this post was submitted on 28 Feb 2025
263 points (100.0% liked)

Technology

38117 readers
721 users here now

A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.

Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.

Subcommunities on Beehaw:

This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 3 years ago
MODERATORS
alyaza@beehaw.org
TheRtRevKaiser@beehaw.org
gyrfalcon@beehaw.org
rs5th@beehaw.org
coldredlight@beehaw.org
SemioticStandard@beehaw.org
TheRtRevKaiser@kbin.social
remington@beehaw.org
263
Firefox deletes promise to never sell personal data, asks users not to panic (arstechnica.com)
submitted 2 days ago by alyaza@beehaw.org to c/technology@beehaw.org
92 comments fedilink hide all child comments
 

Firefox maker Mozilla deleted a promise to never sell its users' personal data and is trying to assure worried users that its approach to privacy hasn't fundamentally changed. Until recently, a Firefox FAQ promised that the browser maker never has and never will sell its users' personal data. An archived version from January 30 says:

Does Firefox sell your personal data?

Nope. Never have, never will. And we protect you from many of the advertisers who do. Firefox products are designed to protect your privacy. That's a promise.

That promise is removed from the current version. There's also a notable change in a data privacy FAQ that used to say, "Mozilla doesn't sell data about you, and we don't buy data about you."

The data privacy FAQ now explains that Mozilla is no longer making blanket promises about not selling data because some legal jurisdictions define "sale" in a very broad way:

Mozilla doesn't sell data about you (in the way that most people think about "selling data"), and we don't buy data about you. Since we strive for transparency, and the LEGAL definition of "sale of data" is extremely broad in some places, we've had to step back from making the definitive statements you know and love. We still put a lot of work into making sure that the data that we share with our partners (which we need to do to make Firefox commercially viable) is stripped of any identifying information, or shared only in the aggregate, or is put through our privacy preserving technologies (like OHTTP).

Mozilla didn't say which legal jurisdictions have these broad definitions.

top 50 comments
sorted by: hot top controversial new old
[–] Gamers_mate@beehaw.org 4 points 13 hours ago

You cant go back on never have never will without breaking the law. We need to get these ai tech bros out of these companies if we want them to remain good.

[–] Kissaki@beehaw.org 1 points 12 hours ago

also

Update at 10:20 pm ET: Mozilla has since announced a change to the license language to address user complaints. It now says, "You give Mozilla the rights necessary to operate Firefox. This includes processing your data as we describe in the Firefox Privacy Notice. It also includes a nonexclusive, royalty-free, worldwide license for the purpose of doing as you request with the content you input in Firefox. This does not give Mozilla any ownership in that content."

Mozilla may also receive location-related keywords from your search (such as when you search for "Boston") and share this with our partners to provide recommended and sponsored content. Where this occurs, Mozilla cannot associate the keyword search with an individual user once the search suggestion has been served and partners are never able to associate search suggestions with an individual user. You can remove this functionality at any time by turning off Sponsored Suggestions—more information on how to do this is available in the relevant Firefox Support page.

So, turn off Sponsored Suggestions and you're (probably) good to go.

[–] TurtleMelon@lemmy.dbzer0.com 4 points 19 hours ago* (last edited 19 hours ago)

Made the switch to Fennec and IceRaven on Android, and Zen on my Linux desktop, which also has Windows and Mac versions. Sure, they're forks of Firefox, but they are not subject to the same TOS. I used to use LibreWolf on my desktop but ended up having too many issues with it. Lots of crashing and instablility that regular Firefox just didn't have.

Another great tool for unGoogled Android users is FFUpdater. It will handle updating of many open source (not just Firefox-based) browsers. You could also use something like Obtanium for something less browser-specific.

[–] catastrophicblues@lemmy.ca 3 points 23 hours ago

The ToU is in Mozilla's Bedrock repo, but I don't quite know what that repo does. I'm curious if Firefox forks would still be subject to it.

[–] Kichae@lemmy.ca 80 points 2 days ago (4 children)

Never have, never will.

So, here's the funny thing about "never will". It's not a promise you can go back on. "Never will" means "forever won't".

Changing that language is a breech of trust. Getting all "nuanced" and weasel-wordy about it doesn't change that.

Folks should start looking into whether the previous promise is legally binding in any way, and start preparing for a class action suit if it is. Because Mozilla's better dead than it is as zombie smoke screen for this horse shit.

[–] anachronist@midwest.social 5 points 1 day ago

The equally hilarious thing is that currently they have the "never will" promise in the same codebase as the "definitely will" gated by a "TOU" flag, showing intent to violate the promise.

