Will audio livestreaming take off in America?

For many podcast listeners, following their favorite shows is a solitary experience.

A recent survey of 2,000 users by the University of Florida College of Journalism and Communications found they listened to podcasts most often at home, during commutes or while exercising. Over the past couple of years, however, a new trend, audio livestreaming, has taken off in China. The medium is basically a combination of podcasting and talk radio, with mobile apps enabling interactive features like live chats with other listeners, call-in requests and emoji reactions.

If it follows other formats that gained traction in China before becoming popular elsewhere, like short-form video apps (including TikTok) and video livestreams, it may give podcasts in other markets a new way to reach more listeners and monetize.

Castbox, a podcast app headquartered in San Francisco with an engineering office in Beijing, launched Livecasts in July. Available in its mobile and desktop apps, which have 20 million users around the world, the feature allows hosts to launch audio livestreams in private or public channels.

While communities of fans have grown around many popular podcasts, interacting with hosts and other listeners is still a fragmented experience that takes place through Facebook groups, Twitter hashtags, online forums like Reddit or, more occasionally, podcast players like Castbox that have comments sections. Sometimes podcasts are recorded live, either in front of an audience or while it streams online, but even then the user experience is still relatively passive, focused on listening instead of interacting.

Audio livestreams give hosts a more immediate way to engage with listeners. In China, all three of the most popular audio content apps — Ximalaya, Lychee and Dragonfly — include audio livestreams, covering topics ranging from politics and current events to relationships and parenting.

About almost half of the users of Castboxapp, a podcast player that also has original programming, are from the United States, but the companyengineering base in China means it is well-positioned to introduce Chinese internet trends to new markets.

Yicheng Ruan, Castbox product manager, tells Extra Crunch that audio livestreams are like much more interactive versions of talk radio shows. CastboxLivecast includes many of the same features that have become popular in China, including the ability to stream a live audio chat with multiple hosts, in-channel messaging rooms, call-in requests and virtual gifts paid for with in-app currency that can be exchanged for real money.

Write comment (95 Comments)
Vape lung is on the decline as CDC report fixes blame on oily additive

The CDC has issued a set of reports showing that the lung disease associated with vaping seems to be declining from peak rates, and that Vitamin E acetate seems — as speculated early on — to be the prime suspect for the epidemic. The affliction has cost at least 54 lives and affected 2,506 people across the nation.

The condition now officially known as EVALI (E-cigarette, or Vaping, Product Use-Associated Lung Injury) appeared over the summer, with hundreds of people reporting chest pains, shortness of breath and other symptoms. When state medical authorities and the CDC began comparing notes, it became clear that vaping was the common theme between the cases — especially using THC products.

Before long the CDC recommended ceasing all vape product usage and was collating reports and soliciting samples from around the country. Their medical authorities have now issued several reports on the disease. The most significant finding echoes earlier indications that Vitamin E acetate, an oily substance that was apparently being used as a cutting agent in low-quality vaping cartridges, is at the very least a major contributor to the condition:

Building upon a previous study, CDC analyzed bronchoalveolar lavage (BAL) fluid from a larger number of EVALI patients from 16 states and compared them to BAL fluid from healthy people. Vitamin E acetate, also found in product samples tested by the FDA and state laboratories, was identified in BAL fluid from 48 of 51 EVALI patients and was not found in any of the BAL fluids of healthy people.

Thatpretty clear cut, but importantly it does not exonerate any other, perhaps even worse additives that may not have been so widespread. It seems clear that vaping product producers will need to reestablish trust in the wake of this fatal blunder, and part of that will have to be transparency and regulation.

Vaping rose to prominence quickly and has proven difficult to effectively regulate. The shady companies that were selling stamped-on cartridges filled with what would prove to be a lethal adulterant have probably already picked up and moved on to the next scam.

The good news is the scale of the epidemic seems to have reached its maximum. There are still cases coming in, but the number of new patients is not rising sharply every month. Perhaps this indicates that people are taking the CDCadvice and not vaping as much or at all, or perhaps the products using the additive have been quietly slipped off the market.

Write comment (94 Comments)

Every year, the tech industry experiences moments that serve as guideposts for future entrepreneurs and investors looking to profit from the wisdom of the past.

In 2017, Susan Fowler published her heroic blog post criticizing Uber for its culture of sexual harassment, helping spark the #MeToo movement within the tech industry; 2018 was the year of the scooter, in which venture capitalists raced to pour buckets of cash into startups like Bird, Lime and Spin, hoping consumer adoption of micro-mobility would make the rushed deals worth it.

