In the most significant step, Facebook will remove
developer access to your data if you haven't used it in three months.
The most important change is that Facebook will soon remove
developer access to your data if you haven't used an app in three months.
That includes cutting off
developer access to data for users who have not used their apps in three months and limiting the amount of data shared with apps when users sign in to only names, profile photos, and email addresses.
Secondly,
developer access to data will be restricted beyond the changes that were made four years ago.
The most important change is that Facebook will now remove
developer access to your data if you haven't used an app in three months.
He said the social network planned to conduct an investigation of thousands of apps that have used Facebook's platform, restrict
developer access to data, and give members a tool that lets them to disable access to their Facebook data more easily.
«I think that that control is something that's important — and I think should apply to every service,» he continued, making a not - so - subtle plea for no other platforms to be able to leak data like Facebook's platform historically has (and thus to close any competitive loopholes that might open up as a result of Facebook tightening the screw on
developer access to data now in the face of a major scandal).
Not exact matches
Business owners also can restrict
developers from gaining
access to certain
data sets.
For Facebook users who haven't used an app in three months or more, Zuckerberg says the app
developers will no longer have
access to their
data.
The issue at play is Facebook's original application programming interface, or API, which allows third - party
developers to use Facebook's platform and
access some user
data as long as those users give permission.
Albright pointed
to research from the Belgian university KU Leuven explaining what
data was included in those extended profile properties — that is, exactly which
data developers could
access from your Facebook friends once you gave the app permission.
Aiming
to placate concerned users and, more directly, potential regulators, Facebook's Mark Zuckerberg announced that Facebook would be limiting
developer access to user
data.
Backblaze has always prided itself on providing possibly the world's least - expensive service for backing up
data — $ 50 a year for unlimited storage — but its new product, called B2, targets
data that
developers and companies still want
to access.
In 2013, a third - party app
developer named Aleksandr Kogan had
access to 50 million Facebook users»
data for academic research, and without permission, he distributed it
to a consulting firm with ties
to the Trump Administration, Cambridge Analytica.
Facebook subsequently limited
developer access to user
data in 2014, turning off the Friends
data API that Cambridge Analytica now infamously used
to gather its
data.
Although Zuckerberg talked a lot about protecting user information, he did not mention why Facebook overlooked the potential problems inherent in giving
developers such broad
access to user
data in the first place.
On Wednesday, after admitting that its system could have allowed «malicious actors»
to gather
data on most of its 2 billion users, Facebook opted
to immediately remove
access to several sets of
data previously accessible
to developers via Instagram and Facebook's APIs.
Friend was reportedly central
to the development of Apple's healthcare frameworks, HealthKit, ResearchKit, and CareKit — frameworks designed
to help researchers,
developers, and users
access and record health
data.
Zuckerberg also announced the social media giant would no longer allow app
developers to access its users»
data after three months of inactivity and it would reduce the amount of information people are required
to hand over
to third parties.
Examples of APIs include Google Maps API (allows
developers to embed Google maps on web pages), Twitter APIs (Twitter has two APIs — REST, which allows
developers to access core Twitter
data, and Search, which allows
developers to interact with Twitter Search and trends
data), and Amazon Product Advertising API (allows
developers to access Amazon's product database and advertise Amazon products on a website).
As for Cambridge Analytica, only now is Facebook launching an investigation into apps created at a time when the company was promising «easy
access» for app
developers, including Aleksandr Kogan, whose This Is Your Digital Life quiz app created the
data set that was then sold
to Cambridge Analytica.
Second, we will restrict
developers»
data access even further
to prevent other kinds of abuse.
Facebook's policies previously allowed
developers to siphon off app users» Facebook friends
data — though Facebook tightened up these permissions in 2014 — «
to dramatically reduce
data access», as founder Mark Zuckerberg has now claimed — though evidently not dramatically enough for Mozilla.
It will also further restrict
developers»
access to data and create a new, more visible tool for people
to see which apps are
accessing their
data and how.
We'll require
developers to not only get approval but also sign a contract in order
to ask anyone for
access to their posts or other private
data.
For example, we will remove
developers»
access to your
data if you haven't used their app in 3 months.
