×
The Standard Group PLC The Standard Group Plc is a multi-media organization with investments in media platforms spanning newspaper print operations, television, radio broadcasting, digital and online services. The Standard Group is recognized as a leading multi-media house in Kenya with a key influence in matters of national and international interest.
  • Standard Group Plc HQ Office,
  • The Standard Group Center,Mombasa Road.
  • P.O Box 30080-00100,Nairobi, Kenya.
  • Telephone number: 0203222111, 0719012111
  • Email: corporate@standardmedia.co.ke
NEWS & CURRENT AFFAIRS
Digital News
evewoman
Farm Kenya
Entertainment
Sports
The Nairobian
TV STATIONS
RADIO STATIONS
ENTERPRISE
The Standard

Value your privacy? Avoid Google pre-installed apps

By Frankline Sunday | 5yrs ago

Users of Android devices that come with pre-installed apps are exposing their personal information to advertising firms and potential hackers, according to a new study.

In the study that evaluated Google’s Android ecosystem, researchers found that several smartphones that come with pre-installed apps, including popular brands such as Samsung and Huawei, expose users to malware and ad-tracking, often without their knowledge or consent.

The study dubbed “An Analysis of Pre-installed Software” by several scholars was funded by the US and Europe Union, among other partners.

“Regular Android users are, by and large, unaware of the presence of most of the software that comes pre-installed on their devices and their associated privacy risks,” reads the study.

“Users are clueless about the various data-sharing relationships and partnerships that exist between companies that have a hand in deciding what comes pre-installed on their phones.”

The study examined the software pre-installed in more than 1,700 device models from 214 vendors sold across the world, including Nokia, Sony, LG, Huawei and Samsung.

“The openness of Android OS has enabled a complex supply chain ecosystem formed by different stakeholders, be it manufacturers, Mobile Network Operators (MNOs), affiliated developers, and distributors,” explains the study.

All these players are free to add their apps to Android that comes pre-installed with the phone. However, poor software engineering practices introduce weaknesses that expose users to malware and back-doors while leaving their personal data up for grabs by ad tracking services.

“These actors have privileged access to system resources through their presence in pre-installed apps, but also as third-party libraries embedded in them,” the study shows.

“Potential partnerships and deals – made behind closed doors between stakeholders – may have made user data a commodity before users purchase their devices or decide to install software of their own.”

Several applications such as those that provide news apps and weather tracking do not undergo rigorous quality checks, other developers, on the Google Play Store and neither do they provide a ready update to fix vulnerabilities. “The infamous Triada trojan has also been recently found embedded in the firmware of several low-cost Android smartphones,” explains the report in part.

“Other cases of malware found pre-installed include Loki (spyware and adware) and SLocker (ransomware), which were spotted in the firmware of various high-end phones.”

Users from developing countries with lax data protection and privacy laws are at even greater risk, with some pre-installed apps collecting users’ geographic location data. The apps also have access to users’ contacts and text messages, which are often later linked to advertisers.

President Uhuru Kenyatta last year signed the Data Protection Act 2019 into law, introducing new requirements for entities that handle and process personal digital information on their consumers. The Data Protection Act, 2019 that is modelled along European Union (EU’s) General Data Protection Regulations (GDPR) makes it illegal for entities to collect personal data from their users without obtaining “informed consent.” According to the Act, companies have to inform users of any personal data they are collecting, the purpose of the collection and the period the data will be stored.

Jail term

The law also gives users the right to decline to have their data collected or processed as well as demand to have false data corrected or deleted upon demand.

A person found guilty of interfering with the personal data of others or infringes on their right to privacy will be liable, on conviction, to a fine not exceeding Sh500,000 or to imprisonment for a term not exceeding two years, or to both.

However, with most pre-installed apps, users’ consent is negated since they have no choice but to accept Android’s terms of service, as well as the manufacturer’s one to activate the device.

“When booting them, three devices did not present privacy policy at all, only the Android terms of service,” explains the report.

“The rest rendered a privacy policy that only mentions that they collect data about the user, such as the International Mobile Equipment Identity (IMEI) for added value services.”

More than 50 international organisations have now written to Alphabet Inc, the parent company for Android’s developer Google, asking the tech giant to take action against the “exploitative pre-installed software.”

“These phones carry the “Google Play Protect” branding, but research shows that 91 per cent of pre-installed apps do not appear in Google Play – Google’s app store,” said the open letter.

Signatories to the open letter include Privacy International, Amnesty International, The Tor Project and Strathmore University’s Centre for Intellectual Property and Information Technology.

