Steam is a video game launching service, digital content store, DRM platform, file sharing platform, and Social Network created by Valve.
This program is spyware because it collects huge amounts of user information, including but not limited to your Home Address, Telephone Number, Credit Card Number, and Internet Search History. Steam also profiles your hardware, communciations through Steam's social networking features, and contains a mandatory self-updater. Steam will not work without an internet connection.
Steam cannot be built from an availible copy of the source code. This means that it is impossible to prove that Steam is not spyware or does not use certain spyware features that it potentially has.
In Steam's privacy policy[1], Steam details that it collects the following user information:
Steam also confirms that it shares this information with third parties. The implications of this are as follows: Steam knows your name, age, where you live, your banking information, and what your e-mail is. Steam shares this information with other companies (at least, to the extent allowed by law). Steam can use your IP Address to track where you are to the nearest county and can use your Device Unqiue ID provided by the fingerprinting spyware features inside Steam to track your usage habits across devices that you use. Steam also records all of your communications with others through its social networking and instant messaging services, such as all chat logs, voice conversations, and forum posts, and can share all of this information with third parties as well.
It was proven that Steam's VAC system records your internet history and uploads it to an offical Valve server[2]. Valve has subsequently denied[3] that they store user's internet history, but it is impossible for Valve to prove that they do not store internet history. What we do know is that Valve does have the ability to spy on a users internet history, the spyware feature is programmed into Valve's software and the internet history is processed by Valve's servers. It is up to you to decide wether or not you trust Valve when they say that they have turned this feature off or not.
Steam records your program usage habits for all programs launched through Steam's program launching service. This spyware feature is mandatory and has no opt-out. Steam also uses its social network features such as the user profile and friends list to broadcast a users program usage habits publicly. This spyware feature can be partially disabled by setting your profile to private, but it cannot be opted-out of if you are using the "friends" social networking feature.
Steam has the spyware feature which allows you to "opt-in" to certain features of the Steam service by providing Steam your telephone number. This is done through a pop-up that cannot be turned off. This spyware feature is currently not required, but is being encouraged by Steam. Steam in fact will lock out certain features and privledges to users who want to protect their privacy- for example, access to the "steam store" which is an online marketplace run by valve requires you to give you your phone number. So it is impossible to use all features of the software without giving up this kind of information.
Steam will "phone home" whenever the Steam client is opened or a program is launched through Steam. This spyware feature is mandatory and cannot be turned off. Steam provides an offline mode which is not an opt-out because users must still connect to Steam Servers every 30 days or so.
Steam contains spyware features that allow it to update itself without user verification. This is not an opt-out feature because eventually Steam will stop working until it is updated. Self-updating software is a form of spyware because it can be used to install new spyware features or force users to agree to new agreements that force them to explicitly give up more information to continue using the spyware program.
Steam Proprietary Malware [web.archive.org] [archive.is]
Steam uses insecure, out-of-date Chromium browser [web.archive.org] [archive.is]
1. Privacy Policy Agreement [web.archive.org] [archive.is] [wayback.archive-it.org] [arquivo.pt]
2. VAC now reads all the domains you have visited and sends it back to their servers hashed [web.archive.org] [archive.is]
3. Valve, VAC, and trust [web.archive.org] [archive.is]
This article was last edited on 8/3/2018
If you want to edit this article, or contribute your own article(s), email me at spyware@aaathats3as.com. All contributions must be liscenced under the CC0 liscence to be accepted.