If you are wary of all the smart features in your next car purchase, consider buying a bicycle. We do not have to entertain the creeping invasion of our privacy

If you ride with your phone you're already being tracked.

I bet in a couple of years you'll have to go straight to the dealership to fix your car, because it won't start.

On the other hand, as mentioned by others: Why bother if you use CarPlay?

Also worth noting that as recently as 2024, the S and SV models for Nissan did not have telematics whatsoever. This may still be true for the 2025 / 2026 models, I just haven't checked.

As much as I should really care about this, I have to say... I don't. I should, but I don't.

To me it's a little bit like, "I love these new cellphones but I'm keeping it in airplane mode all the time because I don't want it online"

I mean what's the point of buying a new car if you're going to cripple features that are so much better because it's connected? Sure, use CarPlay or such, but to say forever end things like over the air software updates? Anything to prevent Kia from theoretically detecting sexual activity I suppose [1].

Just buy an old car. Or convert a classic into an EV [2].

There are A LOT of things in our lives that can be completely torn apart if one wants to. Glass is a vastly inferior window covering. Do you know how easy it breaks, and people can just look into it.

1 If you ask me, there's a whole whitepaper to be written about how to detect sexual activity in a Kia.

2 https://www.bugeyeguys.com/category/electric-bugeye/

There needs to be a repository of these instructions for as many vehicles as possible.

I'd like to know how to do this for a 2022 CR-V.

I'm still just refusing to buy this garbage in the first place.

All these car manufacturers pushing this horrorshow deserve to go under. Tbh it looks like most will soon....

You buy a $40k car and it's still monetizing you. The hardware is just the entry fee. The real product is everything you do inside it.

I get this desire and commend the author, but I just want self driving cars and so I think we are just stuck with this.

Could one cover the antenna with strategic foil?

Removing seems hard/complicated but foil seems within most ppls reach.

If you get into enough trouble they'll get all your phone data and cell tower pings or your passenger's.

This is why I want a Chinese car. At least they won't do anything with my data.

There's a fortune to be made for whomever produces a car that has minimal features, and and electric-drivetrain with onboard gasoline generator. No screens, knobs and buttons, no assists. Extra fortune if you can licence designs and revive some of the old-and-loved classics with new safety features.

Who’s responsible for presenting the privacy policy to passengers of a car, anyway?

Why not just remove the antenna or SIM card from the modem?

I have a 2018 WRX and I was considering removing the "telematics" module and updating the head unit to something more modern so I could use Android Auto but I was thinking that through and was immediately irked by the idea that I'd then be using google in lieu of Subaru. It's already bad enough as it is. Of course the head unit probably talks to and through the phone. I suppose the benefit would be that at least the new head unit would be anonymized but the use pattern would be obvious and explicitly correlated to me.

Kinda makes me want to buy a standalone navigation system at this point.

I don't even speed, I'm just sick of the idea of being watched always and forever.

It's been disappointing to see that Toyota, a brand I once trusted, has slipped into spyware/nagware like this. All for the purpose of later selling advertisements. Do we get a discount at the dealer for this "feature?" Of course not. In fact, we get a dealer markup that's often difficult to get rid of.

No wonder car companies are starting to dislike CarPlay. It's less data they can collect from their own customers.

Be careful as there has been precedence of insurance companies using the fact cameras were removed/disabled to deny or reduce claims.

cool, well done. Now we just need it for the other gazillion "smart-cars" out there

props for still using Skitch to annotate images in 2026

Live free or die

Open-source car, please.

Great guide! After getting to the end, I had no idea what AirPlay was so I looked it up... bro, all this effort to avoid telemetry and you are using an iPhone XD

If you live in the EU and bought the car there, the GDPR still applies, even if data is sent to Toyota in Japan.

You have the full right to view and ask for deletion.

This wasn't @fc417fc802's dichotomy, it was the person above them who posted. They were responding to another comment which assumed this

Okay, and why is that supposed to be good?

They sound “special”.

My car has AEB and it's great. I'll never drive another car without it. Why not take the energy out of the impact? Humans aren't perfect, and even less so as we age.

Why? You presumably don't enjoy get into frontal crashes, are you worried about it doing false positives? Is that a significant issue?

I guess you know your cutoff date, then. My own perspective differs.

A couple of years ago, I was involved in a stupid car crash that probably would have been prevented by this kind of system. Everyone was pretty much OK (yay), but both vehicles were ruined. And for me, at least, it was a complete and utter pain in the ass to find something else to drive that fit my intended use.