These last twelve months have been replete with scandals, new and interesting upstarts, fallen CEOs and big fundraises. Theranos founder Elizabeth Holmes finally got a court date, SoftBankMasayoshi Son admitted defeat (see: &In the case of WeWork, I made a mistake&), venture capitalist Bill Gurley advocated for direct listings and denounced big banks&underwriting skills, sperm storage startups battled for fundingand Awaydirty laundry was aired in an investigation conducted by The Verge.

The list of top moments and over-arching trends that defined this year is long. Below, I&ve noted what I think best represent the largest conversations that occurred in Silicon Valley this year, with a particular focus on venture capital, followed by honorable mentions. As always, you can email me (This email address is being protected from spambots. You need JavaScript enabled to view it.) if you have thoughts, opposing opinions, strong feelings or relevant anecdotes.

201910 defining moments in venture capital

SoftBank Group Corp. chairman and CEO Masayoshi Son speaks during a press conference on November 6, 2019 in Tokyo, Japan. (Photo by Alessandro Di Ciommo/NurPhoto via Getty Images)

1. SoftBank admitted failure: We&ll get to WeWork in a moment, but first, lettalk about its multi-billion-dollar backer. SoftBank announced its Vision Fund in 2016, holding its first major close a year later. Ultimately, the Japanese telecom giant raised roughly $100 billion to invest in technology startups across the globe, upending the venture capital model entirely with its ability to write $500 million checks at the flip of a switch. It was an ambitious plan and many were skeptical; as it turns out, that model doesn&t work too well. Not only has WeWork struggled despite billions in funding from SoftBank, several other of the firmbets have wavered under pressure. Most recently, SoftBank confirmed it was selling its stake in Wag, the dog-walking business back to the company, nearly two years after funneling a whopping $300 million in the then-three-year-old startup. Wag failed to accumulate value and was struck by scandal, leading to SoftBankexit. Why it matters: ditching one of its more high profile bets out of the monstrous Vision Fund wasn&t even the first time this year SoftBank admitted defeat. Once an unstoppable giant, SoftBank has been forced to return to reality after years of prolific dealmaking. No longer a leader in VC or even a threat to other top venture capitalists, SoftBankdeal activity has become a cautionary tale. Heremore on SoftBankother uncertain bets.

2. WeWork pulled its IPO. The biggest story of 2019 was WeWork. Another SoftBank portfolio, in fact the former star of its portfolio, WeWork filed to go public in 2019 and gave everyone full access to its financials in its IPO prospectus. In August, the business disclosed revenue of about $1.5 billion in the six months ending June 30 on losses of $905 million. The IPO was poised to become the second-largest offering of the year behind only Uber, but what happened instead was much different:WeWork scrapped its IPO after ousting its founding CEO Adam Neumann, whose eccentric personality, expensive habits, alleged drug use, desire to become Israelprime minister and other aspirations led to his well-publicized ouster. Therea lot more to this story, click here for more coverage of the 2019 WeWork saga. Why it matters: WeWorkunforgiving IPO prospectus painted a picture of a high-spending company with no path to profit in sight. For years, Silicon Valley (or New York, where WeWork is headquartered) has allowed high-growth companies to raise larger and larger rounds of venture capital, understanding that eventually their revenues would outgrow their expenses and they would achieve profitability. WeWork, however, and its fellow ‘unicorn,& Uber, made it all the way to IPO without carving out a strategy of reaching profitability. These IPOs ignited a wide-reaching debate in the tech industry: does Wall Street care about profitability? Should startups prioritize profits? Many said yes. Meanwhile, the threat of a downturn had startups across industries cutting back and putting cash aside for a rainy day. For the first time in years, and as The New York Times put it, Silicon Valley began trying out a new mantra: make a profit.

3. A whole bunch of CEOs stepped down:Adam Neumann wasn&t the only high profile CEO to move on from their company this year. In a move tied to The Vergeinvestigation, Away co-founder and CEO Steph Korey stepped down from the luggage company, instead becoming its executive chairman. LimeCEO Toby Sun stepped down, shifting to another role within the company. On the public end of the ecosystem, McDonald&s, REI, Rite Aid and many others replaced their leaders. According to CNBC, nearly 150 CEOs left their post in November alone, setting up 2019 to break records for CEO departures with nearly 1,500 recorded already. Why it matters: All of these departures were caused by varying factors. I will focus on WeWork and Away, which took center stage of the startups and venture capital universe. The recent Away debacle reinforces the role of the tech media and its ability to present well-reported facts to the public and enact significant change to business as a result. Similarly, much of Adam Neumannouster came as a result of strong reporting from outlets like The Wall Street Journal, Bloomberg and more. From facilitating a toxic, cutthroat culture to paying millions in company dollars for an unnecessary private jet, Away and WeWorksituations proved standards for startup CEOs has shifted. Whether that shift is here to stay is still up for debate.

