Core Viewpoint - The National Cybersecurity and Information Security Information Notification Center reported that 67 mobile applications are illegally collecting and using personal information, with financial apps being the most affected [1][3][5]. Group 1: Violations Identified - 15 financial apps were named for multiple violations, including lack of clear privacy policies, failure to inform users about third-party information sharing, and not providing a way to withdraw consent [1][3][5]. - Specific apps such as Zhong'an Loan, Cloud Financial, and others were found to have incomplete privacy policies and issues with user consent [5][6]. Group 2: Categories of Violations - The reported violations fall into five main categories: incomplete privacy policies, unauthorized third-party information sharing, lack of user rights protection features, absence of consent withdrawal options, and unauthorized processing of sensitive personal information [5][6]. - For instance, apps like Zhong'an Loan and Cloud Financial failed to list the purposes, methods, and scope of personal information collection [5][6]. Group 3: Banking Apps on the List - Six banking apps were also highlighted, including Gansu Bank and Lanzhou Bank, primarily for not providing a way for users to withdraw consent for personal information collection [8][15]. - Gansu Bank's app has a significant user base, with 2.949 million downloads, and emphasizes digital financial services [12][8]. Group 4: Regulatory Response - The regulatory environment is tightening, with new policies aimed at enhancing personal information protection in the financial sector, including specific requirements for mobile app management [18][19]. - Financial institutions are urged to adopt comprehensive risk management practices and ensure compliance with personal information handling regulations [18][19].
违法违规收集使用个人信息!15款金融App上“黑榜”,涉分期白条、捷信金融、甘肃银行等