Skip to main content

Open Letter Urges Facebook to Strengthen Privacy

Image used with permission by copyright holder

After several failures, online social networking service Facebook actually seems to have understood that many of its users have significant concerns about their online privacy and the way in which information they upload to Facebook is shared with the public, application developers, advertisers, and other sites. Facebook recently bent over backwards to rework its privacy controls into a simpler configuration users could more easily understand and manage…but a group of consumer advocacy groups thinks Facebook could go further, and sent Facebook CEO Mark Zuckerberg an open letter (PDF) detailing their specific concerns. And, surprisingly, Facebook has responded point-by-point.

The open letter asks Facebook to take six concrete steps to further shore up its privacy stance:

  1. Give users capability to decide what third-party Facebook apps can access their personal information
  2. Make Facebook’s instant personalization of third-party partner sites opt-in by default
  3. Do not retain data about visitors to third-party sites using Facebook social plug-ins or Like buttons unless visitors specifically interact with those tools
  4. Provide users control over all information shared via Facebook, including the shared-by-default items like name, gender, profile picture, and networks
  5. Protect all interactions with the Facebook site from third-party man-in-the-middle attacks by encrypting them using SSL
  6. Provide tools for users to export content they’ve uploaded to Facebook and details of their social network so they can opt out of Facebook without losing their information.
Recommended Videos

The open letter is signed by a number of notable privacy and consumer advocate groups, including the American Civil Liberties Union of Northern California, Center for Democracy and Technology, Center for Digital Democracy, Consumer Action, Consumer Watchdog, Electronic Frontier Foundation, Electronic Privacy Information Center, Privacy Activism, Privacy Lives, and Privacy Rights Clearinghouse.

Facebook’s point-by-point response basically boils down to:

  1. Facebook has already announced a new permissions model for apps, and it should be rolling out to developers soon
  2. Facebook says instant personalization is misunderstood, and partners only have access to information that’s public on users profiles
  3. Facebok kind of misses the point on not retaining data from third parties using social plug-ins or like buttons, but says it only hangs on to the information for 90 days and doesn’t share or sell it
  4. Facebook doesn’t budge on letting users control whether default profile information gets shared. “It has been our experience that people have a more meaningful experience on Facebook when they share some information about themselves. That way, they can find friends and friends can find them, which is the reason most people come to Facebook.”
  5. Facebook is testing SSL and hopes to add it as an option soon
  6. Facebook also misses the intent of the open letter’s sixth point, saying users can export data they themselves have uploaded to Facebook, but can’t let users export information about others, since doing so would violate those users’ privacy.

What’s interesting about this dialog isn’t so much the specific details—most of this is gobbledegook for anyone who isn’t serious about online privacy—but that the dialog is happening at all, and furthermore that it’s happening rapidly and in a public forum. If nothing else, that speaks well of Facebook’s intentions to be transparent about the ways it is—and plans to—protect its users privacy, as well as the sensitive issues on which it simply will not budge.

Topics
Geoff Duncan
Former Digital Trends Contributor
Geoff Duncan writes, programs, edits, plays music, and delights in making software misbehave. He's probably the only member…
How to create multiple profiles on a Facebook account
A series of social media app icons on a colorful smartphone screen.

Facebook (and, by extension, Meta) are particular in the way that they allow users to create accounts and interact with their platform. Being the opposite of the typical anonymous service, Facebook sticks to the rule of one account per one person. However, Facebook allows its users to create multiple profiles that are all linked to one main Facebook account.

In much the same way as Japanese philosophy tells us we have three faces — one to show the world, one to show family, and one to show no one but ourselves — these profiles allow us to put a different 'face' out to different aspects or hobbies. One profile can keep tabs on your friends, while another goes hardcore into networking and selling tech on Facebook Marketplace.

Read more
Google just settled a $5B privacy suit involving Chrome browser
The Google Chrome logo on a smartphone.

Google has agreed to settle a $5 billion lawsuit brought by claimants who accused the web giant of privacy invasion by tracking their online activities despite being in “incognito mode” when using the company’s Chrome browser.

After lawyers announced on Thursday that they’d reached a preliminary agreement, U.S. District Judge Yvonne Gonzalez Rogers put a scheduled trial for the case in California on hold, Reuters reported.

Read more
ChatGPT is violating your privacy, says major GDPR complaint
ChatGPT app running on an iPhone.

Ever since the first generative artificial intelligence (AI) tools exploded onto the tech scene, there have been questions over where they’re getting their data and whether they’re harvesting your private data to train their products. Now, ChatGPT maker OpenAI could be in hot water for exactly these reasons.

According to TechCrunch, a complaint has been filed with the Polish Office for Personal Data Protection alleging that ChatGPT violates a large number of rules found in the European Union’s General Data Protection Regulation (GDPR). It suggests that OpenAI’s tool has been scooping up user data in all sorts of questionable ways.

Read more