Rather than taking it on trust that
developers given
access to masses of user
data will do the right thing.
Facebook Inc Chief Executive Mark Zuckerberg apologized on Wednesday for mistakes his company made in how it handled
data belonging
to 50 million of its users and promised tougher steps
to restrict
developers»
access to such information.
Facebook will also require
developers to not only get approval but also «sign a contract in order
to ask anyone for
access to their posts or other private
data», he says.
And after a
data protection audit and re-audit by the Irish Data Protection Commissioner, in 2011 and 2012, the regulator recommended it shutter developers» access to friend networks — which Facebook finally did (for both old and new apps) as of mid 2
data protection audit and re-audit by the Irish
Data Protection Commissioner, in 2011 and 2012, the regulator recommended it shutter developers» access to friend networks — which Facebook finally did (for both old and new apps) as of mid 2
Data Protection Commissioner, in 2011 and 2012, the regulator recommended it shutter
developers»
access to friend networks — which Facebook finally did (for both old and new apps) as of mid 2015.
The privacy watchdog also recommends Facebook tightens app permissions on its platform, including
to close down
developers»
access to friends
data
Since the
data misuse scandal blew up last month, Facebook has said it is conducting a full audit of any apps which had
access to «a large amount» of information before it changed app permissions on its platform in mid 2015
to prevent
developers from being able
to suck out
data on Facebook users» friends.
As we understand it now, the
data mining and analytics company, based out of London, gained
access to data on as many as 50 million Facebook profiles thanks
to generous
data - sharing policies Facebook app
developers enjoyed back in 2014.
In 2016, the ACLU in California also discovered through a public records investigation that social media surveillance companies like Geofeedia were improperly exploiting Facebook
developer data access to monitor Black Lives Matter and other activists.
Developers can no longer
access the
data about a user's friends unless the friends also subscribe
to that
developer's services.
In 2014, Facebook changed the rules that would prevent
developers form
accessing data the way Kogan did, and now Zuckerberg said the company will be approaching
developers from before that time
to snuff out any other
data leaks.
Facebook has also been reviewing its internal policies and promised
to audit any other third party
developers who may have had similar
access to data.
The CEO vowed
to police the platform more vigorously, and audit any
developer that may have gotten
access to user
data.
Specifically he said the company will restrict the
data that third - party
developers can
access to names, profile photos and email addresses, and will require
developers to sign a contract before being allowed
to ask Facebook users for rights
to their posts.
But privacy experts say Facebook's
developer policies at the time allowed programmers
to access locations and other
data such as relationship status, photos and likes from friends» profiles without notifying them.
The reason concerns the nature of how Facebook handled its users»
data before rising privacy concerns prompted it
to tighten its policies against what critics have called an egregious kind of abuse — allowing app
developers to gain
access to information not only on their customers but also on their customers» many Facebook friends.
In his post, Zuckerberg said that steps that the company had taken
to restrict
developers»
access to data in 2015 would prevent the type of misuse that had taken place.
In response
to the Cambridge Analytica scandal, it made a couple of sudden changes
to how
developers can
access some
data on its platform.
But as Zuckerberg said, the most important change may have come in 2014, when Facebook limited
developers»
access to data on users» friends.
Facebook fixed years ago the original loophole in its
developer program that allowed Cambridge Analytica
to gain
access to this
data.
According
to the company's Open Initiative site, Convio is allowing programmers
access to its API, giving outside
developers the ability
to write software that interacts with
data in the Convio system.
The demands came in response
to news reports Saturday about how the firm, Cambridge Analytica, used a feature once available
to Facebook app
developers to collect information on 270,000 people and, in the process, gain
access to data on tens of millions of their Facebook «friends» — few, if any, of whom had given explicit permission for this sharing.
Facebook apps, like FarmVille, extend the platform's usability, but in installing them, users often give third - party
developers like Kogan
access to a significant amount of their own
data.
Worse, in 2014, when Kogan's app was gathering
data, Facebook's terms of service allowed
developers to request
access to an app installer's friends as well.
Therefore, mobile app
developers can
access the targeted ad content delivered
to its own app users and then reverse engineer that
data to construct a profile of their app customer.