because there is no "bank app" for a laptop or desktop. my banks force their customers to use a smartphone.
I'm not talking about bug reporting but about all networking functions. for example by default you use GrapheneOS's DNS servers instead of Google's, so now GrapheneOS knows which sites you visit.
Sure. I was referring to the 1/5th that still have the web version.
But who is the "you" visiting the sites? There is no account or identity tied to the phone. Take the Jan 6 protests: Apple and Google told the government who was there because those people have Apple and Google accounts on their phone, plus likely a phone contract. If you're on a PAYG or some other unregistered phone, there is no "you" tied to it unless you get sloppy.
of course I use the web version with these banks!
well I did not check it myself but I believe each Pixel has an unique ID and shares it with GrapheneOS servers. if you are curious you could create a WiFi connection on a laptop, connect your Pixel to a laptop and sniff its network requests to see what it sends.
Agreed. I only use old-school banks, if I have to use them at all. I suppose if I did have to use one of the app-only platforms, I'd do it all on a tablet or some phone that is switched off the rest of the time. There are also Android emulators on Desktop that I've used in the past.of course I use the web version with these banks!
by the way these old-school banks who still maintain a web interface are the least troublesome. I've had almost no problems with them, for example once my account was blocked, I've called the bank and the support told something like "please come to the nearest branch with your passport", but after I've said that I reside in a different country they've answered "okay we will check what we could do", and unblocked the account on the same day, without a 2nd phone call.
and the most troublesome banks are those new-school banks with smartphone apps and "neobanks" that work fully online and do not even have physical branches.
Yes there probably are unique IDs - MAC address, IMZI, IEMI - but as long it is not tied to your identity (like an account with your name on it), all that is recorded is phone#676329763 watched a p***O site. VPN and MAC spoofing will help further obfuscate your identity further.
I do not mean MAC/IMEI/IMSI/etc but some kind of an "advertising ID" used by all generic Android phones. if you have one without GrapheneOS you could find that ID somewhere in the settings.
Show me one bank in SEA that still offers web banking, I would be glad to switch.
While I try and avoid banks like the plague, HSBC (HK and SG) still offers web-only banking (complete with a physical security key).
Yes. But you won't be able to use certain functions like the free send as a local function
GrapheneOS has no Advertising ID:
the majority of the "apps" are indeed just a web browser opening the app creator's website.
Exactly this. But what bothers me from that perspective is:
You’d think so, but regulations are actually pushing banks to collect even more data. Take the Netherlands for example, the government is pushing Telcos to share call data with banks under the excuse of fighting technical support scams. It’s a slippery slope, and it’s hard to ignore the bigger picture: more surveillance, less privacy, all wrapped up as fraud prevention.
