Our app has been banned on Google Play and we don't understand the reason.
We are a small company that developed a rather simple application that shows the users a list of tasks and tracks completion of these tasks. Similar to JunoWallet but a different one.
The app had been released in May and everything was fine until a few days ago the app has been suspended in Google Play Market. The reason was described in the e-mail:
"This is a notification that your application, XXXXX , with package ID YYYYYY, has been removed from the Google Play Store.
REASON FOR REMOVAL: Violation of section 4.4 of the Developer Distribution Agreement.
After a regular review we have determined that your app interferes with or accesses another service or product in an unauthorised manner. This violates the provision of your agreement with Google referred to above."
We had no idea of could be possibly wrong, so we asked the Google if it might be a mistake, or result of miscommunication. In response I received this e-mail:
"We have reviewed your appeal and will not be reinstating your app. This decision is final and we will not be responding to any additional emails regarding this removal.
If your account is still in good standing and the nature of your app allows for republishing you may consider releasing a new, policy compliant version of your app to Google Play under a new package name. We are unable to comment further on the specific policy basis for this removal or provide guidance on bringing future versions of your app into policy compliance. Instead, please reference the REASON FOR REMOVAL in the initial notification email from Google Play."
Great but not really helpful. I'm not even sure where to ask or if I'm ever allowed to ask anything how to fix the app.
The list of tasks is provided by a famous global vendor that's integrated into thousands of apps, so it might not be the problem. The only idea we have regarding possible "unauthorised access" is that the app scans the list of installed packages to detect fraud with BlueStacks emulators. But this action doesn't require special authorization, and there are lots of application in the Play market that scan installed apps, even specialised ones, like "App List Backup".
We even could delete this functionality, if we were sure that it's a problem.
I'm pretty sure that we are not the only one who fell in such situation. Does anyone have any experience on how to work this out? Is it possible to approach Google and get practically useful feedback?
My was recently suspended too, for a different reason. Can you please tell me how long they took to reply to your appeal?
shararti said:
My was recently suspended too, for a different reason. Can you please tell me how long they took to reply to your appeal?
Click to expand...
Click to collapse
Not sure about the exact number of hours but it was certainly less than a day
I remember there is a on-line feedback in google play, you could ask questions by online phones calls, although it may be not related to the apps, but i think it`s better to be solved by voice communication rather than pale messages,
PS. we`ve met this kind of problem with Apple, as they claim we`re violating the "unauthorized" kind of problem. And we`ve done the resummit that app(revised) back and forth, it`s a quite tough experience.:crying:
Iankicksass said:
I remember there is a on-line feedback in google play, you could ask questions by online phones calls, although it may be not related to the apps, but i think it`s better to be solved by voice communication rather than pale messages,
PS. we`ve met this kind of problem with Apple, as they claim we`re violating the "unauthorized" kind of problem. And we`ve done the resummit that app(revised) back and forth, it`s a quite tough experience.:crying:
Click to expand...
Click to collapse
Yeah. But I was never able to get any number or anything from them. Officially I meant. The most informative thing I get from them was this text: "Thank you for your email. At the moment we're only able to respond to the emails submitted through our contact form in the Developer Help Center." And they simply do not have the form for direct questions. They suggest to use forum and never answer there.
My app was suspended 2 times
My experience:
1. I developed my next app. I Called it "Gmail Reader", and used a gmail-like icon with additional graphics around it. Not very wise probably - but as I saw hundred another apps having gmail logo in their icon, I thought it was OK. Aaand.. Suspended.
2. I wrote a reply to the suspension notification, and I got a machine reply. Then I replied second time, and finaly a man answered:
"While we are unable to provide specifics as to how to bring your app into compliance, please understand that usage of certain app titles and images may cause confusion among users who are searching for the legitimate app from the original creator. Please visit our Policy Help Center for more information and examples on our policy regarding Intellectual Property.
If we can assist you further, please let us know."
So That was it - the icon and the title, I thought.
3. So I repackaged, renamed, changed icon (drawn it myself). Instead of Gmail in the frist place I put "XYZ for Gmail". However, I noticed later, that I forgot in my screenshots on 2 places the previous icon - so not even in the main place, just somewhere in the screenshot.
