Google sets new privacy guidelines for Chrome extensions and Drive
Google has issued new guidelines that give developers of Chrome and Drive extensions more limited access to user data. The changes are a result of Project Strobe, an initiative by Google to better protect users’ data.
Google reports, among other things, that developers of Chrome extensions must now request permission to access the “least amount of data” necessary for the functionality of the extension. This method was already encouraged by Google, but now it is mandatory for all extensions.
Furthermore, Google now requires that the developer publishes a privacy policy with the application from more Chrome extensions. This mainly concerns extensions that have to do with ‘content provided by the user’ and personal communication.
The guidelines for Google Drive are also being tightened. From now on, third-party applications must request permission every time they want to access an individual file via Google Drive. Applications that require broader access to user data, such as backup services, will be verified separately by Google.
The new guidelines will not come into effect immediately. The changes for Chrome extensions should be adhered to from the summer; the revised Google Drive guidelines won’t take effect until early 2020.
The changes are a result of Project Strobe, a series of measures to better protect user data on Google accounts and Android devices. Project Strobe, announced in October 2018, has already killed Google+ for consumers. Google also restricted access to text messages and the phone log for Android apps. According to the tech giant, the number of apps that have access to that data has now fallen by more than 98 percent.