Utter nonsense.
If you wanted a unique anonymous ID you would have generated a few random bytes and used that. Instead you used a highly identifying, personal piece of information and sent it to your remote server along with the IP address of the user. There's no way you can pretend that was a mistake from somebody who is writing wallet software.
Why don't you do us a favor and delete all the information you've collected without your users consent.
I agree.
On the website, they have a privacy policy that states this:
ATI may collect your devices IP address: when you start the software on your device and the software checks for updates and notifications, unless you opt out of this feature.
ATI does not share this information outside of ATI except that ATI may share information with governmental authorities pursuant to a court order or other lawful order.
However I don't recall being forced to agree to this when I ran the software, though from looking at the source it appears to be in the help menu at least.