Xiaomi responds to affirm that My Browser tracks you even in incognito mode

NEW DELHI: A cybersecurity consultant has claimed that Xiaomi’s default internet browser tracks users even when they go incognito mode. Previously, another security investigator named Gabi Cirlig was quoted in a report by
Forbes claiming that his Redmi Note 8 phone was tracking his use of My Browser. “It is a back door with phone functionality,” he said of his new Xiaomi phone in the report.

In response to this, Xiaomi India MD and Global VP Manu Jain issued a detailed statement. Rejecting the claim, he emphasized that Xiaomi does not collect any data without the permission of the users. He also added that the Mi Cloud and Mi Browser data of all Xiaomi users in India is stored locally on AWS servers.

In a related blog post, Xiaomi said: “In all the world markets where Xiaomi is officially present, to offer the best possible user experience, increase compatibility between the operating system and various applications, as well as assuming the obligation to protect the User privacy, all usage data collected is based on permission and consent given explicitly by our users. In addition, we ensure that the entire process is anonymous and encrypted. Aggregate usage statistics data collection is used to internal analysis, and we do not link any personally identifiable information to any of this data, and this is a common solution adopted by Internet companies around the world to improve the overall user experience of various products, while protecting the user privacy and data security. ”

Returning to the video, the consultant named Andre Tierney says: “Xiaomi Mint Browser (and several others produced by them) send the URLs that you visit to remote servers, while you are in normal browsing mode or incognito mode. These are linked to a UUID that it is the same day to day, and the same between normal and incognito navigation “.

the
Forbes The report claims that the Xiaomi phone “was also recording what folders it opened and what screens it flipped through, including the status bar and configuration page. All data was being packaged and sent to remote servers in Singapore and Russia, although web domains they were registered in Beijing. ”