Bad day today… My iPhone died! Yesterday it was 100% functional and today refused to boot or charge!? No reaction event after a hard-reset and a few hours of charging… This irritates me at the highest level. Well!
No alternative, I went to my local dealer and explained the problem. Of course, they can’t do anything and my phone has to be sent to the repair center “for further analysis”.
After performing the required administrative tasks, I started the following conversation with the vendor:
Me: “And by the way, what about the confidentiality of my personal data?”
Vendor: “I hope you have a backup, your phone will be returned erased!”
Me: “Don’t care about my backup, but what about the data stored on the phone now?”
Vendor: “Of course, it’s always best to clean up the phone before returning it to the repair center”
Me: “I agree… But it does not boot anymore! I can’t cleanup it by myself!”
Vendor: “Ah! Indeed…”
Vendor: “But normally, the engineer don’t read your data! Don’t be afraid! They cannot do this…”
Vendor (smiling): “And if the phone is dead, your data won’t be accessible anymore!”
This conversation left me a strange feeling, almost as if my privacy could be violated!
Dear Mr Vendor, first, if the phone does not boot, it does not mean that the data won’t be readable anymore! And even digital supports affected by an hardware failure can still reveal interesting information. Second, you have to know that the weakest link in a security policy or company policy will always be the human. In our mind, “prohibited” == “tempting”. That’s the human behavior!
Today’s mobile devices are not used only to give and receive calls. They are part of your life and contains more and more sensitive data (SMS, e-mails, pictures, documents, videos, notes, …). And often, security of the same devices is kept at a very low level!
Do you remember this story?