XPost: misc.phone.mobile.iphone, alt.internet.wireless   
   From: mariond@facts.com   
      
   SUMMARY   
      
   1. Wi-Fi scanning   
      A. iOS: Always scans nearby networks when Location Services is on,   
         even if Wi-Fi is off. No user toggle; only disabling Location   
         Services stops it.   
      B. Android: Scans only if Wi-Fi scanning is enabled. User can toggle   
         at Settings > Location > Wi-Fi scanning. Disables scan, save, and   
         upload together.   
      
      Take a guess which is more private...   
      
   2. Bluetooth scanning   
      A. iOS: Always scans for beacons when Location Services is on, even   
         if Bluetooth is off in Control Center. No granular toggle.   
      B. Android: Scans only if Bluetooth scanning is enabled. User can   
         toggle at Settings > Location > Bluetooth scanning.   
      
      Take a guess which is more private...   
      
   3. Cellular towers   
      A. iOS: Tower IDs always collected for service. Uploaded if Location   
         Services is on. No user control short of disabling cellular.   
      B. Android: Same situation. Tower IDs always collected and uploaded   
         if Location Accuracy is on. No viable user control short of disabling   
         cellular (or using a second phone as I described in another thread).   
      
      Both are about the same in terms of tower ID privacy.   
      
   4. GPS   
      A. iOS: GPS fixes calculated locally. Uploaded only when system   
         services or apps request them. User can disable Location Services   
         globally or per app.   
      B. Android: Same. GPS fixes calculated locally. Uploaded only when   
         system services or apps request them. User can disable Location   
         globally or per app.   
      
      Both are about the same in terms of GPS privacy.   
      
   5. Access point fingerprints (Wi-Fi BSSIDs)   
      A. iOS: Always scanned and uploaded when Location Services is on.   
         No user toggle. Other iPhones upload your router even if you do   
         not use Maps.   
      B. Android: Scanned and uploaded only if Location Accuracy is on.   
         User can disable Location Accuracy to prevent upload, but other   
         people's phones still upload your router.   
      
      Take a guess which is more private...   
      
   6. Sensors (motion, compass, barometer, etc.)   
      A. iOS: Available to apps with permissions. No global toggle.   
      B. Android: Same. Available to apps with permissions. No global   
         toggle.   
      
      Both are about the same in terms of sensor privacy.   
      
   7. Router-level and connection controls   
      A. Autoconnect   
         1. iOS: Enabled by default. No per-network toggle. Must forget   
            network or disable Wi-Fi.   
         2. Android: Enabled by default. Per-network toggle available.   
            Easy to disable without forgetting.   
      
         Take a guess which is more private...   
      
      B. Evil twins   
         1. iOS: Will connect if SSID/security match. No granular defense   
            beyond forgetting or disabling Wi-Fi.   
         2. Android: Same base risk, but autoconnect can be disabled per   
            SSID. Developer options allow stronger MAC randomization.   
      
            Take a guess which is more private...   
      
      C. MAC address privacy   
         1. iOS: Private Wi-Fi Address randomizes per SSID only.   
         2. Android: Randomizes per SSID and per connection (developer   
            options). Stronger identity protection.   
      
            Take a guess which is more private...   
      
      D. Hidden SSID   
         1. Scan: Passive SSID discovery eliminated; detection relies on   
            active probes. BSSID remains visible.   
         2. Upload: Hidden SSIDs can still be uploaded if discovered.   
      
      E. _nomap   
         1. Effect: Signals do-not-index in databases.   
            Does not stop scanning, saving, or uploading.   
      
   8. Bottom line   
      A. iOS: Defaults ON for Wi-Fi and Bluetooth scanning, saving, and   
         uploading. No granular toggles; only disabling Location Services   
         stops it.   
      B. Android: Defaults ON, but provides explicit toggles for Wi-Fi and   
         Bluetooth scanning. Users can disable scan, save, and upload while   
         keeping other location features.   
      C. Both: Cellular towers and router fingerprints remain outside full   
         user control because other people's devices upload them.   
      
   Almost always, Android is far more private than iOS, but both suck.   
      
   What matters is, my router isn't in the database and I am not adding your   
   router to the database; but are you set up as privately as I am set up?   
   --   
   The difference between intelligent people and everyone else is that   
   smart people can handle an inordinate amount of technical details.   
      
   --- SoupGate-Win32 v1.05   
    * Origin: you cannot sedate... all the things you hate (1:229/2)