Suspended again. This time, no answer, I filed an appeal, answered in half day - no dispute, app terminated. But i RECOMMEND to file an appeal - there is a form for that - as you might get closer to the reason why. I got this:
If your account is still in good standing and the nature of your app allows for republishing you may consider releasing a new, policy compliant version of your app to Google Play under a new package name. You can learn more about why your app was suspended by reviewing our policy on impersonation. We are unable to comment further on the specific policy
I have NO idea WHO the hell I impersonated. I would really like to know.. And even more I'd like to receive a warning before suspension.
Up in the corner of developers console there is a questionmark and in certain hours if you click it, instead of EMAIL you will see LIVE CHAT. From that chat I learned, they will not and cannot give you ANY support regarding the policies.
I also learned, that a "account in good standing" means that you can still publish apps.
4. Previous app had thousand unique installs in 3 days. So of course I repackaged....etc.. everything again, now extremely carefully, no Gmail word used in title. But I'm aware now, that I cannot know everything and they can suspend for any reason I'm not aware of - I maybe used some words mattel copyrighted DD SO it is really "fun". Let's see.
That's my story until now, will post again - hopefully will get wiser without further suspensions - it is time consuming sh** !!!
BTW, I wrote a letter to Google Dev Support, so they think of creating support for policies - as there are many developers with good intentions contributing a lot, not knowing WHY they are stopped.
Best of luck to all...
Hello, we are facing same problem for one of our app which is as of now available in India only.
We are curating videos from youtube. We have not taken written permission from youtube or content owner.
We are not monetising anyhow as of now.
However, there are various app who are indexing videos from youtube similarly like us.
Please help us with this sorting it out. As this is very important to us. Also how do we contact youtube for written approval?
Related
/!\ BE AWARE OF YOUR APP, DavinciDevelopers try to steal them and sell them on the market !!
Hello guys,
Be careful, if you post an apk of your free app here, somebody will try to take the apk, remove the signature, and upload it as a paid version on the market !
The proofs : (edited to add new stolen softwares)
Llamadroid
- http://forum.xda-developers.com/showthread.php?p=10113570#post10113570
- http://www.androlib.com/android.application.com-kebab-llamadroid-zzjjD.aspx
(removed today, on 5th january)
Typo clock
- http://forum.xda-developers.com/showthread.php?t=814054
- http://www.appbrain.com/app/beautiful-clock-widget-3d/com.semicuda.typoclock
Iron soldiers
- http://forum.xda-developers.com/showthread.php?t=862875
- http://www.appbrain.com/app/iron-soldiers/vuxia.ironSoldiers
(removed from market today, on 5th january, but still referenced)
Championship racing 2010
- http://www.vividgames.com/sub_game.php?id=42
- http://www.androlib.com/android.application.com-vividgames-championship_racing_2010-zzxwq.aspx
(removed today, on 5th january)
Liquid wallpaper
http://forum.xda-developers.com/showthread.php?t=878252
http://www.appbrain.com/app/liquid-physics/livewallpaper.liquid
Bluetooth Scanner
http://forum.xda-developers.com/showthread.php?t=900923
http://www.androidzoom.com/android_games/casual/bluetooth-scanner_pvqg.html
(New !! Now, we have proof that ALL his apps are stolen)
And even Gameloft best sellers (paid games) :
http://www.androlib.com/android.app...ndroid-gand-gloftspaw-heroofsparta-zjCDi.aspx
(removed from market today, on 5th january, but still referenced)
http://www.androlib.com/android.application.com-gameloft-android-gand-gloftavar-avatar-zjCEx.aspx
(removed from market today, on 5th january, but still referenced)
Minigore
http://minigore.blogspot.com/2009/07/what-minigore-is.html
http://www.appbrain.com/app/minigore-hd/com.ambushgames.minigore
http://www.androlib.com/android.application.com-ambushgames-minigore-zzjqD.aspx
Zuma's revenge
Original
http://www.zumasrevengegame.com/
http://store.steampowered.com/app/3620/
Scammers
http://www.appbrain.com/app/zumas-revenge-hd/com.popcap.zumas_revenge
http://www.appbrain.com/app/zumas-revenge/com.fox.game.zumasrevenge
How is it possible ?
Google does not check your apk signature when you upload a software.
Even if you signed yous apk with you key, somebody else can put this on his google account.
The signature can be deleted easily if needed.
He can change the title of your app, so nobody see it, but he can't change the apk name nor the icon.
Why do we post our apk here ?
