“This applies to work-managed devices and doesn’t affect personal devices.”
While still not a fan of it, this is why you use two phones.
Yeah two phones two laptops are sadly becoming a necessity these days
I knew Kevin Gates was on to something
the perfect showcase about the security guarantees of E2EE. It’s important, but it won’t save you if “your” phone is programmed to snitch on you. same thing applies to screen reader AIs, and whatever you grant accessibility permissions or the assistant app role.
fun fact: on most googled phones the google assistant app is by default, without approval, set as the assistant app, and it has access to screen contents. I don’t know if it has that access all the time, maybe only when you are baited to open it by long pressing the home button or trying to turn off your phone with the power button.
Headline is bullshit. This is an archiving feature for sectors where the law requires employers to retain records of certain kinds of communications. It only applies to phones set up with mobile device management, and it displays a clear notification to the user that the conversation is being logged.
Here’s Google’s announcement.
Headline may be bullshit, but nobody cares.
Pitchforks! Get yeeer pitchforks! Two for a paaaand!
“on managed devices”
For fucks sake, don’t text porn and shit on a company device.
The amount of people who treat work devices like their own is insane. When work is over my laptop is shutdown and closed. There’s no need for it to be on at all until I start working again. In a way I kind of get the corpo ITs reasoning why they’d want this, people messaging their friends and families from the same devices that have company secrets on them
If your company provides you with a device to use for work, then you need to assume they can see anything you do on it, regardless of who makes it. It belongs to the company, not you.
That’s a good rule of thumb, but as a direct point of comparison, it’s not that bad with iPhones. Apple’s MDM protocol is very particular about what admins are allowed to control even on company-owned devices. For example, admins can’t see the Apple ID used on the phone and can’t grant apps screen sharing permission without user approval.
And we certainly can’t access iMessage.
Android is the same way with MDM managed profiles. Nothing in the personal profile can be seen by MDM. It goes as far as making you install apps twice, if you use them in both profiles. Even the clipboard can’t be used to copy from one profile to the other, and screenshotting the MDM profile is typically disabled.
Nothing about this is news to people who actually manage and use MDM, or unique to Android.
well as long as it’s not my employer that can see it, and it’s just the government, I guess it’s okay
Well, if it’s a work phone, ita kind of expected.
A work phone is a liability for a company, so only do work stuff on it.
I mean it doesn’t take Google for them to get a copy of all your sms, it’s pretty effing simple with just the MDM software they use. Or a simple script to pull the SMS database every day and export it to CSV or excel, then import into a db.
How do I know? Because I’ve done this with my own phones since about 2010.
I work in government, and the “work on work phone” rule is sacred. If I do any work on my personal phone, my personal phone becomes subject to Open Records.
E2E encryption is useless if you don’t control the encryption method and storage.
Doing this when even apple does not handover such data is stupid on Google.
As I have said to my coworkers: do not use government systems for personal communications.
Starts? … I think Google has been sharing our data behind our backs like a school girl that promised to keep a secret
What data do they share beyond the stuff you told them they can share?
