Apple prohibited from blocking outside payment in Epic ruling

A judge this morning issued a ruling in California’s Epic v. Apple case, siding with the Fortnite maker on the topic of third-party payments. Effectively, the judge has ruled that Apple cannot prohibit developers from adding links for alternative payments beyond Apple’s App Store-based monetization.

The mobile giant’s control over fees on iOS has long been a sticking point for Epic and the veritable cash cow of its in-gaming micro-transactions.

The ruling notes, in part,

Apple Inc. and its officers, agents, servants, employees, and any person in active concert or participation with them (“Apple”), are hereby permanently restrained and enjoined from prohibiting developers from (i) including in their apps and their metadata buttons, external links, or other calls to action that direct customers to purchasing mechanisms, in addition to In-App Purchasing and (ii) communicating with customers through points of contact obtained voluntarily from customers through account registration within the app.

The decision is the result of a fight that’s been brewing for years between Apple and larger developers, particularly in gaming, whose businesses account for a hefty majority — 70%, the judge noted — of App Store revenue.

After Apple banned Epic Games’ Fortnite app for its implementation of a new payment mechanism that allowed it to bypass Apple’s in-app purchase framework last August, the game maker sued Apple, alleging it was abusing its market power by forcing companies to use Apple’s payment systems. Epic Games also sued Google and joined up with other app developers to form the Coalification for App Fairness, a group that actively lobbied for app store reform, including by involving itself in individual efforts to generate legislation at the state level in the U.S.

In recent weeks, Apple has made a few minor tweaks to its App Store rules as the result of concessions related to other lawsuits and legislation, which included a settlement with a Japanese regulator that saw the tech giant change its policies for “reader apps”– apps that provide access to purchased content — that would allow them to point users to their own website where users could sign up and manage their accounts. Another settlement gave developers permission to use customer contact information collected inside their app to tell customers about other payment options. And in South Korea, a new law forced Apple and Google to allow developers to use their own third-party payment systems. After the passing of that law, Epic Games asked to reinstate Fortnite to the App Store in that market, but Apple rebuffed that request.

Apple’s ongoing refusal to adapt its App Store rules to the changing environment, it has historically argued, is about consumer protections. In prior statements, allowing alternative means of in-app purchases could put users at risk of fraud and undermine their privacy, the company has said.

While today’s ruling will force Apple to now accommodate developers by allowing them the choice to include buttons or links to other places where they can pay, it still won in the sense that it was not deemed a monopoly. U.S. District Judge Yvonne Gonzalez Rogers had disagreed with how both Apple and Epic Games have framed the relevant market, saying that in digital mobile gaming transactions, Apple did not have a monopoly.

“While the Court finds that Apple enjoys considerable market share of over 55% and extraordinarily high profit margins, these factors alone do not show antitrust conduct,” Rogers wrote. “Success is not illegal.”

“Today the Court has affirmed what we’ve known all along: the App Store is not in violation of antitrust law,” an Apple spokesperson said. “As the Court recognized ‘success is not illegal.’ Apple faces rigorous competition in every segment in which we do business, and we believe customers and developers choose us because our products and services are the best in the world. We remain committed to ensuring the App Store is a safe and trusted marketplace that supports a thriving developer community and more than 2.1 million U.S. jobs, and where the rules apply equally to everyone.”

Today’s ruling may have longer-term implications for the developer community, as Apple will have to adjust its rules to accommodate apps that point to other payment options. It could choose to require apps to include Apple’s own in-app payments option as an option, for example. It could also decide that qualifying “reader apps” as a separate category no longer makes sense, given this new requirement. But those sorts of decisions will roll out in the days ahead.

What Epic Games didn’t win is getting Apple dubbed a monopolist, which is ultimately a much bigger deal with ramifications that could have led to U.S. government regulations. And Apple will not have to allow third-party app stores or sideloading, which could have been far more disruptive to the long-term prospects of its App Store business as a whole. For consumers, however, it means the App Store could get more complicated as they’re forced to exit apps to make purchases or to get better pricing. And when consumers use outside payment systems, they’ll lose the ability to manage all their subscriptions in one place, potentially making cancellations more difficult.

As a result of the lawsuit, Rogers ruled that Epic Games will have to pay Apple the 30% of the $12 million it earned when it introduced its alternative payment system in Fortnite, which was then in breach of its legal contract with Apple.

