Outlook.com claims my account has been doing creepy things, so to verify that you may or may not be a creepy person who knows how to use a phone, we need your phone number.
(Never mind that the only thing I’ve done with the account is send a test email to one of my other addresses and the password is a mile long thanks to 1Password)
Outlook.com needs to send my number—which in no way, shape, or form could be a throwaway from Google Voice or a trillion other services—a verification code. Sure, send it.
Sorry you’ve sent too many codes, now you’re double extra locked out with a cherry on top.
One risk to the undisclosed sharing noted by Nolan was that, “with the information I have available to me through the checkout portal I could track down and harass users who left negative reviews or refunded the app purchase.”
A greater risk its that, with millions of names being distributed to every vendor of paid apps on Google Play, the likelihood of a security breach through malware becomes very high. Customers who entrusted their details to Google are now having their information spread across a variety of developers who may not even have a security policy.