Your Boss's Software is Sending Your Data to Meta and Google

Your Boss's Software is Sending Your Data to Meta and Google

Nine popular 'bossware' tools? They're sharing employee data. With Meta. With Google. That's the shocker from a new study out of Columbia Law School.

Stephanie Nguyen at Columbia Law School’s Center for Law and the Economy led the research. A serious privacy headache for hundreds of thousands of workplaces across pretty much every sector.

The Data Grab

Nguyen's study looked at Apploye, Desklog, Hubstaff, Monitask, Buddy Punch, VeriClock, When I Work, and a couple of others. All nine. Every single one was sharing user data.

We're talking names, email addresses, even web history. These platforms just hand it over to third parties. Building comprehensive employee profiles. Without consent? Without even knowing it?

"Every single platform, nine of nine bossware companies, shared worker data with outside companies," Nguyen said. Pretty pervasive, huh?

The study highlights a troubling trend where employee data is not just collected for internal productivity assessments but also bundled and shared externally. This extends to seemingly innocuous personal details that, when aggregated, paint a detailed picture of an individual's work habits, preferences, and behaviors.

Privacy Risks. Real Risks.

All this data sharing? It's risky. Opens the door to misuse of sensitive info. But it also conjures up a 'shadow worker reputation economy.' Think about it: unauthorized inferences about your behavior, your productivity. That could tank your career. Your privacy, gone.

• Names, emails, web activity – all shared.
• Three platforms track precise location, too.
• A 'worker reputation economy' could emerge. That's scary.

Consider this: if an employer misinterprets this data or if it ends up in the hands of future employers, it could unfairly influence hiring decisions. A slight dip in productivity during a stressful month could be misinterpreted as a lack of commitment or competence.

The Bigger Picture

This isn't happening in a vacuum. Workplace surveillance is under fire globally. Europe? GDPR means these practices would face serious legal challenges. Fast.

GDPR, or the General Data Protection Regulation, mandates strict guidelines on data handling and sharing within the European Union. It requires explicit consent from individuals before their data can be processed or shared, which stands in stark contrast to the current practices in the U.S.

But in the US, we don't have a comprehensive data privacy law. Leaves workers pretty vulnerable. Many won't even understand what they're signing up for. Or how much they're being watched.

In the absence of federal regulations, states like California have stepped up with laws such as the California Consumer Privacy Act (CCPA), which offers some protections. However, the patchwork nature of these laws means that protection varies significantly from one jurisdiction to another.

What It Means For You

So, if your company uses these tools? Be aware. Seriously. Privacy implications are real. Talk to your employer. Ask what data they're collecting. What's being shared? Know your rights under data protection laws. It's your power to act, if you need to.

A real daily-use scenario: Imagine you’re an employee at a mid-sized tech firm. Your manager introduces a new time-tracking software. You think it’s just to ensure projects are on track. But, behind the scenes, it's collecting more than just work hours. It's logging your browsing history, tracking your location when you’re working remotely, and even noting how long you spend on each task. You notice more targeted ads on your personal devices and realize some of your work habits are being shared with advertising giants.

Still So Many Questions

So many questions, still. How much data is really being shared? Beyond what's identified? Are there other recipients? Undisclosed ones? And what are companies actually doing to mitigate these risks? If anything.

While the study identifies Meta and Google as primary recipients, the data could potentially be shared with a network of third-party vendors engaged in analytics or advertising. The lack of transparency from these platforms means users are kept in the dark about the full scope of data dissemination.

Why We Care

The headline says it all: 'Meta, Google data sharing from bossware sparks privacy alarm.' Workplace surveillance is just getting more common. Employee privacy? Profound implications. This study screams for clearer regulations. More transparency. How is your data handled? How is it shared? We need to know.

This isn't just about privacy; it's about trust. Employees need to trust that their employers are safeguarding their personal data. They need to feel secure in the knowledge that their digital footprint is not being exploited beyond the original intent of productivity measurement.

The call to action is clear: companies must be transparent about their data practices. Employees, on their part, should remain vigilant, ask questions, and demand clarity. The ongoing dialogue between privacy advocates, lawmakers, and the tech industry is more critical than ever to establish fair and comprehensive data privacy standards that protect everyone in the workforce.