Digital Editions (DE) has been used by many public libraries as a recommended application for patrons wanting to borrow electronic books (particularly with the Overdrive e-book lending system), because it can enforce digital rights management rules on how long a book may be read for. But DE also reports back data on e-books that have been purchased or self-published. Those logs are transmitted over an unencrypted HTTP connection back to a server at Adobe—a server with the Domain Name Service hostname “adelogs.adobe.com”—as an unencrypted file (the data format of which appears to be JSON).
The behavior is part of Adobe’s way of managing access to e-books borrowed from a library or “lent” by other users through online bookstores supporting the EPUB book format, such as Barnes & Noble. If you’ve “activated” Digital Editions with an Adobe ID, it uses that information to determine whether a book has been “locked” on another device using the same ID to read it or if the loan has expired. If the reader isn’t activated, it uses an anonymous unique ID code generated for each DE installation. –Ars Technica
Reached for comment, Adobe confirms that those data gathering practices are indeed in place. “Adobe Digital Editions allows users to view and manage eBooks and other digital publications across their preferred reading devices—whether they purchase or borrow them,” Adobe said in a statement this afternoon. The statement continues:
I have followed up on this story and looked into the earlier versions of Digital Editions, just to see how long Adobe may have been spying on users. After testing DE2 and DE3 I can report, and others can confirm, that neither app appears to be tracking my reading habits nor uploading details about my ebook library.
The older apps do send some information to Adobe, but the data packet is small enough that it can’t hold much more than info required to authorize the DRM. So if you need one of Adobe’s apps, you do have safer options than DE4. –The Digital Reader