Security engineer Ben Lincoln claims that some Motorola phones are collecting your data and sending it back unencrypted to the handset manufacturer. He discovered this data collection on his Droid X2 and has since found that other Motorola Android phones do this as well. The handsets allegedly gather GPS data from photos, user names, passwords, email addresses and other sensitive data. This data is then sent back to Motorola over an unencrypted HTTP channel.
You can can read the technical details on the data collection and how he discovered it on his Beneath The Waves blog.
[Via Beneath The Waves blog]