0/10. Would rather be annoyed by false positives.

What crash?

My car already has this awesome safety feature called a "windscreen". It's a bit of thick glass about a metre and a half across, kind of like the screens that cars now have inside but here's the clever bit - it lets you look outside the car! It's completely transparent with no electronics (although mine has very fine wires embedded to heat it to clear ice off, that's not really "active" in any sense).

By looking out of this "windscreen" at other things in front of your car, you can prevent crashes.

Thanks - Seeing how easy this was, encouraged me to do the same for my Subaru. The info and parts were easy enough to find.

Interestingly, Subaru itself used to make a DCM bypass kit for its cars. When AT&T shut down its 3G network, Subaru was stuck replacing all the DCMs, because they would search and search forever for a connection to a network that no longer existed, and slowly drain the battery. But there initially wasn't enough inventory to replace them all, so they offered these bypass kits if you weren't an active Starlink (cloud svcs) subscriber.

I did it for my 2025 4runner. https://6thgen4runner.com/threads/disable-telematics-with-au...

DCM Bypass kit. https://www.autoharnesshouse.com/store/AHH-DCM77

Couldn't you just ground or resistor out the car's cellular antenna so it can't transmit data?

I saw this on reddit and am contaplating purchasing a toyota and I would say you can code the modem out from the techstream 2 day rental. The grounding antenna thing is not required, but its an easy DIY tool and just interesting in general as I was making a "mod" list of what to do if I were to purchase.

With the coding from techstram you can also modify the Denso Headunit programming to not do telemetrics via cellular bluetooth connection.

You can also have block the connection on the phone if you run a custom DNS server.

This is really cool. One of my favorite parts of the internet is getting to see these kinds of projects by people who aren't afraid to tear into stuff and take it apart and put it back together.

But you do all that for privacy... and then you use CarPlay?

The reason I think this is a bad idea is that it lulls you into a false sense of security. The article makes recommendations that seem thorough and sensible - keyword "seem" - but, as mentioned elsewhere here, there are other potential hidden sources of telemetry (in CarPlay and Android Auto), and who knows what else.

For this kind of thing to succeed as a general lifestyle, you would need to invest an enormous amount of time making potentially irreversible modifications to all kinds of electronic equipment - only to be virtually guaranteed to miss something.

Do this kind of thing if you want, but don't be fooled into thinking you're actually solving the problem for real.

Modern cars are like Smart TVs.

While it would be nice, I think this would instantly write-off the car in UK and western europe, as various connected features not working on cars that came with them, or are 'new enough' to require them, cause mandatory yearly tests (MOT / APK(NL)) to fail, meaning you can't legally drive the car again until these are fixed and re-tested.

I love those type of posts. But there is probably gonna be an interesting discussion when he will get the car serviced at Toyota.

Maybe a simpler way is to to slap a Faraday cage on all antennas.

Excellent practical guide and pictures, if OP is around on this thread: well done! Your future self is going to appreciative too when this needs repeating at some point!

"They have always-on modems."

Who pays for the cellular data plan

"Important: Even after the modem is removed, if you connect your phone to the car via Bluetooth then the car will use your phone as an internet connection and send all the same telemetry data back to Toyota."

Thats quite sneaky. On by default, no option to disable

Any guesses at how large the addressable market is for a dumb car (or appliance)?

I would be the target customer, but I keep making convenience concessions and buying the nice car / appliance with smart stuff.

I appreciate this guide from a technical perspective, but despite a lot of the stated preferences, I’m not seeing a huge market for it.

Convenience is paramount.

We need a Framework laptop equivalent for cars.

About removing the modem. ....

I always though ...just need to remove the ... the antenna .. modem would always get no signal and transmissons would always fail....

Same for the GPS.

To verify- no other hiddwen transmitters could use some RF( Radio Frequency) analyzers

[RF analyzer (ie spectrum analyzer) is a tool for measuring the power, frequency, and signal strength of radio frequency signals.]

Has anyone experienced a case where they needed an over-the-air safety update/recall performed, but weren't able to because they removed the cellular modem?

I'd like to think failure to apply an OTA safety update would trigger a mail-out notification requesting you bring the vehicle into the dealer. But that's probably optimistic...

How good a position can you get from GPS today in receive only mode?

You can download and store Open Street Map for individual states. Map data doesn't have to come in over the air. That's not the problem. It's enhancing GPS with cell phone tower data that's the problem. That requires a cell connection.