To have testers, to correct bugs, to have a perfect look and feel before put it on the market.
Because on the market people are rude, we have only one chance, so we need to avoid bugs.
And when we put our app online, we want to choose if it's paid or free (with ads or not).
What is the problem ?
If DavinciDevelopers steal and upload your app, he will lock your pak name.
2 apps can't have the same name on the market.
You may have a name like com.myname.myapp.apk
Where "myname" is the same in every app you do.
If he take that, this is a major issue for you because you will be associated to him on every search (google.com, market...).
So, you will have to change your app name and maybe your company name....
Within 1 or 2 days, the market is parsed from androlib, androidzoom, appbrain... and it's done. Google.com will see those websites, and you are trapped.
You will have your buggy app on the market, some people will pay for that, the thief will have some money, and every users will have a bad opinion of your app.
Why DavinciDevelopers does this ?
To make benefit from your work.
Because he doesn't care you are working from a long time on your app.
Because he doesn't care if your work is ruined, he will find somebody else.
How can we be protected ?
Because 2 apps can't have the same name, you should put your app on the market first.
If your app is in development stage, you can upload it as "draft", so it will not be visible on the market, but the name will be locked.
Who is DavinciDevelopers ?
Somebody that have 83 apps on the market !
Almost all of them are themes.
If you look the package name you can see for example :
com.nd.android.pandatheme.p__3d_android_theme
at :
http://www.androlib.com/android.application.com-nd-android-pandatheme-p__3d_android_theme-qAmiz.aspx
google search : "pandatheme", first link :
http://home.pandaapp.com:888/
So he is not a developer. He makes themes with a free online tool and sell them... nice.
And for the real apps he uploaded (about 5), they all are stolen, coming from poland, germany, and other places.
Almost every of them comes from XDA dev forums.
ps : this message should be marked as sticky in every development section.
Wow, I can't believe this
It gets even better! Check this out:
http://www.androlib.com/android.app...ndroid-gand-gloftspaw-heroofsparta-zjCDi.aspx
http://www.androlib.com/android.application.com-gameloft-android-gand-gloftavar-avatar-zjCEx.aspx
He released the liquid physics live wallpaper I posted on here as well.
http://forum.xda-developers.com/showthread.php?t=878252
http://www.appbrain.com/app/liquid-physics/livewallpaper.liquid
Attacking GameLoft was a bad move for this/these guy(s).
They hit somewhere they shouldn't have I think.
Khoral said:
Attacking GameLoft was a bad move for this/these guy(s).
They hit somewhere they shouldn't have I think.
Click to expand...
Click to collapse
He has ripped off Popcap as well
http://www.appbrain.com/app/zumas-revenge-hd/com.popcap.zumas_revenge
And MiniGore
http://www.appbrain.com/app/minigore-hd/com.ambushgames.minigore
So STICKY!!!
It's really funny the website slogan:
http://davincidevelopers.weebly.com/
Innovation is everything. WTF
What do you thing, does it matter to left a comment like: app is stolen,... Seller steals apps from real developers or something else in market for "his" apks?
I wrote an email to appbrain and told them about this: maybe they can at least exclude this person from appbrain???
Has anyone emailed him to let him know that we all know?
Dirtbags
Sent from your mom's phone
kiltedthrower said:
Has anyone emailed him to let him know that we all know?
Click to expand...
Click to collapse
Like they would care... they just want to make some quick money from other's work.
The only way we can solve this if somehow we contact google to do something about it.
Since yesterday, he deleted some apps from his market.
I'm the developer of iron soldiers, I had been notified yesterday by another xda forum user that he stole my app.
I emailed him and within 3 or 4 hours he removed the app.
He answered me that he is so sorry, that he shares his key with other people and he didn't know... blabla.
Anyway, he has many stolen apps so he is hard to believe.
Now I see that thanaos2042 created a new thread (thanks ) and that google already referenced it :
If you google "davincideveloppers", this post is already in the first page !
Internet has a memory, and his name will not be forgotten.
they sell a lot of apps which is 80++ but they still using free website ....what a cheapskate...
Holy ****. Mods, please sticky this!!
I sincerely hope Google kicks their ass for this. I'm not familiar with the ToS but I hope they get hit with a lawsuit and instant refunds to say the least.
