Ask HN: Is it possible to craft a privacy policy that perpetually protects users

2•newswangerd•1h ago

Is it legally possible to craft a privacy policy for an app that prevents a company from loosening it later on if the app is sold or if the owner of the app decides to try and monetize data in the app?

For context I am the developer of an app called Digital Carrot[1] that lets users create goals for themselves that are verified by data from connected services. For example someone might create a goal to go to the gym, which the app verifies by reading GPS data from your phone. Needless to say my app handles a lot of very sensitive data and the app's privacy policy prohibits me from accessing any of this data for any reason. I've been curious if there is a way to put some kind of legally binding clause in my privacy policy that would prevent a future owner of the app from just forcing all the users to agree to a new policy that lets them harvest all of this data for nefarious purposes. Does anyone know:

1. Is this possible? 2. Has anyone done something like this? 3. What kind of mechanism would you employ to enforce this?

[1] https://www.digitalcarrot.app/

Comments

Terr_•1h ago

IANAL but I think bankruptcy-court is an issue.

An agreement to Not Do Evil can be put aside by a judge if it means squeezing money out of the company to the pay creditors, such as by selling the company (and its data-assets) at a higher price.

newswangerd•1h ago

Good gravy... I hadn't even considered that.

I assume end to end encryption would help mitigate this. Breaking E2E encryption would require a client side update that could be hard to implement if the company has already gone belly up.

Terr_•43m ago

Probably, business-as-usual systems and policies make it harder for anyone to argue the "debtor in possession" [0] violated their fiduciary duty to do their best to ensure creditors get paid.

In other words, having a "smash glass in case of insolvency" button might do the job of protecting customers, but a judge could decide it looks too much like a shopkeeper screaming "if I can't have it nobody can" before lighting everything valuable on fire.

[0] https://www.uscourts.gov/court-programs/bankruptcy/bankruptc...

GPT-5.5 Instant: Benchmarking the 52% Hallucination Reduction

The Evolving Foundations of Math

A Namecheap bug got my domain suspended

FlashAlpha – Pre-computed GEX, vol surfaces and Greeks API for options traders

Amazon's Durability

Show HN: Faction Fiasco – single-player card battler, 100 unhinged characters

Concerns about health effects of seed oils are without scientific foundation

ZenWinHook: Windows hooks for intercepting,modifying and controlling

Ads/CFT Correspondence

We ditched database triggers for audit logs

Teaching Agents to "Invoke_Claude"

Your Attempt to Solve Debate Will Not Work

Your AI Editor Doesn't Know What You're Doing

Building the Future

Why Reddit blocked my daily visit to its mobile website

Mapping Strings to Float Arrays in Go: How Fast Can We Go?

Agentic Malware Analysis: String Decryption, API Hashing and Unpacking [video]

wolfSSL Announces SPDM Support in wolfTPM TPM 2.0

Decomposing a Payment Gateway Integration: A Real /Draft:Decompose Walkthrough

SMG: The Case for Disaggregating CPU from GPU in LLM Serving

Google UK staff vote to unionise in protest against Israeli military contract

Are the Brooms Multiplying Yet?

Show HN: Score any website for AI design patterns

Elixirkit – Building Desktop Apps with Elixir and Tauri

How do you and your partner decide what to do on date nights?

US to safety test new AI models from Google, Microsoft, xAI

Kuo: OpenAI Rumored to be fast-tracking first "AI agent phone"

Offshore wind's clean energy potential remains largely untapped, say experts

A Theory of Deep Learning

Brockman's 'deeply personal' diary becomes focus in Musk vs. Altman case