> Everything that relies on a data connection will no longer work. This includes things like over-the-air updates as well as Toyota cloud-based services and SOS functionality

I hate how this is a trade off. It’s totally possible for cars to broadcast their location only if the SOS is pressed or the crash sensor is triggered, but it feels like there’s no way to have that without also having everything else.

Another method is to disconnect the antenna and add a resistor so it acts as a dummy load. Here is an example with a Tacoma: https://www.tacomaworld.com/threads/simpler-solution-for-dis...

> Strong Federal privacy laws would make posts like this unnecessary, that’s the world I’d rather live in.

Amen.

Writes long article about the concerns of software phoning home

Peppers article with Amazon affiliate links

Perfect summation of 2026

I wonder if insurance would refuse to pay out in the event of an accident due to this modification?

Maybe two metal pins through the GPS and the cellular antenna coaxial cables would do the trick?

I cannot imagine the paranoia that it would take for me to go through this process.

losing SOS/cloud features is real cost, but so is having an always-on telemetry device in a thing you own. this should be a software setting and a clear privacy contract

I don't think cell tower connection will give you any more precision, GNSS fix will be much more accurate. (within few meters)

You could get more accurate fix with RTK data, but I'm not sure if that's actually widely used. And in any case that doesn't require active communications either, you could get correction data from satellite broadcasts too.

Resolution of less than 1 meter is normal with a decent view of the sky and a lack of interference. GPS itself is always receive-only on our end as consumers.

What problem are we trying to solve here? At this point in time, guided navigation with completely offline maps and GPS has already been a no-brainer off-the-shelf thing for decades.

>Do you happen to live in an area where cell towers broadcast their location?

I'm in Canada, I don't think they broadcast their GPS coordinates. But most of their locations are publicly available, such as: https://www.ertyu.org/steven_nikkel/cancellsites.html?lat=51...

It doesn't take much of a leak. Radiation likes to radiate.

I used to keep my work phone in a Faraday bag sometimes. (I had my reasons[1]). It usually worked. Occasionally, it didn't work and the phone would demonstrate this by doing phone-stuff like ringing even while it was snug inside of that conductive bag.

So sometimes, the radiation was radiating well-enough despite my efforts.

Not so long ago, I was chatting with someone here on HN about blocking RF at GHz frequencies using aluminum foil. I was sure that it would be trivial, and they were sure that it would be difficult. So I tested that.

I started pinging my phone on its LAN IP, and wrapped it in foil. I found that I could increase latency some and also institute some packet loss.

But I couldn't stop it altogether -- not with a sheet of aluminum foil, anyway. No matter how carefully I made the creases, pings simply kept happening. (Having satisfactorily demonstrated to myself that were right and that it would be difficult, I stopped testing at that point.)

---

So here in reality, suppose the [car's] cellular connection finds that it has a connection occasionally. What's to stop it from buffering data and sending it in batches during times when it works? A few dozen lines of code that's geared to that purpose, perhaps? Or maybe a few hundred lines, instead?

Not that the difficulty matters much; the software is all closed up and inscrutable.

If the value of batching data to deal with intermittent connections is greater than the cost of producing the code to do this, then it can be assumed that such code has been or will be written.

---

[1]: An abusive manager I had liked to turn on the tracking system that the phone had. I didn't mind being tracked while I was on the clock, but I placed a higher value on my privacy than on her ability to be a snoopy bitch when I was not on the clock. My Faraday bag solution was adequate for that phone, at that time, with that particular tracking system, and for my particular desires, and I had access to the system with which to validate the adequacy of this success, but it was by no means perfect.

That's just it - move in just the right spot where reflections combine in the right way, and it might be enough to get a ping. So the tracking would still be there just less reliable, with an unknown level of degradation. In the end you still wouldn't have any guarantees.

This is why I hate the online car owner forums. Car owners ask reasonable questions like these and people sneer in their replies saying "that's a horrible idea" as if somehow every car owner agreed to universal tracking into telemetry and is totally fine with it.

Honey.

I mean exactly what I wrote: "GPS itself" means GPS, itself.

Not GPS and WAAS. Not GPS and RTK. Not GPS + wifi + BT + cellular. I didn't mean any of those things, so I did not write any of those things.

If the thing is more than GPS -- by itself -- then that's outside the scope of what I was referring to with the juxtaposition of the words "GPS" and "itself".

(If a thing -- by itself -- can be better specified to be that way using concise phrasing, then I'm all ears.)

My mother always told us, “fits find each other”.

So happy to maniacs did.

