Their first, failed attempt, at an app tried to use the "push everything to a central DB" approach. It was widely rejected, on very good grounds. What they've done here, is try to push that back in through the backdoor - replacing actual privacy with a "promise"