4. The IPO market was unforgiving to unicorns: WeWork never made it to the stock markets, but Uber, another scandal-ridden unicorn, did. The company (NYSE: UBER), previously valued at $72 billion, priced its stock at $45 apiece in May for a valuation of $82.4 billion. It began trading at $42 apiece, only to close even lower at $41.57, or down 7.6% from its IPO price. Not stellar, in fact, quite bad for one of the largest venture-backed companies of all time. Uber, however, wasn&t the only one to struggle with its IPO and first few months on the stock market. Other companies like Lyft and Peloton had disappointing results this year confirming the damage inflated valuations can cause startups-turned-public companies. Though a rocky IPO doesn&t mark the end of a company, it does tell you a lot about Wall Streetappetite for Silicon Valleytop companies. Why it matters: 2019tech IPOs illustrated a disconnect between the public markets and venture capitalists, whose cash determines the value of these high-flying companies. Wall Street has realized these stocks, which NYT journalist Erin Griffith recently described as &Publicly Listed Unicorns Miserably Performing,& are far less magical than previously assumed. As a result, many companies, particularly consumer tech businesses, may delay planned offerings, waiting until the markets stabilize and become hungry again for big-dreaming tech companies.

Write comment (94 Comments)

Companies often tout their compliance with industry standards — I&m sure you&ve seen the logos, stamps and &Privacy Shield Compliant& declarations. As we, and the FTC, were reminded a few months ago, that label does not mean that the criteria was met initially, much less years later when finally subjected to government review.

Alastair Mactaggart — an activist who helped promote the California Consumer Privacy Act (CCPA) — has threatened a ballot initiative allowing companies to voluntarily certify compliance with CCPA 2.0 to the still-unformed agency. While that kind of advertising seems like a no-brainer for companies looking to stay competitive in a market that values privacy and security, is it actually? Business considerations aside, is there a moral obligation to comply with all existing privacy laws, and is a company unethical for relying on exemptions from such laws?

I reject the notion that compliance with the law and morality are the same thing — or that one denotes the other. In reality, ita nuanced decision based on cost, client base, risk tolerance and other factors. Moreover, giving voluntary compliance the appearance of additional trust or altruism is actually harmful to consumers because our current system does not permit effective or timely oversight and the type of remedies available after the fact do not address the actual harms suffered.

Itnot unethical to rely on an exemption

Compliance is not tied to morality.

At its heart is a cost analysis, and a nuanced analysis at that. Privacy laws — as much as legislators want to believe otherwise — are not black and white in their implementation. Not all unregulated data collection is nefarious and not all companies that comply (voluntarily or otherwise) are purely altruistic. While penalties have a financial cost, data collection is a revenue source for many because of the knowledge and insights gained from large stores of varied data — and other companies& need to access that data.

They balance the cost of building compliant systems and processes and amending existing agreements with often thousands of service providers with the loss of business of not being able to provide those services to consumers covered by those laws.

There is also the matter ofapplicable laws. Complying with a law may interfere or lessen the protections offered by the laws you follow that make you exempt in the first place, for instance, where one law prohibits you from sharing certain information for security purposes and another would require you to disclose it and make both the data and the person less secure.

Strict compliance also allows companies to rest on their laurels while taking advantage of a privacy-first reputation. The law is the minimum standard, while ethics are meant to prescribe the maximum. Complying, even with an inapplicable law, is quite literally the least the company can do. It also then puts them in a position to not make additional choices or innovate because they have already done more than what is expected. This is particularly true with technology-based laws, where legislation often lags behind the industry and its capabilities.

Moreover, who decides what is ethical varies by time, culture and power dynamics. Complying with the strict letter of a law meant to cover everyone does not take into account that companies in different industries use data differently. Companies are trying to fit into a framework without even answering the question of which framework they should voluntarily comply with. I can hear you now: &Thateasy! The one with the highest/strongest/strictest standard for collection.& These are all adjectives that get thrown around when talking about a federal privacy law. However, &highest,& &most,& and &strongest,& are all subjective and do not live in a vacuum, especially if states start coming out with their own patchwork of privacy laws.