Usually, the whole antenna is behind the rear-view mirror between the glass and mirror. Often glued together

Unfortunately for many modern cars that may make it run less efficiently and clean and have a rough start every time you do it for 30 minutes or more because many sensors are trained on-the-fly from a running vehicle and then the correct calibrator sensor values are then stored in volatile memory which is lost upon power loss.

I use to disconnect batteries all the time when fixing vehicles, but the last decade ive been avoiding it unless I have to because of how poorly new cars run afterwards. And people get really angry when you fix something on their vehicle and then go to drive it later and it hard starts and feels and performs worse than ever. Telling them to "just drive for 30 minutes and then restart your car again and hopefully it goes away" doesn't make people happy or confident in your fix, nor does it make diagnosing issues after replacing a suspected faulty module or sensor easier when it sounds and performs like trash for a long while afterwards.

Modern cars sometimes have telematic units running off dedicated lithium ion batteries, so killing main battery might not do anything

Just be thankful the ads were on a display that you could disable. Soon, we'll have heads-up displays that project partially transparent videos over your windshield, so you literally can't drive without looking at an ad. And add in advertisements playing over the audio system on full blast with no way to turn it off.

This would be the last time I used that rental car company. If they wanted to make more money from you, they should have just raised the price. That is disgusting.

New Zealand had a service called YourDrive[1] that was pitched exactly as "AirBnB for cars"[2]. I used it a couple of times and it was great, super affordable. Unfortunately they didn't survive the Covid crunch.

[1] https://www.drivencarguide.co.nz/news/new-zealand-startup-le...

[2] https://thespinoff.co.nz/partner/17-09-2017/the-airbnb-for-c...

Doesn't that already exist?

Turo.

Does anyone have a flow log or pcap or something from the phone showing this tho?

I think there are details being left out. But several people in the comments indicate that there is a Toyota app that provides various features. I bet the app implements some proprietary bluetooth service that the head unit connects to and feeds information through. Or maybe they give the head unit a straight pipe to the internet via that service.

There is a bluetooth protocol for cars to piggyback on your phone's internet connection. There was an article about it here a couple of years ago but I've forgotten the name of the protocol, and trying to search for it turns up a lot of irrelevance.

The fix for this is a phone that doesn't implement that protocol, i.e. not Android or iOS.

Is this specific to carplay, or can other bluetooth devices also silently and nefariously hijack your cellular data connection?

The bluetooth protocol includes the ability to network, and share connections like a mobile/personal hotspot.

Older versions of bluetooth may have other networking capabilities.

> (whatever happened to him?)

He's apparently now better known for other aspects than his insights into large databases!

> the author seems to wave a bunch of conspiracies around without the evidence to support it

The author provides links at the top to credible reporting on relatively well-known privacy concerns.

This is the way! But note that telcos are working hard to ban dumbphones from their networks. There is a clear push to force people to dump dumbphones and accept the digital surveillane device.

Should that happen, I will move to a VoIP provider. Not perfect, but better than a smartphone.

I am so sorry to piggyback on someone else's comment for this, but this thread has piqued my interest in what I can do to de-smart my 2021 Kia Forte LXS.

Any chance you can get the service manual for it? I appreciate it, even if you can not.

Why not write France? I doubt HN has any censoring going on.

The data on the OBD2 port is legally mandated, so can't be encrypted. But besides encryption CAN buses in a car are also separated, the bus on the OBD2 plug often can't even talk to the most interesting components.

Seems like this way of using CarPlay isn’t documented. Bluetooth is used for discovery and WiFi/USB for CarPlay communication but not for providing car and internet access. Using users’ phone data without notice could be noticeable by users as well…

That doesn't seem right at all, since my phone doesn't have tethering plan and I can still use CarPlay.

It's not evidence against it either. Presumably CarPlay and Android Auto could implement a network interface through the application layer, or even activate Bluetooth tethering at the system level as they are privileged apps.

But they could also do this over USB, so something doesn't add up.

RNDIS was a mechanism for tethering over USB, and you could certainly pair "Bluetooth Network Adapters" for years and there's a profile for it. So there's at least precedent for it. That makes it pretty plausible to me.

If the car manufacturer got control of an app on the phone it is trivial to exfiltrate data via Bluetooth.

it is in the UK, if the car comes with the feature, it must function. A warning light on the dash is enough to invalidate the roadworthiness.

> They tend to attempt to do this anonymized. How successful they are in anonymizing that is very much so up for debate.

Yeah I think the big thing to push or talk about is that there is no such thing as "anonymized".