Stealing from Indie Developers is simply ****ed up. Wouldn't it be funny if a massive attack was launched against this asshole's website? (wink wink)
Chalup said:
Stealing from Indie Developers is simply ****ed up. Wouldn't it be funny if a massive attack was launched against this asshole's website? (wink wink)
Click to expand...
Click to collapse
No, it wouldn't. He/they are using a free web host so that would effectively be an attack on a whole lot of innocent sites.
Terrible to steal!
stolen apps are all over the market, ive even seen the r2d2 live wallpaper from the droid, on the market for 99p,
Good to know about these flagrant ripoffs
Looks like someone took their website down. The link now shows a page that isn't published.
Edit: Looks like Google could do something about this since it appears to be a violation of the terms of service (see 11.4, 13.3 and 16)
11. Content licence from you
11.1 You retain copyright and any other rights you already hold in Content which you submit, post or display on or through, the Services. By submitting, posting or displaying the content you give Google a perpetual, irrevocable, worldwide, royalty-free, and non-exclusive licence to reproduce, adapt, modify, translate, publish, publicly perform, publicly display and distribute any Content which you submit, post or display on or through, the Services. This licence is for the sole purpose of enabling Google to display, distribute and promote the Services and may be revoked for certain Services as defined in the Additional Terms of those Services.
11.2 You agree that this licence includes a right for Google to make such Content available to other companies, organizations or individuals with whom Google has relationships for the provision of syndicated services, and to use such Content in connection with the provision of those services.
11.3 You understand that Google, in performing the required technical steps to provide the Services to our users, may (a) transmit or distribute your Content over various public networks and in various media; and (b) make such changes to your Content as are necessary to conform and adapt that Content to the technical requirements of connecting networks, devices, services or media. You agree that this licence shall permit Google to take these actions.
11.4 You confirm and warrant to Google that you have all the rights, power and authority necessary to grant the above licence.
13.3 Google may at any time, terminate its legal agreement with you if:
(A) you have breached any provision of the Terms (or have acted in manner which clearly shows that you do not intend to, or are unable to comply with the provisions of the Terms)
16. Copyright and trade mark policies
16.1 It is Google’s policy to respond to notices of alleged copyright infringement that comply with applicable international intellectual property law (including, in the United States, the Digital Millennium Copyright Act) and to terminating the accounts of repeat infringers. Details of Google’s policy can be found at http://www.google.com/dmca.html.
16.2 Google operates a trade mark complaints procedure in respect of Google’s advertising business, details of which can be found at http://www.google.com/tm_complaint.html.
I just received an update notification for 'Google Play'. Being the cynical type, these type of changes make me suspicious. Oddly enough, a quick search throughout XDA and the internet seems to show that people's only objections to this change revolve mainly (perhaps only ) around the name change. Most don't like the way it sounds, the icons, theme integration, etc.
I find it odd that I can find no mention of Google's probable intent in this matter beyond marketing and 'unification' of Google services. I find it beyond coincidence that Google, just a week or two ago, started sending out notification of changes to their privacy policy.
More than that, I find it odd that no one suspects that there is more behind this than a simple rebranding. After all, Google is a corporate monster whose CEO has clearly and unequivocally stated that privacy of the individual is not only of no concern, but that violation of such privacy should be a given!
A quick look at some of Eric Scmidt's public statements leaves no doubt:
http://www.stateofsearch.com/top-15-of-eric-schmidts-remarkable-quotes/
http://www.seobook.com/eric-schmidt-quotes
http://www.huffingtonpost.com/2010/11/04/google-ceo-eric-schmidt-privacy_n_776924.html#s170420
No doubt at all in my mind. After all, to the contrary of what many may think, Google is not free. Google makes money (and lots of it) by collecting and selling our personal data.
I'm not sure, however, what can be done about it, other than to either root and lock down one's phone as much as is possible, whilst still retaining as much as possible of the functionality desired. One sure way is to give up my smartphone. The former is an ongoing practice here. The latter? I'm not ready for that (yet).
But does no one really see a day when smartphone tech will be used to track and control everything we do? Are we not anticipating that Government will see the value of this data collection technology and use it to their own ends, good or bad?
Another example:
http://bits.blogs.nytimes.com/2012/03/01/android-photos/
Our personal data is already being mined and profited from by untrustworthy entities, but at least they only seek profit. How long can we expect profit to be the only driving force?
Paranoid? Maybe. But remember the old saying: "It's not paranoia if they really are out to get you...". To my way of thinking, if they aren't now, they soon will be.
