Ryan Haines / Android Authority
TL;DR
- Google says the EU’s latest DMA proposals could expose millions of users to greater privacy and security risks in the name of boosting competition.
- Google warns that giving third-party AI assistants deeper access to Android could facilitate fraud and cyberattacks.
- The EU wants Google to share anonymized search queries, click data and ranking data with competitors to help level the playing field.
Google is stepping up its fight against the European Union’s new system Digital Markets Act (DMA) The proposals argue that the rules are designed to reduce controls on Search and Android, potentially introducing new privacy and security risks for millions of users.
The warning comes as the European Commission prepares final decisions on separate cases for Google Search and Android interoperability by July 27. Enacted to curb the power of dominant technology platforms, the DMA requires so-called gatekeepers to open up parts of their ecosystems to competitors. These rules apply to Alphabet, Apple, Amazon, Meta, Microsoft, ByteDance and many others. For Google, this means opening up more search data to rival search engines and giving Android greater access to third-party AI services.
Google says it’s getting harder. Heather Adkins, Google’s vice president of security engineering and one of the company’s earliest security leaders, said the current proposals could expose users to more fraud and cyberattacks if they go into effect. Wired. Fraudsters will likely start using the new system within weeks, he said, especially if Android gives third-party AI services more access to sensitive permissions like microphones, cameras, on-screen content and installed apps.
Search data is an even bigger argument. The Commission wants Google to give rival search engines access to data used internally by Google, including anonymous search queries, click data and ranking data. The idea is to provide smaller search providers and AI-powered search engines with enough data to improve their products and better compete against Google’s nearly 90% share of the global search market.
Google also claims that it cannot protect sensitive search data once it leaves its infrastructure. The company argues that this information can make small organizations attractive targets for hackers, even though they must undergo independent security checks and sign agreements that prevent them from trying to identify users. Adkins also warned that more sophisticated AI models could make it easier to anonymize large data sets if they fall into the wrong hands.
Not everyone agrees with Google’s assessment. Privacy-focused search engine DuckDuckGo says the Commission’s proposal already reduces identity risks to negligible levels, while researchers at the Knight-Georgetown Institute argue the planned safeguards appear strong enough to support greater competition. They also say Google has the data it needs to independently verify that its anonymization methods are doing what they’re supposed to. But other academics recognize the privacy risks, but say they should be considered alongside the Commission’s technical protections and not compromised.
The Android side of things is causing similar debate. EU regulators competing AI assistants want deeper integration with Androidincluding support for wake words and interaction with apps and user data. Google says it shares the Commission’s broader goals, but believes opening up those capabilities too soon could weaken long-standing Android security protections. In an unusual alignment between the two rivals, Apple also said it supported parts of Google’s position on access to its operating systems.
Thank you for being a part of our community. Read our Comment Policy before deployment.