There's only such as a thing as "can only be identified as X many people". Like for a given dataset you can make any data point correlated to 1 of say 50 people. If somebody is anonymizing data and they don't provide a k-anonmizity [1] you should just assume it's 1:1 and effectively not anonmized.

[1]: https://en.wikipedia.org/wiki/K-anonymity

> They tend to attempt to do this anonymized. How successful they are in anonymizing that is very much so up for debate.

    let anon_id = md5(SSN);

In the good old days, if you were found to be informing on your neighbors to hostile powers, you were liable to find yourself in a mass grave when the political winds shifted, or even sooner.

But now it's so convenient and discreet and common, we think nothing of it. Plus, Google and Apple and Facebook and their partners and everyone they sell data to are our friends, not enemies :)

Yep and works flawlessly via USB for me. That was a deal breaker for me for the longest time too.

Allowing it to connect over Bluetooth requires granting AA plenty of additional permissions which I didn't want to do (but hey, on GOS at least you can muzzle that thing).

Mostly works, some stuff doesn't. The worst thing that doesn't work is alternative maps (e.g. OsmAnd).

It doesn't stop Android Auto from doing whatever with the car data, but it's sandboxed to have no more default privileges than a regular app, so it can be denied access to your phone's data by default (apps, contacts, etc.). Wireless AA will only work if you grant it extra privileges; wired AA does not need them.

You can also "firewall" AA via something like TrackerControl, this would let you block connections to eg. Google Analytics servers without denying network access altogether (which would likely cause AA to stop working). I've only used AA with short-term rentals so I didn't spend too much time exploring these options.

SORRY

All you need to do is convince your Tesla that it's in a constant state of having just crashed, and the poof, nobody will ever see your data!

They aren't. Even for brands like BMW, Mercedes, etc.

> charger anxiety

I've done many USA cross-country trips in a Tesla. Chargers are a non-issue if you stick to interstate highways. I often don't, which means I have to do some advance planning. I find that fun. Others might not.

But if I were in the market for an EV today I wouldn't buy a Tesla. It's a great car but until the Musk family is no longer part of the company I won't buy another one or recommend them to others.

We were talking about the fundamental experience of driving the car. If you want to pick at the features that the Toyota can't have, then sure, but you might as well complain about it not being able to fly.

My personal experience of the FSD function is that it works as its supposed to; it handles the mundane tasks of driving while I look around, and it's easy for me to interject when I feel I need to, which is almost never. That's what I wanted and that's what they delivered. It was not so good earlier, yes including phantom braking, but it's very good now.

This might be historically accurate, but no longer to represent the present state IMO

You do you, John C. Calhoun of Minerva Road, Springfield, CO.

An agent will be shortly with you to assist in that endeavor.

The Graphene community maintains a list of compatible banking apps.

Another possibility is to keep an old/cheap, stock Android phone at home with WiFi only for apps like this.

On Android there is an option called "Bluetooth tethering - Share phone's internet connection via Bluetooth" . If it is On and you are connected to the car's bluetooth it will have internet access via your phone.

I have heard whispers at times that people who operate 'off grid' like this end up being viewed heavily as persons of interest.

Anecdotally via friends in law enforcement.

Increasingly headed in this direction. Already have the old Toyota and use cash. I've been saying for years that advertising ruined the internet, we're getting to the point where surveillance is ruining computing.

It's weird to hang up on this specific item because they do actually offer an E2EE icloud option. Lose your key: lose your data.

https://support.apple.com/en-us/108756

Sure -- I'm not asking a general question, but thinking about my wife's phone, which is paired as an audio device. It sounds like we're probably in good shape.

Are there any cars that support CarPlay/Android Auto that don't have built-in navigation/maps?

What are you looking at to know that's happening? Is the Toyota downloading/displaying some information only available on your phone, or from the Internet, or something else? Could it have a 4G connection of its own? What's the connection that makes you think the phone connection is letting it upload data over the Internet using your phone?

Seems very worrysome and worth investigation. Basically, buttons in your phone are just an illusion.

You mean in 2018 maybe?

This is just fearmongering trope. You can imagine whatever you like, but there's no evidence that they're anything other than a car and technology company that wants to sell lots of its product.

Nah, not an issue in Canada since immobilizers are mandatory.

OK, except the kids these days have the cheap Autel immo/key programmers and the Autel universal keys. They're just cracking into cars, plugging in the Autel, and running the all-keys-lost procedure on quite a few makes and models and just driving away.

You can get an Autel KM100 for under ~$400 from China. Worked great to program in a couple spare keys for my car and less than what the dealer was gonna charge...

https://www.10tv.com/article/news/local/teens-indicted-colum...

