In other words, they told you about the privacy flaw. Privacy good practice says give the user warning so that he can not use the product if he does not want a product that may invade his privacy in the stated way. This is not a privacy flaw, this is a privacy law flaw that should be blamed on the real culprit — your government leaders. Better law would require software to state a privacy policy with an option to just negate the policy without loosing access to any other features and to make it easy to don a persona that changes the privacy invasion scheme used by default — like a skin on a software interface developed by someone else.

See my book “How to get your privacy back” on Amazon.