Our everyday internet experience would be incomplete without the search engine. Despite their utility, search engines pose grave risks to inattentive users. People are often unaware that search engines come with a hefty price tag. Not only do these companies track your every move online and monitor your browsing habits, but they also collect data from you to monetize it by selling it off to third parties. That's how many of them make their money!
As the global search engine market continues to expand and is projected to reach a sizable US$ 20.6 trillion by 2027, Neeva enters the playing field as an ad-free search platform designed for privacy protection. Spearheaded by a former Google executive and aimed at advertisement agencies that require data for targeting purposes, this new option in the space claims to offer users unparalleled security with their web searches.
What is Neeva Search Engine?
Neeva was created by Sridhar Ramaswamy, the esteemed former Vice President (VP) of Advertising and Commerce at Google. Neeva is a new ad-free private search engine that claims to preserve user privacy by not tracking browsing habits or behaviour. According to the company, it earns money from paid subscriptions rather than advertisements. Thus, there is no point in mass surveillance and monitoring behaviour for collecting data.
However, companies seeking a comprehensive privacy solution cannot rely on company claims alone. So, is Neeva really secure?
Neeva is undoubtedly an intriguing and promising platform. Relying on a subscription-based earning model, Neeva appears to be meeting its financial objectives without engaging in underhanded tactics. Furthermore, it pledges that users' search histories and behaviours will remain confidential at all times. However, it's worth exploring its terms and conditions to determine whether or not it is truly secure.
What we found in the small print
Neeva can handover your data to the government
"We, in good faith, believe doing so is required or appropriate to: comply with law enforcement or national security requests and legal processes, such as a court order or subpoena; protect your, our or others' rights, property, or safety; enforce our policies or contracts; collect amounts owed to us, or assist with an investigation or prosecution of suspected or actual illegal activity."
However, other companies may not be as compliant as Neeva in handing over user data to the government. Today, all modern VPN services run on this complete privacy principle.
2. Neeva indirectly consumes data
"We may collect information about your contacts from the accounts you choose to connect to our Services."
So, if users connect their accounts, it says that it will import user data to enhance the search results.
3. Your credit card details are available
The cost of Neeva's paid subscription is about the price of two cups of coffee per month. The policy does not mention Bitcoin, PayPal, or any such payment system. The policy says, "The credit or debit card information you provide as part of the Account Data." It means they will keep all payment details on file without elaborating on its data destruction policy. Hackers can easily steal users' payment details if the system is breached.
4. Indirect push to account creation
Although the search engine will never require you to register, it may seem suspicious, with its home page featuring a functional search bar that looks more like a demo screenshot. Looking different from all of the other obvious search bars we've seen thus far, users who don't click this one may be led to sign in - prompting them to connect their service through Single Sign On (SSO) using existing accounts such as Google or Microsoft and leverage data accordingly.
Sign up for our newsletter
10 January - Blog
Your Guide to Objective-Based Penetration Testing
14 December - Blog
2022 in Review and Our Predictions for 2023: Cyber-Threat Landscape
05 December - Blog
Choosing a Penetration Testing Company: Methodology & Certifications