In a thorough investigation by a German security firm, Exodus, the popular LastPass password manager app was found to collect and send personal information about subscribers using the Android app. It does this using seven different built-in trackers.
While LastPass allows you to disable these trackers, the very existence of the built-in software could pose a security risk to users. Trackers collect data such as device information, mobile operator, LastPass account type, and Google Advertising ID used to connect user data across other apps and platforms.
Four of these trackers are for Google analytics and bug reporting, while the others serve information to AppsFlyer, MixPanel, and Segment, the latter of which specializes in user profiling and ad targeting.
The LastPass spokesperson said all trackers serve to improve the user experience and promise not to send sensitive information about users. And if you don’t want these trackers on your phone, you can turn them off by going to the Privacy submenu in the app and turn them off.
Source