[–] ryannathans@aussie.zone 10 points 1 day ago (3 children)

You realise if Mozilla disappears there is only chromium

[–] anachronist@midwest.social 2 points 1 day ago

If Firefox disappears. Mozilla isn't Firefox, it's the organization staffed with ad-tech and McKinsey ghouls and paid by Google to kill Firefox.

[–] lemminator@lemmy.today 14 points 1 day ago* (last edited 1 day ago) (3 children)

That doesn't detract from OP's point. I want Mozilla to be a good, privacy respecting organization, but they aren't anymore, and chromium has nothing to do with that.

load more comments (3 replies)
load more comments (1 replies)
load more comments (2 replies)
[–] BevelGear@beehaw.org 4 points 1 day ago

What do you think of duckduckgo's browser? It's about page seems to be on par.

[–] jagged_circle@feddit.nl 3 points 1 day ago* (last edited 21 hours ago) (1 children)

What's the best alternative in* apt now?

[–] comically_cluttered@beehaw.org 4 points 1 day ago (1 children)

What do you mean? Firefox alternatives in Debian/Debian-based repos? Or just an alternative for apt in general (in which case, I think you've replied to the wrong post)?

[–] jagged_circle@feddit.nl 2 points 1 day ago* (last edited 1 day ago) (2 children)

Yes, I'm asking for the best Firefox alternative thats available on Debian or debian-based distos. Only considering packages in the official Debian apt repos

[–] mox@lemmy.sdf.org 6 points 23 hours ago* (last edited 20 hours ago) (1 children)

There isn't a browser suitable to replace Firefox in the official Debian apt repos.

However, as far as I can tell, Mozilla's recent Terms of Use apply only to the Firefox builds downloaded from Mozilla, not to the built-from-source versions that you get from the Debian archive using apt.

You can use the Debian build under the terms of the Mozilla Public License. Read /usr/share/doc/firefox-esr/copyright for details.

[–] jagged_circle@feddit.nl 2 points 21 hours ago

That's good news, but I really want Debian to make an official public statement that confirms this

[–] comically_cluttered@beehaw.org 2 points 22 hours ago* (last edited 22 hours ago)

I know you only want software from the official repos, but it's really simple to add the LibreWolf repo and use that.

Other than that, there's not really much in the way of Firefox forks in the official repos. I believe the Debian builds have their own configurations as well, but I'm not certain. You could use other browsers (Falkon, GNOME Web, etc.), but they're severely lacking in features.

Off-topic, LibreWolf uses the extrepo package to add their repo which is a great third party repo management program for Debian. It's curated by maintainers of official Debian packages and has selection of other third party repos for some popular software that either doesn't make it into the official repos for whatever reason or aren't kept super updated in Debian Stable.

That and it's so much easier than adding signing keys, messing with sources lists, etc. I wish more software used it, honestly, but the maintainers know what they're doing.

[–] jarfil@beehaw.org 40 points 1 day ago (1 children)

Some obvious jurisdictions that come to mind, are US vs. EU:

  • US: protects "Personally Identifiable Information" (PII)
  • EU: protects "Personal Information" (PI)

The color of your hair... is PI in the EU, it isn't PII in the US since it's not enough to pinpoint you as a single person.

Under US law, a data broker can gather a bunch of "not-PII, just PI", and refine it into profiles that can end up pinpointing single individuals.

Under EU law, that's illegal; no selling PI, period.

[–] scrubbles@poptalk.scrubbles.tech 30 points 1 day ago

This is completely accurate, and people don't know how non anonymous it is.

Your hair one for example. Who cares, say you even have brunette hair, something generic. Okay, then let's add on that you're using an iPhone. How narrow is the search now? What state you're in? Who owns a specific model of TV?

I would argue that with only just a few data points you could be identified.

And now they are taking everything you put into your browser and everything you take out. Add some AI pizazz and they'll be able to build a pretty accurate profile about you.

[–] kbal@fedia.io 46 points 2 days ago (3 children)

We will collect data about you and sell it, but only after we've run it through a privacy preserving machine that turns it into privacy jam so you can't tell how much of yours is in the jar.

[–] xmanmonk@lemmy.sdf.org 22 points 2 days ago

Mmm... privacy jam.

[–] jol@discuss.tchncs.de 18 points 2 days ago (1 children)

While not ideal, privacy jam is better than the status quo of precise fingerprinting.

load more comments (1 replies)
load more comments (1 replies)
[–] NaibofTabr@infosec.pub 36 points 2 days ago* (last edited 2 days ago) (2 children)

Fuck's sake, might as well be a warrant canary.