I&m sure there are people that say that Massachusetts — which prohibits a company from providing any details to an impacted consumer — offers the &most& consumer protection, while there is a camp that believes providing as much detailed information as possible — like California and its sample template — provides the &most& protection. Who is right? This does not even take into account that data collection can happen across multiple states. In those instances, which law would cover that individual?

Government agencies can&t currently provide sufficient oversight

Slapping a certification onto your website that you know you don&t meet has been treated as an unfair and deceptive practice by the FTC. However,the FTCgenerally does not have fining authority on a first-time violation. And while it can force companies to compensate consumers, damages can be very difficult to calculate. Unfortunately, damages for privacy violations are even harder to prove in court; funds that are obtained go disproportionately to counsel, with each individual receiving a de minimis payout, if they even make it to court. The Supreme Court has indicated through their holdings in Clapper v. Amnesty Intern., USA. 133 S. Ct. 1138 (2013), andSpokeo, Inc. v. Robins,136 S. Ct. 1540 (2016), that damages like the potential of fraud or ramifications form data loss or misuse are too speculative to have standing to maintain a lawsuit.

This puts the FTC in a weaker negotiating position to get results with as few resources expended as possible, particularly as the FTC can only do so much — it has limited jurisdiction and no control over banks or nonprofits. To echo Commissioner Noah Phillips, this won&t change without a federal privacy law that sets clear limits on data use and damages and gives the FTC greater power to enforce these limits in litigation.

Finally, in addition to these legal constraints, the FTC is understaffed in privacy, with approximately40 full-time staff members dedicated to protecting the privacy of more than 320 million Americans. To adequately police privacy, the FTC needs more lawyers, more investigators, more technologists and state-of-the-art tech tools. Otherwise, it will continue to fund certain investigations at the cost of understaffing others.

Outsourcing oversight to a private company may not fare any better — for the simple fact that such certification will come at a high price (especially in the beginning), leaving medium and small-sized businesses at a competitive disadvantage. Further, unlike a companyprivacy professionals and legal team, a certification firm is more likely to look to compliance with the letter of the law — putting form over substance — instead of addressing the nuances of any particular business& data use models.

Existing remedies don&t address consumer harms

Say an agency does come down with an enforcement action, the types of penalty powers that those agencies have currently do not adequately address the consumer harm. That is largely because compliance with a privacy legislation is not an on-off switch and the current regime is focused more on financial restitution. Even where there are prescribed actions to come into compliance with the law, that compliance takes years and does not address the ramifications of historic non-compliant data use.

Take CNILformal notice against Vectuary for failing to collect informed, affirmative consent. Vectuary collected geolocation data from mobile app users to provide marketing services to retailers using a consent management platform that it developed implementing the IAB (a self-regulating association) Transparency and Consent Framework. This notice warrants particular attention because Vectuary was following an established trade association guideline, and yet its consent was deemed invalid.

As a result, CNIL put Vectuary on notice to cease processing data this way and to delete data collected during that period. And while this can be counted as a victory because the decision forced the company to rebuild their systems — how many companies would have the budget to do this, if they didn&t have the resources to comply in the first place? Further, this will take time, so what happens to their business model in the meantime? Can they continue to be non-compliant, in theory until the agency-set deadline for compliance is met? Even if the underlying data is deleted — none of the parties they shared the data with or the inferences they built on it were impacted.

The water is even murkier when you&re examining remedies for false Privacy Shield self-certification. A Privacy Shield logo on a companysite essentially says that the company believes that its cross-border data transfers are adequately secured and the transfers are limited to parties the company believes has responsible data practices. So if a company is found to have falsely made those underlying representations (or failed to comply with another requirement), they would have to stop conducting those transfers and if that is part of how their services are provided, do they just have to stop providing those services to their customers immediately?

It seems in practice that choosing not to comply with an otherwise inapplicable law is not a matter of not caring about your customers or about moral failings, it is quite literally just ¬ how anything works,& nor is there any added consumer benefit in trying to — and isn&t that what counts in the end — consumers?

Opinions expressed in this article are those of the author and not of her firm, investors, clients or others.

Write comment (98 Comments)
Hardware IPOs continue to struggle

Now that the final technology IPOs of 2019 have touched down, ita good time to start looking back at what happened during the year. We&re hunting for trends as the clock winds down. Hereone thatobvious: Hardware startups are still struggling.

