If you are fond of looking for creative and innovative apps on Play Store, you might have come across a stylish GO Keyboard App developed by a Chinese developer GOMO Dev Team. The app is available with two versions having more than 200 million users worldwide; GO Keyboard – Emoji keyboard, Swipe input, GIFs having 4.5 stars of user rating and GO Keyboard – Emoticon keyboard, Free Theme, GIF with 4.4 stars.
Here comes an alarming news that the app has been found spying on you. This was discovered by security researchers just recently that GO Keyboard App was sending personal data and information about its users back to remote servers. It was also as “using a prohibited technique to download dangerous executable code.”
According to Google’s policies, downloading executable code, such as dex files or native code from a source other than Google is prohibited. This is what the GO Keyboard was found doing by security researchers.
Adguard said, “Without explicit user consent, the GO Keyboard reports to its servers your Google account email in addition to language, IMSI, location, network type, screen size, Android version and build, device model, etc.”.
GO Keyboard T&Cs
If we see the GO Keyboard’s app description on Google Play Store, the developers clearly mention that they don’t collect any kind of personal information by saying, “We will never collect your personal info including credit card information. In fact, we care for privacy of what you type and who you type!”. On the contrary, this is the exact opposite of what the application does.
According to Adguard, the app shares personal information right after installation and communicates with dozens of tracking servers and also establishes an access to sensitive data on your phone.
What’s actually scary is that several modern apps collect and send your private data to their servers. Adguard adds that this is fairly common in modern apps even though it goes against Google Play policies.
We use keyboards on our devices to type in sensitive information like passwords, bank account numbers, social media log-ins and phone numbers. At the whim of the developers, all of this could be tracked and sent back to a remote server.