And they're peddling the myth of anonymous data. Great.

Are any of those independent browser projects functional yet?

Konqueror, which is Webkit, is still actively developed, though less feature-rich than more popular browsers.

[–] JustJack23@slrpnk.net 13 points 2 days ago (2 children)

I am looking into zen and librewolf, both are forks of Firefox tho.

[–] CosmicTurtle0@lemmy.dbzer0.com 11 points 1 day ago

Forks of Firefox is fine. Only their binary is subject to the TOS. The source code remains under MPL2

load more comments (1 replies)
load more comments (1 replies)
[–] ininewcrow@lemmy.ca 31 points 2 days ago (3 children)

So .... what is the leading alternative browser then?

One of the reasons Firefox became so popular was that it was an alternative.

Now that they're drifting towards something we don't like ... what is the new alternative?

[–] remington@beehaw.org 20 points 2 days ago (4 children)
[–] isosphere@beehaw.org 18 points 2 days ago* (last edited 2 days ago) (1 children)

Librewolf has some trouble with some websites. For example, it won't load one of my own that makes a GRPC request over TLS, stating that the certificate issuer is unknown despite it being the same certificate used on the accepted-as-secure page the request is made from.

load more comments (1 replies)
load more comments (3 replies)
[–] TimeSquirrel@kbin.melroy.org 14 points 2 days ago (1 children)

Welp, back to NCSA Mosaic I guess. We never needed CSS and JS anyway, those were a huge mistake.

load more comments (1 replies)
[–] isosphere@beehaw.org 12 points 2 days ago* (last edited 2 days ago) (8 children)

I’m trying https://zen-browser.app/ now. It’s an open source fork of Firefox. The UI is much changed: vertical tabs and workspaces. It was a bit of a shock, but it’s growing on me.

load more comments (8 replies)
[–] nocteb@feddit.org 30 points 2 days ago

So since their actions can be considered "sale of data", they are breaking their promise which stated that they will never do that. Got it!

[–] t3rmit3@beehaw.org 25 points 2 days ago* (last edited 2 days ago)

You know, at least it's not Brave, throwing in cryptomining bs, getting caught selling data without telling anyone, or using the profits to push COVID conspiracy theories and anti-LGBT activism, or getting their funding directly from Founders Fund (Peter Thiel).

[–] millie@beehaw.org 22 points 2 days ago (6 children)

From the Mozilla forums.

I'm curious what "Without it, we couldn’t use information typed into Firefox to perform your searches, for example" means. Like, is that literally just the search I type into the browser bar, or are they talking about scraping data from my browser to improve my searches the way a lot of phone apps do?

I could see some government somewhere passing a data security bill of some kind that makes rules around collecting and using data that redefines what that means in a way that includes something Firefox is already doing. I could also see them using this as a sneaky foot in the door as they plan to ramp up data profiteering like so many companies already have.

It would be nice if they'd clarify their reasoning for doing this a bit more specifically.

[–] kbal@fedia.io 16 points 2 days ago (2 children)

They want to intercept your searches and url entries to run them through the privacy preserving data extracting machine in order to collect data that will be sold to advertisers and used to pollute your search results and url suggestions with paid-for links. They were trying to be vague about it so that people would not understand this, and instead all they accomplished was to make people think they want to record everything you type into every web form. That's my guess, anyway. Maybe they really do want everything.

load more comments (2 replies)
load more comments (5 replies)
[–] TheReturnOfPEB@reddthat.com 24 points 2 days ago (1 children)

/checks for dolphins flying out of the oceans

load more comments (1 replies)
[–] t3rmit3@beehaw.org 21 points 2 days ago

I tend to trust Mozilla (more than other browser-owning companies), but they really should just clarify exactly what they do that would be considered as sale of data in any jurisdictions.

They seem to be implying that the data is just metadata that has been abstracted for (presumably ad-targeting) commercial purposes, and there are jurisdictions that consider derived metadata as still being "user data", but in that case just make a blog post laying out what and where you are sharing. If your "partners" are opposed to people knowing about them, or you are scared that people would not like who you're in bed with, that is a problem.

[–] ExtremeDullard@lemmy.sdf.org 16 points 2 days ago

Maybe they should replace it with Google's former pledge "Don't be evil": it's free for the taking, nobody's using it at the moment.

[–] teri@discuss.tchncs.de 12 points 2 days ago

Please panic. There's Librewolf. A deshittified Firefox fork. Would be great to support that project.

load more comments
view more: next ›