“These pre-installed apps can have privileged custom permissions that let them operate outside the Android security model,” states the letter.

They want pre-installed apps to have update mechanisms through Google Play and without a user account.  

fsunday@standardmedia.co.ke  

Related Topics

Google Data Protection google maps Cyber Security Mobile Phones Smartphones
.

Similar Articles

Global experts convene in Nairobi for Clean-Air Forum 2025
Global experts convene in Nairobi for Clean-Air Forum 2025
Air quality experts from across the world will convene in Nairobi next week for the third edition of the Clean-Air Forum to discuss the pressing issue of pollution.
Business
By James Wanzala
2 hrs ago
Craft Silicon banks on 'small talk AI' to offer voice-powered financial assistance in local languages
Craft Silicon banks on 'small talk AI' to offer voice-powered financial assistance in local languages
The new AI chatbot is uniquely designed to integrate with banking core systems and engage users through voice commands in both English and local languages.
Sci & Tech
By Patrick Vidija
8 hrs ago
The worst of Trump's tariffs on trade has passed, says report
The worst of Trump's tariffs on trade has passed, says report
StanChart global outlook predicts trade consensus between America and the rest of the individual countries. Debate on tariffs impact has transcended beyond possible economic losses.
Business
By Stanley Ongwae By Stanley Ongwae
15 hrs ago
Metropol, KBA to boost women led businesses
Metropol, KBA to boost women led businesses
Metropol CRB and the KBA have partnered to enhance the collection and analysis of data with a key focus on women-led micro, small and medium enterprises (MSMEs)
Business
By Irisheel Shanzu By Irisheel Shanzu
21 hrs ago
TECNO to launch SPARK 40 series as first smartphone powered by Helio G200 chipset
TECNO to launch SPARK 40 series as first smartphone powered by Helio G200 chipset
TECNO, the AI-driven innovative technology brand, is set to make global waves with the upcoming launch of its SPARK 40 Series.
Sci & Tech
By Bernard Orwongo
23 hrs ago
Unlocking Africa's potential: The promise of blended finance
Unlocking Africa's potential: The promise of blended finance
Africa stands at a pivotal era in its development trajectory. With a rapidly growing population, an increasingly youthful demographic, and vast untapped resources.
Opinion
By Kariuki Ngari
1 day ago
IGAD rallies African unity at AU mid-year summit, champions Agenda 2063 vision
IGAD rallies African unity at AU mid-year summit, champions Agenda 2063 vision
IGAD is playing a central role in advancing Africa’s integration and development agenda as the continent prepares for the 7th African Union Mid-Year Coordination Meeting in Malabo.
Business
By Jael Musumba
1 day ago
Cybervergent listed among 2025 WEF technology pioneers
Cybervergent listed among 2025 WEF technology pioneers
Among the honorees is Cybervergent, one of the few African firms to receive this global recognition.
Sci & Tech
By Esther Nyambura
1 day ago
Tax collections rise to Sh 2.571 trillion as KRA exceeds target
Tax collections rise to Sh 2.571 trillion as KRA exceeds target
KRA surpasses revenue target of Sh2.555 trillion for financial year 2024/2025 to collect Sh2.571 trillion, attributes performance to GDP growth of 4.7 per cent in key sectors.
Business
By Ronald Kipruto
1 day ago
State to quantify economic value of natural resources
State to quantify economic value of natural resources
The government's statistician has unveiled a plan to collate data that would quantify the contribution of natural resources to the country’s gross domestic product.
Business
By Graham Kajilwa
1 day ago
.

Latest Stories

Global experts convene in Nairobi for Clean-Air Forum 2025
Global experts convene in Nairobi for Clean-Air Forum 2025
Business
By James Wanzala
2 hrs ago
Craft Silicon banks on 'small talk AI' to offer voice-powered financial assistance in local languages
Sci & Tech
By Patrick Vidija
8 hrs ago
The worst of Trump's tariffs on trade has passed, says report
Business
By Stanley Ongwae
15 hrs ago
Metropol, KBA to boost women led businesses
Business
By Irisheel Shanzu
21 hrs ago
.

The Standard Insider

.

Digger Classified

GET OUR NEWSLETTER

Subscribe to our newsletter and stay updated on the latest developments and special offers!

CONNECT WITH US

FOR THE LATEST JOB ADVERTS

join Digger Classifieds telegram channel
The Standard
© 2025. The Standard Group PLC. All rights reserved