The solution is to crate a separate system. Like diaspora. An separate market, mabe an XDA-Market. I was searching the xda app on the market, yesterday it was there, today not but only the premium. This "update" is not normal, updates are here only for fix and repair from my point of view.
Yep is odd.
Let's create an indipendent system for freedom and liberty, open sorce to improve and sharing ideas.
No country restriction. One world, one nation, one free net global wide.
Peace
Sent from my LG-P500 using XDA
As you have indirectly pointed out, one can no longer get into the Android apps market unless you agree to accept whatever Google's legal terms are for their 'Play' and 'Books' services. But I don't intend ever to use these.
I wonder how applications developers feel about this.
Google really is getting beyond the pale, presumably introducing this change on a day when they hope that attention will be focussed on whatever Apple are up to. I shall now be looking for alternate market places. A real nuisance for me as I have a new phone and had intended installing my standard set of add ons.
I think it's a nice idea to keep similir Google's apps under the same brand so it's easier to identify and ,for them , easier to put in market.
If you ever needed evidence that this makes sense then you only need to know the conversation I had with a work colleague today.
..stuff that lead up to this conversation...
Me: Yeah, the Android Market is now called Google Play Shop
Them: Really? Why have they called it that?
Me: Because Android is made by Google.
Them: Oh, I didn't know that!
Seems that Android is known as a brand of its own. I just assumed everyone (or most people) knew that.
I also think that "market" gives a bad connotation comparing to play store
Yes
Re-branding to compete, yes...
I hate it.
Sent from my Nexus S using xda premium
privacy ...
What do you think about this statement ? (in Google Play Terms of Service)
2.4 From time to time, Google may discover a Product on Google Play that violates the Developer Distribution Agreement or other legal agreements, laws, regulations or policies. You agree that in such an instance Google retains the right to remotely remove those applications from your Device at its sole discretion.
So, if i understand right, Google have the right to delete things in my phone ??? C`mon ... isn`t this weird ??? Google Play mean that Google can play with our phone`s content ???
joyradu said:
What do you think about this statement ? (in Google Play Terms of Service)
2.4 From time to time, Google may discover a Product on Google Play that violates the Developer Distribution Agreement or other legal agreements, laws, regulations or policies. You agree that in such an instance Google retains the right to remotely remove those applications from your Device at its sole discretion.
So, if i understand right, Google have the right to delete things in my phone ??? C`mon ... isn`t this weird ??? Google Play mean that Google can play with our phone`s content ???
Click to expand...
Click to collapse
Didn't google retain this right with the market way before this change?
Sent from my ADR6425LVW using xda premium
Google Play
CharliesTheMan said:
Didn't google retain this right with the market way before this change?
Sent from my ADR6425LVW using xda premium
Click to expand...
Click to collapse
Did it ? I admit i don`t remember, it was a stock-app and if there was a question about my agreement first time when I used market - well i didn`t read it because i was sure the stock-apps can`t be sooo ... malicious ?
Maybe is not the best word but how would one describe an app wich is able to delete his phone content without his permission ?
joyradu said:
Did it ? I admit i don`t remember, it was a stock-app and if there was a question about my agreement first time when I used market - well i didn`t read it because i was sure the stock-apps can`t be sooo ... malicious ?
Maybe is not the best word but how would one describe an app wich is able to delete his phone content without his permission ?
Click to expand...
Click to collapse
It's in Google's best interests to be able to do this. They're most likely only getting you to agree to it so that when you download that malware app that starts sending text messages to premium rate numbers, they can remote uninstall it when they find out. It's of benefit to both parties.
Wow - I'm normally really cynical!
It would still be nice to have the choice to decide if you want that done.
-------------------------------------
Sent via the XDA Tapatalk App
http://forum.xda-developers.com/showthread.php?t=1533775
Work-In-Progress
Domain is up
AppFeed.net
Coomon problem:
As many of you knows, there is no app or service for Android where users can request notifications of application updates, especially the price changes (mainly price drop), or updates for slow updating apps.
Solution:
My solution was to develop a website where users can add applications to a list, and get a unique RSS/Atom feed that notifies them whenever the apps gets updated (Price, Version, etc).
The feed can be added to any application that support it: Desktop Readers/notifiers (tested with Thunderbirds), Web-based readers (Tested with Google Reader).
