The shopping lens feature very well complies with the DPA (Data Protection Act) and is no way breaches users’ privacy, says a new investigation.
The independent body investigating the completion of Ubuntu’s Unity Shopping Lens feature and its compliance with the UK Data Protection Act of 1998 has found no instances of Canonical being in breach of the said DPA. Ubuntu’s much notorious ‘Amazon shopping’ feature has been found to be compliant with relevant data protection and privacy laws in the UK after in response to a complaint filed by blogger Luis de Sousa last year.
Notably, the feature sends out query made in the Dash to an intermediary Canonical server, that sends it forward to Amazon. Amazon then returns product suggestions matching the query back to the Dash. The feature also sends across non-identifiable location data out in the process. “My main objection against these lens is the automatic collection of search keywords, without consent, whenever the user tries to find a particular application or file in the system,” Sousa had earlier written on his blog. According to Sousa, the Shopping Lens implementation “contravened a 1995 EU Directive on the protection of users’ personal data”. Sousa had provided a number of instances to put forward his point. Initially, Sousa began by reaching out to Canonical for clarification but all in vain. He was finally forced to file a complaint with the Information Commissioner’s Office with regards to the same.
Finally, after all this while, Sousa has been given a response from the ICO that clearly states that the shopping lens feature very well complies with the DPA (Data Protection Act) and is no way in breach to users’ privacy. “Satisfied that Canonical Ltd has a suitably thorough understanding of the DPA and its implications and requirements; and, that Canonical Ltd has taken and is taking due steps to comply with its obligations under the DPA. Canonical have made reasonably available to Ubuntu users suitable information to assist people in limiting searches undertaken, or in removing the feature involved from their installation.” the ICO was quoted as saying. Further, it has affirmed that no further action is required and hat Canonical does no need to improve its information rights practices at this time.