The Federal Trade Commission (FTC) discover that the six largest internet service providers (ISPs) in the U.S. collect and share customers’ personal information without facilitating them with information on how it is utilized or meaningful ways to the management of the process.

“Most of the internet service providers (ISPs) collect and share far more data about their customers than many consumers may expect—including access to all of their Internet traffic and real-time location data—while failing to offer consumers meaningful choices about how this data can be used,” the FTC said.

This was found as part of a study, started in 2019, into the privacy practices of U.S. broadband companies and related entities and how they collect, retain, use, and disclose info about consumers and their devices.

The six broadband providers included in FTC’s report are AT&T Mobility, Cellco Partnership also known as Verizon Wireless, Charter Communications Operating, Comcast also known as Xfinity, T-Mobile U.S., and Google Fiber.

Together, the six companies currently control roughly 98 percent of the nation’s mobile Internet market, according to the FTC.

The FTC also noted that these tech giants have expanded beyond fixed residential internet and mobile internet services into other areas.

By including voice, content, smart devices, advertising, and analytics services, they could further increase the volume of customer data they can collect and share with third parties.

Troubling data accumulation, protection, and sharing exercises

“The report classified some troubling information collection methods among several of the ISPs, including that they combine data across product lines; combine personal, app usage, and web browsing data to target ads; place consumers into sensitive categories such as by race and sexual orientation; and share real-time location data with third-parties,” the FTC said.

As the FTC additional discovered, the ISPs amass huge pools of sensitive consumer data and use it in ways their customers do not expect and could cause them harm, primarily when classifying them by demographic characteristics, including race, ethnicity, gender, or sexuality.

Although many ISPs claim to offer customers choices, the choices they provide are often a sham, at times nudging them toward even more data sharing.

“Even though several of the ISPs promise not to sell consumers personal data, they enable it to be used, transferred, and monetized by others and hide disclosures about such practices in fine print of their privacy policies,” the FTC added.

“For example, several news cracks noted that subscribers’ real-time location data shared with third-party customers was being accessed by car salesmen, property managers, bail bondsmen, bounty hunters, and others without reasonable protections or consumers’ knowledge and consent, according to the report.”

Moreover, because of their problematic privacy practices and protections, they can be at least as privacy-intrusive as large advertising platforms, given that they have direct access to their customers’ entire unencrypted internet traffic.

Even when compared to sites that encrypt their traffic or use VPNs, ISPs can still collect the domains their customers connect to and analyze their browsing behavior.

Previous FCC Chair Ajit Pai charged for the current state of things

U.S. Senator Ron Wyden said in a statement following FTC’s report that Ajit Pai, the former head of the FCC, is likely the one who made it possible for tech firms to disregard their users’ privacy by harvesting and using their data for business purposes.

“If Congress required any more proof that America desperately needs a consumer privacy law, the Federal Trade Commission’s report about internet service providers’ rampant abuse of their customers’ private, personal browsing information should be enough to get Washington to act,” Wyden said.

“Whether it’s promoters, tech companies, or Big Cable, corporate America is showing absolute contempt for the idea that consumers can control personal details about their lives. Democrats have introduced multiple comprehensive privacy bills that would crack down on this flagrant abuse.

“Eventually, it’s worth remembering that former Federal Communications Commission Chair Ajit Pai opened the floodgates to ISPs’ unchecked use of browsing data when he repealed the Obama-era broadband privacy and net neutrality regulations.

“The FCC needs every tool available to stop cable companies from gouging consumers and selling their data.”