What data Audacity collects and what it says it uses it for

Diego Germán González

4 minutes

What data Audacity stores

Audacity is an open source tool for creating and editing audio files. By says my companion Pablinux, it does not even come close to comparing itself to GarageBand, but for the needs of common users it is enough and more than enough.

The problem is that it has a new owner, Muse Group And, a decision they made, to include telemetry, generated a lot of annoyance among users.

From Muse they clarified that

  1. Telemetry was strictly optional and was disabled by default.
  2. Telemetry only works on builds made by GitHub CI from official repositoryl (telemetry URLs are only defined there).
  3. For those who want to compile Audacity from source code, a CMake option will be provided to enable the telemetry code. This option is will deactivate of default.

At the same time, it was clarified which data the chosen collection services would receive: Google and Yandex.

  1. Tracking between sites is not incorporated, which limits the ability to identify the user by both Google and Yandex.
  2. Yandex would only receive the event «open application»To help estimate the size of the user base.
  3. Google I would only receive:
    to. Session start and end events;
    b. Debugging errors;
    c. File formats used for import and export;
    d. Versions of the operating system and Audacity;
    and. Use of effects, generators and analysis tools to prioritize future improvements

Due to community complaints, Google and Yandex were replaceds for self-hosting the reporting database using the Sentry bug tracking tool.

What data Audacity collects

In a updated version of the privacy policies, the company, under the name of WSM Group, and domiciled in Kaliningrad, Russia, identifies itself as responsible for collecting and protecting user data. In it, it lists what data it collects and what it uses it for.

Personal details

  • Name and version of the operating system.
  • IP adress.
  • Geographical location (Calculated from the IP address.
  • Relevant hardware data.
  • Non-fatal error warning message.
  • Crash report.

As reported, With this data they can analyze the problems and improve the application.

Data collected for legal purposes

In this case, it is not clear what types of data we are talking about, but They say it is to defend themselves in case of litigation and respond to inquiries from the authorities.

Age restriction.

A curiosity is that clarify that the application is not suitable for children under 13 years. So if you're under that age, stop editing the symphony recording you wrote and go watch Netflix. It is not something that Uncle Putin gets angry and puts Polonio 210 in the Colacao.

With whom is the data shared?

According to what is stated in the privacy statement, lThe Hash IP address is shared with the following institutions and individuals:

  1. Staff members who have a legitimate business need access and with a contractual prohibition to use Personal Data for any other purpose.
  2. CAny competent law enforcement body, regulator, government agency, court, or other third party where we believe disclosure is necessary (i) as a matter of applicable law or regulation, or (ii) to exercise, establish or defend legal rights;
  3. Auditors, advisers, legal representatives and similar agents in connection with the advisory services they provide for legitimate business purposes and under the contractual prohibition of using Personal Data for any other purpose.
  4. Potential buyer (and its agents and advisers) in relation to any proposed purchase, merger or acquisition of any part of the business,
  5. Any other personna with prior consent from user to disclosure

Data storage and transfer

On how they save the data, they explained the following:

    1. The IP address will be stored identifiably for one calendar day only in the form of a hash, the salt of which is changed daily. The salt file is not stored in any database and cannot be retrieved after it has been changed. ANDThe hash is stored for one year, after which it is removed. Other information we collect, such as operating system version or CPU information, is not identifiable.
    2. All your personal data is stored on servers in the European Economic Area (EEE). However, it may occasionally be necessary to share personal data with the head office in Russia or the external advisor in the USA.

Now that we know what data Audacity collects and what it does with it, it seems pretty reasonable what they say, anyway, if you prefer not to share anything, open source always has alternatives.


Leave a Comment

Your email address will not be published. Required fields are marked with *

*

*

  1. Responsible for the data: AB Internet Networks 2008 SL
  2. Purpose of the data: Control SPAM, comment management.
  3. Legitimation: Your consent
  4. Communication of the data: The data will not be communicated to third parties except by legal obligation.
  5. Data storage: Database hosted by Occentus Networks (EU)
  6. Rights: At any time you can limit, recover and delete your information.

  1.   DJFRAnzZ said
    ago 3 years

    I can not believe what my eyes see, now the world powers politicize musical creativity with copyright, definitely human civilization is very screwed up.

    Reply to DJFRAnzZ