I intended to add other forms of notifications, but later found that with the service if this then that I can create tasks that monitor my unique feed that do everything else: Email notifications, Twitter posts, or any other channel provided by the ifttt.com service.
Usage examples:
Some usage examples for such a service:
1) I like a paid app, but its cost is a bit high for me, so I add the app to my watch list to get notified if/when the app gets on sale, instead of having to check frequently or miss an opportunity to get the app during a great sale (happened to me few times already).
2) I like and played a game, and finished all levels, the developer promised extra levels, instead of leaving the game installed on my device and wait for updates, I can uninstall it and add it instead to my list and get notified when it's updated.
3) With Android Play Store auto update feature enabled, I miss most app updates, with notifications on selected apps I can see when those apps gets updated.
4) Other usages...
Status of the project
Currently this project is being developed and tested by just myself, and it seems to be working as expected. But to have a good service, I need some to extra help to test it better, to suggest features, etc.
What is mainly missing is some legal advice, such as a privacy policy and term of service, and on whether I can put up such a service (does Google allow this kind of service? knowing they do not provide API for the Google Play).
What is still missing the some text, I am not a native-English speaker so still trying to put things correctly.
Privacy
I take privacy issues very seriously.
To make this service work, I opted for using 3rd party sign-in (Google and Twitter), what is saved on the DB is a hash of the sso unique token, not even I can get the clear one. User name and email are required, and are saved encrypted in the DB (with AES), and get decrypted only during login to show your name on the top bar, nothing else.
Here is a screenshot of the main wishlist:
And here is what you get in the rss feed, through Google Reader:
Questions or Problems Should Not Be Posted in the Development Forum
Please Post in the Correct Forums & Read the Forum Rules
Moving to Q&A
lufc said:
Questions or Problems Should Not Be Posted in the Development Forum
Please Post in the Correct Forums & Read the Forum Rules
Click to expand...
Click to collapse
My topic is more development than questions, maybe not an Android App but and Android service
Updated post #1.
project is going well, anybody is interested, please let me know (by leaving a comment), if I get enough feedback, I'll get a domain and host it somewhere, currently it is running on a personal domain.
Update:
Got a domain for my new service, and now it is up and running.
check the first post for link and info
Hi,
while using google for authentication, I am actually notified that your website wants to "manage your contacts".
What is the reason behind that?
Thanks a lot
ale
alanzed said:
Hi,
while using google for authentication, I am actually notified that your website wants to "manage your contacts".
What is the reason behind that?
Thanks a lot
ale
Click to expand...
Click to collapse
For the authentication I use the HybridAuth library, and this is the minimum that I can ask for from Google for use the OAuth authentication, if there is anything less, I'll do it, but I can't find how.
Twitter authentication has just Read Only access (Minimum available).
Update:
Found the solution, now it doesn't ask for Manage Contacts...
I've noticed sometime last year that local news apps developed by LSN Inc. requires hardware control of the phone camera. I suspect those apps actually snap pictures every time the app is opened.
Can the experts here help me validate this suspicion? Is there a way you can inspect for malicious codes in those apps?
Why suspicious?
sp_1st_timer said:
I've noticed sometime last year that local news apps developed by LSN Inc. requires hardware control of the phone camera. I suspect those apps actually snap pictures every time the app is opened.
Can the experts here help me validate this suspicion? Is there a way you can inspect for malicious codes in those apps?
Click to expand...
Click to collapse
Permission to use the camera is explicity requested. It probably supports a feature for the user to send pictures/videos back to the news station.
LSN Mobile has a legitimate looking website, including names of the officers
http://www.lsnmobile.com/about_us/our_team.html
... as well names/numbers/email for key contact personnel and physical address of the business:
http://www.lsnmobile.com/contact_us.html
Can I ask what makes you suspicious about these Apps?
Not sure if I should post a paranoid parrot meme, or a conspiracy keanu meme.
First, I can't find in the apps where a user can actually use the camera feature. And when opening the apps, it gives a completely black screen for several seconds before getting to the main interface. It makes me think it snaps an image during the black screen delay.
Why require permission to access the camera when there is no user accessible feature that requires it?
To GermainZ - I have seen you on the Tasker forum and always considered you a knowledgeable and helpful guy. Give this guy a break - he's just asking a question.
sp_1st_timer said:
First, I can't find in the apps where a user can actually use the camera feature. And when opening the apps, it gives a completely black screen for several seconds before getting to the main interface. It makes me think it snaps an image during the black screen delay.
