Temu class-action lawsuit: Is the cheap shopping app worth downloading? (No!)

Temu data risks
© Timon Schneider | Dreamstime.com

I saw this coming. I’ve been warning about the shopping app Temu since April when its sister app, Pinduoduo, was caught planting malware. It was spying on other apps, reading notifications and messages, and even changing settings.

The U.S. government accused Temu of data risks … and now the lawsuits are here. A class-action filed in Illinois says the Chinese app collects more info than it needs and than it discloses.

Why in the world are people still using it? The deals, of course!

On a slow boat from China

An HD Wi-Fi security cam for $6.98. An Android fitness watch for $8.38. A $7.99 wedding dress feels like bad vibes, with even the cake in tiers.

You might get lucky and find a gem that matches the description, but I wouldn’t bet on it. Shipping is slow, too, since they’re coming from China.

In exchange for those cheap goods and prices, Temu makes money with your data. The app requests 24 permissions on your device, including access to your Wi-Fi network info, Bluetooth, photos and videos, contact info and payment details. Yikes.

What about the website?

If the app is off-limits, is the website safe to use? Sorry, but no. You’re still handing over (at a minimum) your full name, address, phone number, email and payment details. To make matters worse, Temu does not support two-factor authentication (2FA). That makes your account so much easier for thieves to breach. No Bueno!

The more permissions an app requests

… the more you should consider whether it’s worth having on your smartphone. Don’t see the big deal? Think about all you do on your phone: Have private conversations with friends, log into your bank app, type in passwords, enter your credit card info and more.

Keep these security smarts in mind before you hit “install” on Temu:

  • Biometrics (like fingerprint and face scans) should be stored locally, not sent back to an app’s servers. (Temu’s e-commerce buddy Pinduoduo does this.)
  • Limit all the permissions you can. Turn off access to your camera, microphone, GPS location and anything else you can. 
  • Read the reviews. No, you can’t trust them all, but scan for reports of strange phone behavior after installation. That’s a sign of malware.

It’s hard to tell what’s legit and what you should avoid. I’ve got your back. I compiled a list of Communist China-based apps you should get off your phone now. This story is definitely worth sharing, folks.

Need help deleting apps?

You’re probably an app master and already know how to remove them from your device. But just in case you need a refresher, here ya go.

Delete apps from your Android phone:

  • Long-press an app, then tap App Info > Uninstall
  • Go to Settings > Apps & Notifications to see a list of your apps and delete them the same way. 
  • Or open the Google Play Store app and navigate to Menu > My apps & games. Tap on the app and hit Uninstall
  • NOTE: Samsung and OnePlus phones have an Uninstall option under the app shortcuts menu. 

Delete apps from your iPhone

  • Touch and hold an app, then tap Remove App > Delete App > Delete
  • Or use the App Library, introduced in iOS 14, to get a curated list of your apps grouped by category. Swipe past the last page of your Home screen to access it. Tap and hold the app, then select Delete App > Delete

Tags: Android, Apple iPhone, apps, biometrics, China, Chinese, Communist China, deals, Google, lawsuits, malware, permissions, Pinduoduo, reviews, security, shopping, Temu, two-factor authentication, website