Following the decision, Epic Games CEO Tim Sweeney tweeted that Fortnite will return to the App Store when and where it can offer in-app payment in “fair competition with Apple in-app payment,” and would pass along the savings to consumers.

“Thanks to everyone who put so much time and effort into the battle over fair competition on digital platforms, and thanks especially to the court for managing a very complex case on a speedy timeline,” he wrote. “We will fight on.”

View this document on Scribd

from Apple – TechCrunch https://ift.tt/3hoi3OT

WhatsApp will finally let users encrypt their chat backups in the cloud

WhatsApp said on Friday it will give its two billion users the option to encrypt their chat backups to the cloud, taking a significant step to put a lid on one of the tricky ways private communication between individuals on the app can be compromised.

The Facebook-owned service has end-to-end encrypted chats between users for more than a decade. But users have had no option but to store their chat backup to their cloud — iCloud on iPhones and Google Drive on Android — in an unencrypted format.

Tapping these unencrypted WhatsApp chat backups on Google and Apple servers is one of the widely known ways law enforcement agencies across the globe have been able to access WhatsApp chats of suspect individuals for years.

Now WhatsApp says it is patching this weak link in the system.

“WhatsApp is the first global messaging service at this scale to offer end-to-end encrypted messaging and backups, and getting there was a really hard technical challenge that required an entirely new framework for key storage and cloud storage across operating systems,” said Facebook’s chief executive Mark Zuckerberg said in a post announcing the new feature.

Store your own encryption keys

The company said it has devised a system to enable WhatsApp users on Android and iOS to lock their chat backups with encryption keys. WhatsApp says it will offer users two ways to encrypt their cloud backups, and the feature is optional.

In the “coming weeks,” users on WhatsApp will see an option to generate a 64-digit encryption key to lock their chat backups in the cloud. Users can store the encryption key offline or in a password manager of their choice, or they can create a password that backs up their encryption key in a cloud-based “backup key vault” that WhatsApp has developed. The cloud-stored encryption key can’t be used without the user’s password, which isn’t known by WhatsApp.

(Image: WhatsApp/supplied)

“We know that some will prefer the 64-digit encryption key whereas others want something they can easily remember, so we will be including both options. Once a user sets their backup password, it is not known to us. They can reset it on their original device if they forget it,” WhatsApp said.

“For the 64-digit key, we will notify users multiple times when they sign up for end-to-end encrypted backups that if they lose their 64-digit key, we will not be able to restore their backup and that they should write it down. Before the setup is complete, we’ll ask users to affirm that they’ve saved their password or 64-digit encryption key.”

A WhatsApp spokesperson told TechCrunch that once an encrypted backup is created, previous copies of the backup will be deleted. “This will happen automatically and there is no action that a user will need to take,” the spokesperson added.

Potential regulatory pushback?

The move to introduce this added layer of privacy is significant and one that could have far-reaching implications.

End-to-end encryption remains a thorny topic of discussion as governments continue to lobby for backdoors. Apple was reportedly pressured to not add encryption to iCloud Backups after the FBI complained, and while Google has offered users the ability to encrypt their data stored in Google Drive, the company allegedly didn’t tell governments before it rolled out the feature.

When asked by TechCrunch whether WhatsApp, or its parent firm Facebook, had consulted with government bodies — or if it had received their support — during the development process of this feature, the company declined to discuss any such conversations.

“People’s messages are deeply personal and as we live more of our lives online, we believe companies should enhance the security they provide their users. By releasing this feature, we are providing our users with the option to add this additional layer of security for their backups if they’d like to, and we’re excited to give our users a meaningful advancement in the safety of their personal messages,” the company told TechCrunch.

WhatsApp also confirmed that it will be rolling out this optional feature in every market where its app is operational.  It’s not uncommon for companies to withhold privacy features for legal and regulatory reasons. Apple’s upcoming encrypted browsing feature, for instance, won’t be made available to users in certain authoritarian regimes, such as China, Belarus, Egypt, Kazakhstan, Saudi Arabia, Turkmenistan, Uganda, and the Philippines.

At any rate, Friday’s announcement comes days after ProPublica reported that private end-to-end encrypted conversations between two users can be read by human contractors when messages are reported by users.

“Making backups fully encrypted is really hard and it’s particularly hard to make it reliable and simple enough for people to use. No other messaging service at this scale has done this and provided this level of security for people’s messages,” Uzma Barlaskar, product lead for privacy at WhatsApp, told TechCrunch.

