Over the past few days, there has been public outrage over the way Facebook is handling personal data. This was brought to light by the recent scandal with Cambridge Analytica, but really should come as no surprise as Facebook has been treating its users this way since it launched back in 2004.
What Happened with Cambridge Analytica
The story that broke over the past few days is really just a piece of a much larger issue with Facebook and how they handle personal data. To summarize, a developer named Aleksandr Kogan developed an application in 2014 offering a personality quiz to Facebook users. About 270,000 users took the quiz, but in doing so they granted Kogan’s app access to not only their Facebook data, but the data of ALL of their Facebook friends as well— meaning the app now had data on 50 million users. Kogan then provided this data to Cambridge Analytica, who used it to create over 30 million psychographic profiles about potential voters.
Facebook is at fault for a major data breach because it failed to protect the personally identifiable information of its users.
1) Data Policy
Up until 2014, Facebook’s policy allowed for an application developer to ask permission from Facebook users to access their data. However, it also allowed the apps to collect that same data about ALL of that user’s friends on Facebook, without consent. Facebook changed this policy in 2014 to ensure that apps could not collect data on user’s friends, but at that point, the damage had been done.
An ex-Facebook employee on the privacy team stated, “At a company that was deeply concerned about protecting its users, this situation would have been met with a robust effort to cut off developers who were making questionable use of data. But when I was at Facebook, the typical reaction I recall looked like this: try to put any negative press coverage to bed as quickly as possible, with no sincere efforts to put safeguards in place or to identify and stop abusive developers. When I proposed a deeper audit of developers’ use of Facebook’s data, one executive asked me, ‘Do you really want to see what you’ll find?’”
2) Data Collection
The crux of the issue lies in the data that Facebook requires from new users in the first place. You are forced to provide your first name, last name, email or phone number, birthday and gender. The reason is simple – this information is a marketer’s (or a politician’s) targeting dream, and also the key to Facebook’s revenue and entire business model.
Facebook, however, does share blame with its users because when you sign up, you are agreeing to hand over rights regarding your personal information, so there is the level of consent. However, Facebook further deceives and confuses their users into thinking their information will not be disclosed by providing layers of permissions and privacy settings. If users were more aware about how much of their personal data was actually public (or being shared with government), they would be much more reserved in giving it away. Your personal data on Facebook is not private, and Zuckerberg has known this since the beginning. Obviously he has attempted to apologize for the below comments, but he has demonstrated no tangible actions to actually address the public concern.
How can you protect YOUR data?
1) Allow users to be anonymous if they want, untracked and free from surveillance and spying.
Anonymity means that site data is de-identified and not traceable to a person. As a result nearly all users data is public by default.
2) Maintain zero-knowledge on sensitive data.
This is essential in ensuring that users can chat freely with each other without the concern that the conversation is being monitored by anyone including Minds. All sensitive data on Minds is encrypted end to end whether in motion or at rest and original content is the property of the user.
3) 100% free and open source for public accountability and inspection.
Unlike top proprietary social networks, social media should be open source. You must be able to inspect code and even help contribute and build the network. This provides much needed community ownership and transparency into what the platform is actually doing, as opposed to simply taking their word for it.
This debate exposes the paradox between transparency and privacy, both of which are core principles of Internet freedom pioneers. Facebook has gotten themselves into a deadly trap by pretending they are giving people privacy with layered permissions levels and supposed ‘privacy’ settings while also exposing massive amounts of data without consent. They are handing over data to the highest bidders and the user has lost all control.
Social Networks must give that control back to the people. This is only the beginning of the privacy movement and we all must join together for a better future for everyone.