There's a protobuf-based API for two-way communication between the Android Auto app and the head unit [0]. It depends on what the headunit supports, but this includes data such as GPS location, steering wheel button activation, accelerometer data, parking brake activation, gear selection, touch screen input, dimmer switch position, odometer, and much more.

A lot of this has obvious use within the AA interface; for example, the parking brake position is used to prevent scrolling too far through lists, and the car's GPS is usually much more accurate than the phone's and better on the phone battery.

0: https://github.com/f1xpl/aasdk/tree/development/aasdk_proto (pretty old reverse-engineering effort)

That icon is a "close Carplay/Auto" button. My Subaru has a Subaru button; my wife's Mazda has a Mazda button.

You pay inflated prices for the car and then they still steal and sell your data. This isn't hard to understand, same thing smart TV mfg do.

Cash handling isn't free, and for smaller businesses might actually end up being more expensive than accepting electronic payments.

This is something I've been very concerned about.

You cannot park in a parking lot without over 100 cameras being angled towards you from neighboring cars. The fact we let it get this bad is insane.

Tesla drivers generally use the phone key, which generally comes with its own set of privacy concerns.

I’d also be surprised if the car didn’t use the phone key connection to trickle some metrics when cellular is unavailable.

That's some shady ass shit right there. Did you reset it after finding out? I would have driven up there and become a Karen demanding to speak to a manager at the dealership. I wonder if any kind of identity theft laws or anything along the those lines could be used.

It's the same in Poland. Toyota found a way that you can install some "immobilizer" thing that hacks the system into muting the alerts (but they still blink though) and was so proud that they started calling owners offering it for install. But all the cars do beep.

My sports car has automatic braking with a manual trans. It has hit the brakes for me when I was in control and accelerating after slowing down for a turning car. Like, I'm human, I saw the obstacle, took action to handle it, then continued with my life. I'm back on throttle knowing the turning car is gonna be out of my way, there's an extra lane if not, and this thing doesn't cut throttle, it hits the front brakes in a rwd sports car. What if I was mid corner when it decided to unload the rear of the car with brakes? It's extra infuriating because of I try to brake while on throttle, it cuts power, but it doesn't do that for itself.

This information is much more valuable to insurance companies than selling you some oil change (which hardly anyone gets from the manufacturer anyways).

> They're not collecting in depth telemetry on every mile you drive, as you drive it.

I mean, yes and no. It is most likely that the majority of carmakers are not collecting detailed telemetry. But we know from data breaches that some cars collect pretty detailed information.

https://www.roadandtrack.com/news/a63306050/exposed-vw-data-...

GPS is receive only. If you've disabled the ability to send telemetry, there should be no reason to be concerned about the GPS antenna.

Your point is aptly demonstrated by the article — the car may still use tethering via Bluetooth to exfiltrate your data[1]. The workaround of always using a wired connection is both inconvenient and unreliable — the same facility could be added for wired connections at any time.

I would like to see some form of IP/property rights applied to user data, with treble damages for willful infringement.

The entire concept of collecting user data and calling it “telemetry” needs to be abandoned — including (especially) in the software industry. Collecting any user data ought to be something that makes corporate lawyers nervous.

Unfortunately, I expect that to happen roughly after hell freezes over.

[1] I couldn’t confirm that any car currently actually does this. Hypothetically, iPhone tethering is possible over both USB and Bluetooth if personal hotspot is enabled.

Needless to say, cars in the UK/EU have no such privacy invading features without an explicit opt-in thanks to sensible data protection legislation; including the GDPR.

The FUD spouted on here by the scummy adtech industry about legislation to protect YOUR privacy is mind boggling. These are the people doing the digital equivalent of sniffing your underwear to work out what you had for breakfast.

(And before somebody shouts FUD about the UK/EU vehicle eCall 112 system, that certainly doesn't track you or seek to invade your privacy on any level!)

Its quite easily solved. Stop buying them. There's lots of cars out there that don't have these fun features. Buy them.

The actual cost is shrinkage from general human accounting mistakes and all the extra time it takes to manage.

I worked at the gym in college and we sold like one item a day and it was still a whole bunch of work and pain to keep up on the cash counts correct.

I definitely believe that all businesses should take cash as much as is reasonable, but logistically it is understandable why some choose not to

You shouldn't do that anyway; also, you can't skim a credit card I'm not using/carrying. There are crime arguments on both sides.

Just make all your prices round up to the nearest dollar bill after tax. Eliminate coins at the source.

