Partiful Event App Patches Critical Location Data Privacy Flaw After TechCrunch Investigation
Partiful Event App Patches Critical Location Data Privacy Flaw After TechCrunch Investigation
Social event planning app Partiful, a popular alternative to Facebook Events, has swiftly addressed a significant privacy vulnerability that exposed users’ precise location data from uploaded photos. TechCrunch’s investigation revealed that the app was not stripping GPS metadata from images, including public profile photos, allowing anyone with basic web browser developer tools to access sensitive location information. This flaw could have revealed users’ homes or workplaces.
Following TechCrunch’s alert, Partiful co-founders Shreya Murthy and Joy Tao confirmed the issue was on their radar and was promptly prioritized. The company successfully deployed a fix, removing metadata from both new and existing user-uploaded photos, and publicly disclosed the security lapse shortly thereafter. While Partiful stated it found no evidence of direct or bulk access to the exposed data, an investigation is ongoing. The incident highlights the critical importance of robust security practices for apps handling vast amounts of user data, especially for a company that has raised over $27 million from investors.
Disclaimer: This content is aggregated from public sources online. Please verify information independently. If you believe your rights have been infringed, contact us for removal.