“We’ve been working on this problem for many years, and to build this, we had to develop an entirely new framework for key storage and cloud storage that can be used across the world’s largest operating systems and that took time.”

UK offers cash for CSAM detection tech targeted at E2E encryption

from Apple – TechCrunch https://ift.tt/2YK5fvU

Apple Music is using Shazam to solve the streaming industry’s problem with DJ mixes

Apple Music announced today that it’s created a process to properly identify and compensate all of the individual creators involved in making a DJ mix. Using technology from the audio-recognition app Shazam, which Apple acquired in 2018 for $400 million, Apple Music is working with major and independent labels to devise a fair way to divide streaming royalties among DJs, labels, and artists who appear in the mixes. This is intended to help DJ mixes retain long-term monetary value for all creators involved, making sure that musicians get paid for their work even when other artists iterate on it. And, as one of Apple’s first major integrations of Shazam’s technology, it appears that the company saw value in

Historically, it’s been difficult for DJs to stream mixes online, since live streaming platforms like YouTube or Twitch might flag the use of other artists’ songs as copyright infringement. Artists are entitled to royalties when their song is played by a DJ during a live set, but dance music further complicates this, since small samples from various songs can be edited and mixed together into something unrecognizable.

Apple Music already hosts thousands of mixes, including sets from Tomorrowland’s digital festivals from 2020 and 2021, but only now is it formally announcing the tech that enables it to do this, even though Billboard noted it in June. As part of this announcement, Studio K7!’s DJ Kicks archive of mixes will begin to roll out on the service, giving fans access to mixes that haven’t been on the market in over 15 years.

“Apple Music is the first platform that offers continuous mixes where there’s a fair fee involved for the artists whose tracks are included in the mixes and for the artist making those mixes. It’s a step in the right direction where everyone gets treated fairly,” DJ Charlotte de Witte said in a statement on behalf of Apple. “I’m beyond excited to have the chance to provide online mixes again.”

Image Credits: Apple Music

For dance music fans, the ability to stream DJ mixes is groundbreaking, and it can help Apple Music compete with Spotify, which leads the industry in paid subscribers as it surpasses Apple’s hold on podcasting. Even as Apple Music has introduced lossless audio, spatial audio, and classical music acquisitions, the company hasn’t yet outpaced Spotify, though the addition of DJ mixes adds yet another unique music feature.

Still, Apple Music’s dive into the DJ royalties conundrum doesn’t necessarily address the broader crises at play among live musicians and DJs surviving through a pandemic.

Though platforms like Mixcloud allow DJs to stream sets and monetize using pre-licensed music, Apple Music’s DJ mixes will not include user-generated content. MIDiA Research, in partnership with Audible Magic, found that user-generated content (UGC) — online content that uses music, whether it’s a lipsync TikTok or a Soundcloud DJ mix — could be a music industry goldmine worth over $6 billion in the next two years. But Apple is not yet investing in UGC, as individuals cannot yet upload their personal mixes to stream on the platform like they might on Soundcloud. According to a Billboard report from June, Apple Music will only host mixes after the streamer has identified 70% of the combined tracks.

Apple Music didn’t respond to questions about how exactly royalties will be divided, but this is only a small step in reimagining how musicians will make a living in a digital landscape.

While these innovations help get artists compensated, streaming royalties only account for a small percentage of how musicians make money — Apple pays musicians one cent per stream, while competitors like Spotify pay only fractions of cents. This led the Union of Musicians and Allied Workers (UMAW) to launch a campaign in March called Justice at Spotify, which demands a one-cent-per-stream payout that matches Apple’s. But live events remain a musician’s bread and butter, especially given platforms’ paltry streaming payouts — of course, the pandemic hasn’t been conducive to touring. To add insult to injury, the Association for Electronic Music estimated in 2016 that dance music producers missed out on $120 million in royalties from their work being used without attribution in live performances.

from Apple – TechCrunch https://ift.tt/3tuihc1

Epic Games asks Apple to reinstate Fortnite in South Korea after new law

Epic Games has asked Apple to rejoin its Fortnite developer account in South Korea as the U.S. game maker plans to re-release Fortnite on iOS in South Korea, offering both Epic and Apple payments side-by-side, said in a tweet on September 10.

Epic has asked Apple to restore our Fortnite developer account. Epic intends to re-release Fortnite on iOS in Korea offering both Epic payment and Apple payment side-by-side in compliance with the new Korean law.

