this post was submitted on 17 Apr 2026
580 points (98.3% liked)

Privacy

48080 readers
560 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 6 years ago
MODERATORS
k_o_t@lemmy.ml
tmpod@lemmy.pt
Yayannick@lemmy.ml
ranok@sopuli.xyz
580
When apps just get it... (lemmy.ml)
submitted 3 days ago by ropatrick@lemmy.world to c/privacy@lemmy.ml
62 comments fedilink hide all child comments
 

Currently on an enjoyable journey of de-googling, upping privacy, data sovereignty and so on.

Apps that do this just get it.

you are viewing a single comment's thread
view the rest of the comments
[–] sompreno@lemmy.zip 10 points 2 days ago (2 children)

I mean considering lemmy is public information and messages are unencrypted...

[–] PalmTreeIsBestTree@lemmy.world 5 points 2 days ago

At this point, I gave up a long time ago on hiding my opinions. I’d rather die for my ability to speak out than to stay silent.

[–] astropenguin5@lemmy.world 16 points 2 days ago (1 children)

But I know that and choose to make public statements. Plus, there are ways to be anonymous-ish about it still

[–] sompreno@lemmy.zip 3 points 2 days ago (2 children)

True, but my comment was about how it was irrelevant that voyager doesn't allow tracking through notifications when Lemmy is inherently insecure. Although in an open communication like Lemmy the insecurity doesn't matter as much.

[–] WhyJiffie@sh.itjust.works 8 points 2 days ago* (last edited 2 days ago) (1 children)

oh, I thought OP's point is Voyager does not even want you to bother with notifications that could make you more addicted

edit: someone else has taken it that way too: https://europe.pub/comment/7070900

[–] sompreno@lemmy.zip 1 points 2 days ago (1 children)

I've made an assumption that op was referring to how messages can be pulled from push notification post decryption since they were talking about upping privacy and data sovereignty.

[–] WhyJiffie@sh.itjust.works 3 points 2 days ago* (last edited 2 days ago) (1 children)

wait, I think maybe there is a misunderstanding in what happened in other apps. you are referring to the signal notifications thing, right?

[–] sompreno@lemmy.zip 1 points 2 days ago (2 children)

Yes but its not just signal but any app with push notifications

[–] WhyJiffie@sh.itjust.works 2 points 2 days ago (1 children)

one more thing: its not actually irrelevant for privacy whether lemmy sends our public comments across google's push service. we are not anonymous, but we don't use real names either so it's partially private, but when google connects your notifications (or just the timestamp of them with comments here), they will be able to figure out what is your account. they can use that information for stalker marketing or give it to the authorities later on

[–] sompreno@lemmy.zip 2 points 1 day ago

You're right about it not being irrelevant but I was just talking the security of sent messages in Lemmy which can be read by everyone regardless

[–] WhyJiffie@sh.itjust.works 2 points 2 days ago (1 children)

ok. push notifications don't universally leak your data. apps can receive either the message contents in the push notification, which is unsafe (less so if encrypted), or a ping that there is some kind of a new notification, upon which the app can connect to the server to fetch them. Popular messaging apps probably do the former for some reason. in mattermost its configurable by the server operator but defaults to leaking data. safe messaging apps don't do this, they just send an empty notification or such, and the app checks in for updates. signal and matrix are like that, but in both cases they wouldn't even be able to send the message when it is encrypted.

but back to voyager: to be able to use push notifications, the server needs to send them. Lemmy does not have the capability for that, probably not even in the 1.0 version they are working on. so the way for Voyager to fetch notifications is to check in periodically instead of using a push service.

[–] sompreno@lemmy.zip 1 points 1 day ago (1 children)

Doesn't signal use ping notifications and the whole problem was with how the mobile os handles the notifications. From my understanding of the controversy the os stored information from the app when a notification is detected in a local directory (hence why it worked on signal)

[–] WhyJiffie@sh.itjust.works 2 points 1 day ago

yes, it was that the phone was saving notifications to a database, because the notification history feature was not disabled by the user. but that affects non-push notifications too, and it only becomes a problem when your phone is compromised (malware, including police malware)

but if you don't trust your phone with not leaking your notifications, you shouldn't trust it not leak what you typed in and what you watch on it either, because the operating system has access to all of these too. in that case you are looking for a better phone brand, maybe even a custom rom that's known for privacy

[–] astropenguin5@lemmy.world 3 points 2 days ago (1 children)

Ah fair, didn't think of it like that

[–] ropatrick@lemmy.world 3 points 2 days ago* (last edited 2 days ago)

Hi folks.

It was mainly my joy that an app's default position is "we don't do notifications". I've never seen that before. Usually one is rushing to turn them off.

I guess its privacy on two levels; privacy from potential tracking, but also privacy from intrusion, constant attention etc.

I get that Lemmy is public and it could be irrelevant if my notifications are on or not. Its just such a refreshing position to see in an app.