But they get mad when you tell them that their processes are Kafkaesque!

Ask me how I know.

if it doesn't impact the stock price, does it matter?

> uniformly the business side asks for every single piece of data possible to be collected and kept in case they need it.

True, though collecting and keeping unnecessary _personal_ data is very much a liability under the GDPR.

If everyone has to accept cash, then everyone has the same costs and the point is moot. At any rate, courts are required to accept legal tender, and I think that requirement ought to extend to businesses as well.

The real problem for those businesses is way upstream of payment processing costs, namely in the cost of business loans, the general poverty of the American consumer, and (for brick-and-mortars) zoning. The latter is a matter of getting municipalities to relax restrictions put in place mid-century literally to support segregation, and the former two are a matter of forcing the wealthy to eat the costs of their poor decisions from the last few decades, rather than continuing to allow them to socialize related losses through avenues like scandalously low labor pay vis a vis productivity and various investment/asset market scams (which, through housing and passive retirement investment, they've roped in Boomers and older Gen-Xers).

If you wish to make an apple pie shop from scratch, you must first invent an economy that isn't hamstrung by legacy obligations from ventures that people who are long-dead somehow were allowed to finance with your paycheck. (Somewhere, a middle-aged nepo-baby is clutching her pearls at the thought, and I just think we should cherish, rather than shy from, the opportunity to throw her and her siblings under the bus.)

The main problem I had with it is the fact it requires an app in the first place. Once they have an app on your phone, they have access to so much data. The app by nature of the functions it performs will need GPS, Bluetooth, and Contacts at a minimum. Once they have that access, there's nothing stopping them from using it for whatever they want. That's just absolutely not something I'm willing to give a car app. Do we really think their map/routing app will be better than something else I could use instead? I don't even like using map apps because of their power to snoop and report.

That's an interesting point but consider that bandwidth is also limited when we're talking about an always on system that's in every vehicle sold. And until recently storage was remarkably cheap.

If you log 32 bytes once per second that's only 962 MiB per year uncompressed. But 32 bytes is a lot (or depending on what you're logging not very much), once per second is almost certainly more frequent than necessary, and almost all vehicles spend the vast majority of their time turned off.

For example logging RPM every 100 ms, 8 bits gets you reasonable but not perfect accuracy and you're looking at 300 MiB per year of continuous operation. It's just not much of a storage requirement for quite detailed telemetry.

I'm sure it's not great, but deer mucus is a bit of an extreme description.

I've successfully used it in my 2006 Ford Fiesta for about 10 years now...

The reliability is way better than GitHub's uptime.

Better even than my car's uptime.

You must work in telco.

99.9999% or it's unusable :P

I haven't had any insight into the industry lately, but did work for a company in that space several years ago.

Most (all?) ordinary TVs, plus things like Roku streaming devices, are sold essentially at-cost. The profit comes from ads and information-brokering stuff. This makes it basically impossible to break into the market without doing the same thing.

Or someone get access to 5.5 cyber or mythos and brute force their way in

I bet if you can speak to the mechanic without the service advisor supervising the innteraction $100 would do it.

Why wouldn’t they?

Dataset is readily available for most places. Pull local on entry to jurisdiction on every drive…

The car reads the speed limit signs too, they don't just rely on GPS.

How do you know?

Most of these are cloud connected, how do you know they aren't storing license plate information, or face data, or audio data for extended periods of time in the cloud?

Walking out of the store with groceries generates a debt, no?

Or by the FBI, NSA, CIA, DHS, or some other interested entity.

It may sound like I’m rich but I’m just generous to service workers who help me out.

> So do you think UK/EU vehicle manufactures are deliberately in mass breach of data privacy law... fully knowing the cost of a consumer backlash, fines and vehicle recall costs to fix any law breach?

They were also in mass breach of vehicle emission laws. The fact that there was some backlash (although people didn't really stop buying VAG cars), people got prosecuted, the company got fined, didn't really change their decisions while they were pumping out fraudulent cars.

Yes, we should have privacy laws like this in the EU, this is a good thing! But thinking that, when these laws are in place, all companies magically will follow them is naive. To them it's still a cost/benefit analysis, and history has shown short term benefit trumps many other things for these companies.

I really do think there is a good chance that say MI5 or the BND or the DGSE flagrantly ignore the law to catch non-national evildoers, just as much as in the US. The temptation to do this 'in the name of security' is very high.

Of course, I can't or won't prove it.