— Fortnite (@FortniteGame) September 9, 2021

This request comes after South Korea passed a bill, the updated Telecommunications Business Act, in late August that will force Apple and other tech giants to let developers use their third-party payment systems.

“Epic intends to re-release Fortnite on iOS in Korea offering both Epic payment and Apple payment side-by-side in compliance with the new Korea law,” according to the official Fortnite Twitter account.

“As we’ve said all along, we would welcome Epic’s return to the App Store if they agree to play by the same rules as everyone else. Epic has admitted to breach of contract and as of now, there’s no legitimate basis for the reinstatement of their developer account,” said a spokesperson at Apple.

Epic would also have to agree to comply with Apple’s App Store Review Guidelines regarding all apps, but Epic has not consistently abided by the Guidelines, and their request of Apple does not indicate any change in Epic’s position, added Apple’s statement.

Even if the South Korean legislation, which is not yet effective, were to become law in the country, it would impose no obligation on Apple to approve any developer program account application, which includes any requests for reinstatement of a developer program account terminated prior to the legislation’s effective date, based on Apple’s statement.

In August 2020, Apple kicked Fortnite off the App Store after Epic introduced a direct payment system in Fortnite that violated Apple’s in-app purchase requirement. The two companies have been embroiled in a legal dispute over the Apple Store’s payment system.

Apple is changing its app policy to allow developers to link to external websites and it also has reached a settlement with Japan for allowing developers of “reader” apps to link to their own websites.

An Epic Games spokesperson did not immediately respond to a request for comment.

Apple announces new settlement with Japan allowing developers to link to external websites  

South Korea passes ‘Anti-Google law’ bill to curb Google, Apple in-app payment commission

Report: India may be next in line to mandate changes to Apple’s in-app payment rules

 

from Apple – TechCrunch https://ift.tt/2X1GVVo

Apple has reportedly appointed wearable chief Kevin Lynch to lead its car division

Apple has reportedly appointed a new executive to lead the development of its secretive self-driving car division. According to Bloomberg, the company has tapped Kevin Lynch to oversee Project Titan following the departure of executive Doug Field, who left the iPhone maker for Ford earlier this week.

The name may not be familiar, but if you’ve watched any Apple event in recent years, you’ve seen Lynch on stage. After a stint at Adobe, he joined Apple in 2013 to oversee the company’s wearable and health unit and has frequently been the one to present whatever new features Apple is working on for watchOS.

Bloomberg reports Lynch joined the division earlier in the year but is now overseeing the entire unit. The outlet notes Lynch’s appointment suggests Apple is likely focusing on underlying software that a self-driving car would need to navigate the road, instead of a vehicle that we could see the company release anytime soon.

Editor’s note: This article originally appeared on Engadget.

from Apple – TechCrunch https://ift.tt/3z1oH3D

What China’s new data privacy law means for US tech firms

Scott W. Pink Contributor

Scott W. Pink is special counsel in O’Melveny’s Data Security & Privacy practice based in Silicon Valley. He advises technology, media, entertainment and a variety of companies on issues of cybersecurity and privacy, IP counseling; social media law; and advertising, marketing, and promotions law.

China enacted a sweeping new data privacy law on August 20 that will dramatically impact how tech companies can operate in the country. Officially called the Personal Information Protection Law of the People’s Republic of China (PIPL), the law is the first national data privacy statute passed in China.

Modeled after the European Union’s General Data Protection Regulation, the PIPL imposes protections and restrictions on data collection and transfer that companies both inside and outside of China will need to address. It is particularly focused on apps using personal information to target consumers or offer them different prices on products and services, and preventing the transfer of personal information to other countries with fewer protections for security.

The PIPL, slated to take effect on November 1, 2021, does not give companies a lot of time to prepare. Those that already follow GDPR practices, particularly if they’ve implemented it globally, will have an easier time complying with China’s new requirements. But firms that have not implemented GDPR practices will need to consider adopting a similar approach. In addition, U.S. companies will need to consider the new restrictions on the transfer of personal information from China to the U.S.

Implementation and compliance with the PIPL is a much more significant task for companies that have not implemented GDPR principles.

Here’s a deep dive into the PIPL and what it means for tech firms:

New data handling requirements

The PIPL introduces perhaps the most stringent set of requirements and protections for data privacy in the world (this includes special requirements relating to processing personal information by governmental agencies that will not be addressed here). The law broadly relates to all kinds of information, recorded by electronic or other means, related to identified or identifiable natural persons, but excludes anonymized information.

