How to prevent Gmail content from being read
Recently, the Wall Street Journal discovered that Google allowed third parties to read users' Gmail content. Although the third parties said they ensured security rules, there was still a possibility that their employees leaked customer information.
After the Wall Street Journal article was published, Google's chief security officer, Suzanne Frey, admitted that Google allowed developers to access users' emails.
But this access is only allowed after developers have been reviewed by Google.
Google allows third parties to read users' Gmail content. |
Application developers now allow customers to log in via their Gmail address. At that time, some services will display a request for permission to read email content, access user contacts, and users often do not read this request carefully and accept it immediately.
Allowing users to read their emails is explained as a way for third parties to optimize their services to better suit customer needs. Emails containing travel plans such as flight confirmations and hotel reservations are the group most at risk of being accessed.
The process of reading user emails can be done manually by the developers' own employees or optimized for machine reading speed, with speeds of up to thousands of emails per day.
If the process is done by humans, the risk of data leakage is entirely possible.
Therefore, users can proactively take some steps to block third parties from reading their emails in the future.
First, users need to access the Google Account management page and open the security section.
Manage Gmail app. |
Continue to select the application that has account access and click Manage applications.
The “Third-party apps with account access” section will list the apps with the deepest access. For apps that have permission to read Gmail, users should remove this app’s access.
Users should remove access from apps that have permission to read Gmail. |
In addition, in the future, users should consider each time an application requests access to their Google account, carefully read the access permissions to know what information the application wants to know from them, and then decide whether to grant permission or not.