toot.wales is one of the many independent Mastodon servers you can use to participate in the fediverse.
We are the Mastodon social network for Wales and the Welsh, at home and abroad! Y rhwydwaith cymdeithasol annibynnol i Gymru, wedi'i bweru gan Mastodon!

Administered by:

Server stats:

872
active users

@AngharadHafod I never log in to a public wifi network that asks for personal information. And on those that don't, I switch on my VPN. And I don't use either if I have a decent phone signal and plenty of data left. But you don't have to turn off the wifi in the phone - just don't connect to any networks.

@GrahamSkeats unfortunately that's not true. And that's where the risk is. Your phone is constantly looking for WiFi networks, and sending & receiving packets to detect those networks. Even without connecting, your phone can be uniquely identified from that information.

This page explains how that works:
skyfii.io/blog/smartphone-trac

Interestingly though I note they say that since 2017 most mobiles have randomised the MAC address they reveal to WiFi networks, so for newer phones this might not work.

SkyfiiSmartphone tracking: What you need to know - SkyfiiTracking smartphones for the purpose of retail analytics and people counting is a growing space, and one that offers some huge benefits over the more traditional methods of people counting such as overhead cameras, thermal sensors and laser beams. Whilst smartphone tracking technology is amazing, there are some technical realities you should be aware of. […]

@AngharadHafod But even without MAC address obfuscation, there's no way to relate that MAC address to you personally, without the involvement of your phone network provider (which is likely to breach several data protection rules). The phone is identifiable, not you. I'm not made uncomfortable by that and wouldn't go to the trouble of turning wifi off and on. If you feel differently and you're happy to put in the effort, that's fine. Interesting read, thanks.

@GrahamSkeats unless someone else just happens to know your Mac address, and the two databases at some point talk to each other. That could be, for example, a hacked WiFi network that at some point you gave more details to. Or it could be as simple as a single rogue network you once connected to that sniffed your packets whilst you used an unencrypted internet service.

It seems the risk is lower now though, than it was. Thankfully.

@AngharadHafod

Yes, it does bother me. Also, the council may well sell the data to 3rd parties for further analysis....getting too close to the Chinese way of managing their citizens.