The following are some of the key new requirements for handling people’s personal information in China that will affect tech businesses:

Extra-territorial application of the China law

Historically, China regulations have only been applied to activities inside the country. The PIPL is similar in applying the law to personal information handling activities within Chinese borders. However, similar to GDPR, it also expands its application to the handling of personal information outside China if the following conditions are met:

• Where the purpose is to provide products or services to people inside China.
• Where analyzing or assessing activities of people inside China.
• Other circumstances provided in laws or administrative regulations.

For example, if you are a U.S.-based company selling products to consumers in China, you may be subject to the China data privacy law even if you do not have a facility or operations there.

Data handling principles

The PIPL introduces principles of transparency, purpose and data minimization: Companies can only collect personal information for a clear, reasonable and disclosed purpose, and to the smallest scope for realizing the purpose, and retain the data only for the period necessary to fulfill that purpose. Any information handler is also required to ensure the accuracy and completeness of the data it handles to avoid any negative impact on personal rights and interests.

from iPhone – TechCrunch https://ift.tt/3nflHyp

Google and Jio delay their India smartphone launch

The JioPhone Next, the much-awaited smartphone designed by Google and India’s Jio Platforms to tap hundreds of millions of users in the world’s second-largest internet market, won’t launch on Friday, the Indian technology giant said Thursday midnight.

In a statement issued just now, Jio Platforms said it has been testing the smartphone with a “limited set of users for further refinement” and is “actively working to make it available more widely” around the time of Diwali festival, which is scheduled for early November.

Google and India’s Jio Platforms announce budget Android smartphone JioPhone Next

The Indian firm, which operates the largest telecom network with over 400 million subscribers, blamed global semiconductor shortages for the launch delay and said it expects the additional two months “will” mitigate that.

The JioPhone Next smartphone, unveiled in June this year, was scheduled to launch on Friday. Neither of the firms had given any indication in recent days that they may have to postpone the launch. “The companies remain committed to their vision of opening up new possibilities for millions of Indians, especially those who will experience the internet for the very first time,” the Indian firm said in a press statement.

Mukesh Ambani, India’s richest man and the chairman of Reliance Industries, which operates Jio Platforms, unveiling JioPhone Next at an event in June this year Image Credits: Jio Platforms

Powered by “extremely optimized Android” mobile operating system, the JioPhone Next phone is marketed to be an “ultra-affordable 4G smartphone” to tap the roughly 300 million users in India who are still on slower networks. The two firms have said that they plan to eventually launch the smartphone in other markets as well.

At an event in June, the two firms said the JioPhone Next will feature a “fast, high-quality camera” which will support HDR, and will be protected by the latest Android releases and security updates. It will also ship with a range of features, including Read Aloud and Translate Now that will work with any text on the phone screen, including web pages, apps, messages and even photos, the two firms have said.

Analysts have said in recent weeks that the JioPhone Next — whose price and tech specifications are yet to be revealed — could disrupt the Indian smartphone market — the world’s second largest — and help the telecom network further solidify its dominance in the country.

“At present, there are 430 million smartphone users, 115 million JioPhone users [Jio’s “smart” featurephone] and 320 million featurephone (2G) users in India. We believe smartphone users with devices priced above $100 are unlikely to opt for a sub $100 device,” analysts at Jefferies wrote in a report to clients this week. “That leaves 25% of smartphone users, i.e. 105 million smartphones, 115 million JioPhone users and 320 million featurephone users as the addressable market for JioPhone Next. Assuming replacement cycle of 2 years for smartphones and 3 years for JioPhone/featurephones, the addressable market for JioPhone Next could be 200m devices annually.”

The smartphone is the latest collaboration between the two firms. Last year, Google invested $4.5 billion in Jio Platforms and that’s where it first announced the plans to develop cheap smartphones with the Indian telecom operator. Facebook and scores of other firms have also bought stakes in the Indian firm. Jio Platforms operates a number of businesses, including telecom giant Jio Infocomm, which competes with Airtel and Vodafone Idea; and e-commerce firm JioMart, which competes with Tata-owned BigBasket, SoftBank-backed Grofers and Amazon and Walmart’s Flipkart.

from Android – TechCrunch https://ift.tt/3jYLYim
via IFTTT