Why require permission to access the camera when there is no user accessible feature that requires it?
Click to expand...
Click to collapse
The software from LSN gets a clean bill of health from mobilesecurity.com
http://appview.mobilesecurity.com/search?q=LSN
I downloaded the Local TV station LSN program to check it out, and I agree with you there is no accessible feature within the software to use the camera within the program that I looked at. Perhaps a capability for users to send pictures/videos is left over from a previous version or reserved for a future version. Perhaps it is a feature built into the general program that needs to be activated by the specific local TV station. At any rate, given the very wide use of this software by a seemingly-legitimate company, I personally wouldn't have a high level of concern about it. Also,perhaps it will help you to know that it can only take pictures when the program is running, not all the time.
There is a feature in the program where you can contact the developer... you might want to try that out to see if they have an explanation that satisfies you (and post any results back here if you do). There is certainly nothing wrong with a cautious and questioning attitude when it comes to permissions.
These posts make my day.
Sent from my cm_tenderloin using xda app-developers app
Electric Pete,
Thanks for not ridiculing my question. Yes, I presume it could only take pictures when the app is on. The are people who likes reading the news or checking the weather forecast while in the bathroom or as they come out of the bathroom. It's up to your imagination.
I'm not sure they would care to answer my question, because when I pointed this out in my user review of the app, my review is made invisible to the public. I actually waited for several days to see if my review would eventually become visible, but never. My reviews on other apps are visible.
If they are not guilty, they should not suppress my "wrong suspicion".
If the review you mentioned is on Google Play, I don't think the developer has any capability to supress that. Google runs the show there.
I do see your point about privacy. Reading the permissions and questioning the ones that don't make sense is good practice in my opinion.
electricpete1 said:
If the review you mentioned is on Google Play, I don't think the developer has any capability to supress that. Google runs the show there...
Click to expand...
Click to collapse
That is interesting. Why would Google suppress my review which can be considered laughable (as indicated by some reactions in this thread).
Anyways, thank you for giving time replying to this thread. If only I got the knowledge to inspect program codes of these apps...
By the way, the local news here where I live switched to different app provider. They listened to my concern.
Bottom line is, you could decompile the apk, edit the manifest and remove the camera permission (you could also check the output; or try a tool that decompiles an apk to java code, which will be much clearer, but it's still in beta if I'm not mistaken).
Monitoring the logcat/using the "ps" shell command might also reveal something useful, but I'm not if taking pics within an app starts a separate camera process ps would show.
Also, the logcat probably won't show anything useful, tho (the same thing applies; and if the app is malicious, it won't output anything malicious-related to the logcat).
Still think it's paranoid, tho. Why not contact the devs?
recently received many mails from google for many of my apps.
The email content is:
Code:
Hi Developers ,
We reviewed your app, XXXXXXX, with package name XXXXXX, and noticed that it violates our developer terms.
REASON FOR WARNING: Violation of the Deceptive behavior policy
You must explain to users why you are requesting the ‘android.permission.BIND_DEVICE_ADMIN’ in your app. Apps must provide accurate disclosure of their functionality and should perform as reasonably expected by the user. Any changes to device settings must be made with the user's knowledge and consent and be easily reversible by the user.
Please complete the following actions within 7 days, or your app will be removed from Google Play: Read through the Deceptive Device Settings Changes policy for more details, and make sure your app complies with all policies listed in the Developer Program Policies. If you don't need the BIND_DEVICE_ADMIN permission in your app: Remove your request for this permission from your app's manifest. Sign in to your Play Console and upload your modified, policy compliant APK. Or, if you need the BIND_DEVICE_ADMIN permission in your app: Include the following snippet in your app’s store listing description: “This app uses the Device Administrator permission.” Provide prominent user facing disclosure of this usage before asking the user to enable this permission within your app. Your disclosure must meet each of the following requirements: Disclosure must be displayed in normal course of usage of your app. Your users should not be required to navigate into a menu or settings to view disclosure. Disclosure must describe the functionality Device Admin permission is enabling for your app. Each security policy used with the Device Admin request must be declared in your disclosure, and each policy must be accompanied with justification for the request. Disclosure cannot only be placed in your privacy policy, TOS or EULA. Alternatively, you can choose to unpublish the app.
