269 points (93.8% liked)

AssholeDesign

7403 readers
1 users here now

This is a community for designs specifically crafted to make the experience worse for the user. This can be due to greed, apathy, laziness or just downright scumbaggery.

founded 1 year ago
MODERATORS
Buddahriffic
269
'"Walmartwifi" isn't compatible with iCloud Private Relay' | Store demands privacy sacrifice to use internet in their cavernous dead zone of a building (lemmy.world)
submitted 1 month ago* (last edited 1 month ago) by lemmingnosis to c/assholedesign
116 comments fedilink hide all child comments
 

This is after forcing login to a store account:

At least they don’t hide in their ToS that:

“l agree to let Walmart monitor my use of Walmart WiFi, including to:

  • Determine my presence in Walmart stores
  • Associate information about me with my Walmart account
  • Improve products and services
  • Gather market insights about my in-store purchases and activities”

But that’s not enough, they need to monitor your internet activity further too.

For further reading, some greatest hits (the section headers on Wiki’s Criticism of Walmart):

  • Local communities
  • Allegations of predatory pricing and supplier issues
  • Labor relations
  • Poorly run and understaffed stores
  • No AEDs in stores (automated external defibrillators)
  • Imports and globalization
  • Product selection
  • Taxes
  • Animal welfare
  • Midtown Walmart
  • Opioids settlement
you are viewing a single comment's thread
view the rest of the comments
[–] IsThisAnAI 10 points 1 month ago (6 children)

Yes. Their public network. I have no expectations of any privacy on a public network. This is privacy 101.

[–] [email protected] 4 points 1 month ago* (last edited 1 month ago) (4 children)

You're conflating the individual practice of having a pessimistic threat model with a corporation's entitlement to behave badly.

Of course I assume the worst from Walmart or any other public network — I just think they should have some class and provide a public good to their customers without creepy privacy invasion. Somehow they manage to provide free water in fountains without requiring me to scan my driver's license.

If they published a white paper explaining the Differential Privacy properties of their customer analysis tech, I might revise my opinion.

[–] IsThisAnAI -2 points 1 month ago* (last edited 1 month ago) (3 children)

They aren't invading the privacy here. They are preventing a malicious actor from running an attack via VPN and ssh tunneling in addition to IP address, device, etc. At worst they are associating IP with browsing at competing stores. Preventing the VPN was likely required by a lawyer and auditor and a risky attack vector for a billion dollar company.

If Walmart was breaking https and inserting man in the middle games it would be in their policy. Other commentators went off into fantasy land edge cases where traffic is being decrypted. And it still doesn't change my expectation of privacy on a public hotspot.

[–] FooBarrington 3 points 1 month ago

They aren't invading the privacy here. They are preventing a malicious actor from running an attack via VPN and ssh tunneling in addition to IP address, device, etc. At worst they are associating IP with browsing at competing stores. Preventing the VPN was likely required by a lawyer and auditor and a risky attack vector for a billion dollar company.

Then why do their ToS say they use this data for advertising purposes? If they really need to be able to track you to prevent malicious actors, they can do so without using the data for advertising.

load more comments (2 replies)
load more comments (2 replies)
load more comments (3 replies)