New research reveals serious privacy flaws in the data practices of new internet connected cars in Australia. It’s yet another reason why we need urgent reform of privacy laws.
Modern cars are increasingly equipped with internet-enabled features. Your “connected car” might automatically detect an accident and call emergency services, or send a notification if a child is left in the back seat.
But connected cars are also sophisticated surveillance devices. The data they collect can create a highly revealing picture of each driver. If this data is misused, it can result in privacy and security threats.
A report published today analysed the privacy terms from 15 of the most popular new car brands that sell connected cars in Australia.
The problem isn’t e.g. CarPlay, it’s the car itself, which is usually entirely custom.
For example with Infiniti they have their own Android based OS and the only way to get a new head unit in the car is to have a full emulator. Otherwise you lose access to anything that the head unit controls.
I don’t know if open source custom car roms will be a thing until we have an LLM that’s smart enough to automate porting the rom to different models of car.