All violations are tracked. Serious or repeated violations of any nature will result in the termination of your developer account, and investigation and possible termination of related Google accounts.
Regards,
The Google Play Team
its is enough to update the store listing and the privacy policy ?
I do not think so. You were clearly told that `` Disclosure must be displayed in normal course of usage of your app. Your users should not be required to navigate into a menu or settings to view disclosure.'' and ``Disclosure cannot only be placed in your privacy policy, TOS or EULA. ''
I received the same email regarding my app.
The instructions are quite clear at the first glance. On a closer look, however, it's not so clear, at least in my case:
in my app, the device administrator function is not strictly needed. It depends on what the user wants. The default is that it is not needed. If I would now push a notice and the handling to the main activity, I would hopelessly scare and annoy users who may never even get close to giving the app device admin permissions.
The process to request device admin rights includes a textual description by the app explaining why the permission is needed, and what sub-parts of the device admin rights. In my eyes this already fulfills the requirements in the email. Or does it not?
I'm in a very awkward position right now. The time they allow me to react is very short (7 days) and they don't even provide a reply address. I have now contacted the support team, but if I don't a reasonable response within a few days I might have to butcher this out over night and sure as hell will get bad reviews because of this.
For me it makes sense to remove this functionality for a while. And try to find out from Google what they mean by ``normal course of usage''. I'm afraid that you must show this disclosure in main activity every time regardless.
grfgames said:
For me it makes sense to remove this functionality for a while. And try to find out from Google what they mean by ``normal course of usage''. I'm afraid that you must show this disclosure in main activity every time regardless.
Click to expand...
Click to collapse
Yeah. Thing is that removing an integral part of an app on such short notice is likely to cause regression, let alone angry users that ask where the hell this has gone.
Google Play answered me now, twice, but only with the same lame text blocks. No real human interaction. I've now also posted to G+, let's see if anything happens there.
If I advertise this on the main page, I'm totally over-advertising an optional feature and even invite people to use it, which would be contrary to what Play want to archive. This sucks big time.
xrad said:
Yeah. Thing is that removing an integral part of an app on such short notice is likely to cause regression, let alone angry users that ask where the hell this has gone.
Google Play answered me now, twice, but only with the same lame text blocks. No real human interaction. I've now also posted to G+, let's see if anything happens there.
If I advertise this on the main page, I'm totally over-advertising an optional feature and even invite people to use it, which would be contrary to what Play want to archive. This sucks big time.
Click to expand...
Click to collapse
If you want your app to be available on PlayStore then what is so terrible about doing what they expect of developers that put their apps on PlayStore.
Everybody else must follow that rule, why shouldn't you?
It doesn't even matter what the circumstances are as to why you think it's unnecessary or unfair, all that matters is that is how it is to be done. Otherwise, no app on PlayStore, right?
grfgames said:
For me it makes sense to remove this functionality for a while. And try to find out from Google what they mean by ``normal course of usage''. I'm afraid that you must show this disclosure in main activity every time regardless.
Click to expand...
Click to collapse
I DO NOT PROVIDE HELP IN PM, KEEP IT IN THE THREADS WHERE EVERYONE CAN SHARE
@Droidriven: had you actually read my post, then you would understand that I'm in favor of the rule, but that I am criticizing the way they handle explain and enforce it. Essentially, their premise is that a the apps they are addressing with this current campaign always want to be devadmin. Mine only wants to be so if the users asks for it. But Google doesn't tell anything about such a scenario and only talks to me using bots and people using predefined text blocks. All on very short notice.
xrad said:
@Droidriven: had you actually read my post, then you would understand that I'm in favor of the rule, but that I am criticizing the way they handle explain and enforce it. Essentially, their premise is that a the apps they are addressing with this current campaign always want to be devadmin. Mine only wants to be so if the users asks for it. But Google doesn't tell anything about such a scenario and only talks to me using bots and people using predefined text blocks. All on very short notice.
Click to expand...
Click to collapse
I know. I was just saying that you're gonna have to do it their way in the end anyway. It's unfair but it is what it is.
I DO NOT PROVIDE HELP IN PM, KEEP IT IN THE THREADS WHERE EVERYONE CAN SHARE
my main issue is i lost my keystore during a hard drive problem so i cant update the application how ever if i updated my description and my privacy policy and say that i clearly use this permission it will solve this problem ??
any help will be appreciated