And yes, I am _intimately_ familiar with the GDPR and other laws and regulations. The US also had (has) wiretapping laws that would have prevented snooping on Americans.

I'm not claiming the EU is no better than the US, it clearly has better intentions. But fundamentally, I think the EU will end up in the same place as the US sooner or later, simply because the same forces are at play: desire for security >> desire for privacy for most people if the rubber hits the road.

Here's some fun read for those who seek more info:

https://www.politico.eu/article/germany-privacy-watchdog-sid... https://www.bnd.bund.de/EN/Service/PrivacyPolicy/privacypoli... https://www.lexxion.eu/?newsletters_method=newsletter&id=477

Yes.

Or, more succinctly - they are likely following the law but have figured out a way to avoid it as written using consumer opt-in and dark patterns.

You call it FUD, but this is hacker news and with overwhelming incentives it is not unreasonable to ask for verification that data isn’t being exfiltrated.

I've never understood how this can be limited in practice: surely as far as the carrier is concerned, all traffic from the mobile device is the same (unless there are identifiers on the traffic coming from hotspotted devices via the mobile device). Here in Australia we've never had any form of hotspot detection/segmentation - if you have a data plan, all data features work (across all carriers). I do recall lots of online chatter from the US though, especially years back when mobile data was more of a precious resource.

Plus it seems unlikely that the telematics module is even really related to the display screen stuff, let alone being configured to use alternate network connections to transmit data.

How does the carrier know that the traffic is being proxied for another device, and not e.g. requested from the phone's web browser or another app?

Does the phone add a proxy header? Can it be configured to not add the header?

I was making a joke.

But also, I think that most people would not consider any debt to be incurred for transactions where the payment and receipt of goods is done at the same time, like in a grocery store.

Depends.

If there was a posted notice that no cash is accepted it's unlikely you'll get a criminal charge, but you can get civilly sued. Most places will just accept the cash then put up a picture saying "If this asshole shows up again, trespass him"

Okay so I read your comment to say you didn’t want their mapping service so assumed it was more broad. My bad.

That being said, on re-reading the Toyota app does not require location/Bluetooth/Contacts to set up.

They don't. They have all internet traffic dragnetted and satellite imaging and radar far beyond what is publicly disclosed. They don't need to check in with some low res crap that insurance companies use to nickel and dime you. If you're trying to escape surveillance and control from TLAs then you better start your moon base plans soon.

It has been a long time since I've done this, but:

If your Android is rooted, it's pretty easy to get tethering working. There's magisk modules that can fix the TTL problem and/or disable the hidden carrier-installed software that Android will ask for permission before enabling tethering.

DPI can refer to inspecting beyond just the headers, but since it's more of a marketing term than a technical one, you could also say you're "deeply inspecting" the IP headers of a packet and no-one would show up to arrest you for bad terminology.

Anyway, one way to detect NAT is to observe different TTLs originating from one device. Is that deep inspection? Probably depends on who you ask. The fact that you have to track information across multiple packets counts for something, though.

Off the top of my head I wouldn't really expect there to be much value in a MITM inspection of the contents of HTTP traffic for the purposes of NAT detection. You could probably come up with some scenarios in which it might be possible, but I'd content those scenarios aren't very practical. Easier to compare TTLs between packets, say, or track connections to known OS "phone home" destinations. While these just use information from the IP layer, they're stateful observations requiring comparisons across multiple packets, and that might count for something.

One way to detect a shitty carrier service, though, is that they're inspecting your traffic for "good" or "bad" uses of their service, because that is a good indicator that they're not just a carrier. I call it Dickish Practices Identification, or DPI.

DPI is distinct from TLS MITM (though many enterprise devices offer both).

The delineation here is between "shallow" packet inspection (which basically nobody refers to because it's just a normal part of networking), where network devices look at just the bits of the packets they need to route / NAT / etc them appropriately.

DPI can tell a ton of things without needing to MITM encrypted layer 7 traffic.

A boring example is that you can tell TLS from OpenSSH traffic just by seeing the initial handshake. sslh ( https://github.com/yrutschle/sslh ) takes advantage of this on the server side to let you run both on the same port.

A less boring example is identifying OpenVPN, Wireguard, etc traffic regardless of what port they're run on, to enable blocking VPN traffic on a network.

At one point it was definitely not so deep... carriers were literally looking at the IP TTL and seeing whether it was a recognised value from the phone or a few hops less than one of the common defaults, in which case it was considered tethering traffic.

You could spoof it by finding out your mobile's TTL, overriding the TTL in the connecting device to be one higher than the mobile.