Itcliché to note in startupland that hardware is hard. Everyone knows it. Making hardware is difficult by itself, but as all tech hardware requires software, hardware shops wind up needing wider domain expertise than pure-software startups. And thathard.

But even if a nuts-and-bolts tech company hits scale, it seems difficult to keep that momentum up.

This year we saw Peloton, a hybrid hardware and digital services company, go public and struggle. Despite a recent public market resurgence, the company is slipping back toward its IPO price. Today its equity is trading down about 6% to around $30 per share. The companyIPO price of $29 is uncomfortably close to its current value.

2019IPO crop also included EHang, a late entry to the market (more here on its debut) that quickly began to lose altitude after it started to float. EHang traded up today, but the firm is still worth less than its IPO valuation, a reduced figure that was dinged during the China-based drone companymarch toward the public markets.

So, Peloton is about flat and EHang is down. Thatnot a great mix of results for a yearIPO class of hardware companies. Looking back in time, things don&t get much better.

NIO, a China-based electric car company (despite making this thing of beauty), has deleted about two-thirds of its value since its late-2018 U.S.-listed IPO. After going public at $6.25, shares of NIO are worth just $2.70 today.

Sonos also went public in the United States in 2018. It traded above its IPO price of $15 at first. Then it fell under $10 per share as 2018 came to a close. The smart speaker and stereo company spent 2019 recovering. Itnow worth its IPO price again, closing trading today worth about $14.80 per share.

If you go back to 2017, however, Roku has kicked ass. After pricing at $14 per share, the TV hardware and digital services firm is trading for $137 per share, a nearly 10x gain. But Roku was moving away from hardware at the time of its IPO, making it a somewhat poor example. Hardware revenues for Roku were just 31% of revenue in its most recent quarter, for example. That figure was 42% in the year-ago quarter. It will continue to fall.

We don&t need to go over what happened to Fitbit and GoPro, I don&t think.

Hardware can make a lot of money. Samsung and Apple make oceans of money from their hardware. Microsoft has managed to make Surface into a real business, with billions of dollars in yearly revenue. Amazon has a big hardware business with both consumer reading gadgets and consumer surveillance devices. Even Google is taking its new phone seriously enough to buy out a chunk of the NBAad slots (I think itthis one), according to my extensive in-market testing. Facebook is the laggard of the group.

But for smaller hardware companies going public, unless I&m missing a number of recent of IPOs — and I don&t think that I am — ita tough world out there.

Write comment (91 Comments)
F5 acquires Shape Security for $1B

F5 got an expensive holiday present today, snagging startup Shape Security for approximately $1 billion.

What the networking company gets with a shiny red ribbon is a security product that helps stop automated attacks like credential stuffing. In an article earlier this year, Shape CTO Shuman Ghosemajumder explained what the company does:

We&re an enterprise-focused company that protects the majority of large U.S. banks, the majority of the largest airlines, similar kinds of profiles with major retailers, hotel chains, government agencies and so on. We specifically protect them against automated fraud and abuse on their consumer-facing applications — their websites and their mobile apps.

F5 president and CEO François Locoh-Donou sees a way to protect his customers in a comprehensive way. &With Shape, we will deliver end-to-end application protection, which means revenue generating, brand-anchoring applications are protected from the point at which they are created through to the point where consumers interact with them—from code to customer,& Locoh-Donou said in a statement.

As for Shape, CEO Derek Smith said that it wasn&t a huge coincidence that F5 was the buyer, given his company was seeing F5 consistently in its customers. Now they can work together as a single platform.

Shape launched in 2011 and raised $183 million, according to Crunchbase data. Investors included Kleiner Perkins, Tomorrow Partners, Norwest Venture Partners, Baseline Ventures and C5 Capital. In its most recent round in September, the company raised $51 million on a valuation of $1 billion.

F5 has been in a spending mood this year. It also acquired NGINX in March for $670 million. NGINX is the commercial company behind the open-source web server of the same name. Itworth noting that prior to that, F5 had not made an acquisition since 2014.

It was a big year in security M-A. Consider that in June, four security companies sold in one three-day period. That included Insight Partners buying Recorded Future for $780 million and FireEye buying Verodin for $250 million. Palo Alto Networks bought two companies in the period: Twistlock for $400 million and PureSec for between $60 and $70 million.

This deal is expected to close in mid-2020, and is of course, subject to standard regulatory approval. Upon closing ShapeSmith will join the F5 management team and Shape employees will be folded into F5. The company will remain in its Santa Clara headquarters.

Shape Security hits $1B valuation with $51M Series F

Write comment (93 Comments)