Facebook, Privacy, Risks – you know what’s coming
From Outlaw.com 21/07/09:
Jennifer Stoddart's office has investigated the social networking website's use of personal information and has found that Facebook is not clear enough about how users can control their information or restrictive enough in restricting other companies' access to it.*
The Commissioner's office said that the company needed to be more transparent.
"Social networking sites can be a wonderful way to connect. They help us keep up with friends and share ideas and information with people around the globe," said assistant commissioner Elizabeth Denham. It is important for these sites to be in compliance with the law and to maintain users’ trust in how they collect, use and disclose our personal information*.”
The investigation found that users were told on Facebook how to deactivate accounts, but not how to delete them*. Only deleting accounts actually removes personal information from Facebook's servers.
* My emphasis
Seeing as I haven’t engaged in any Facebook-bashing for a while, I thought I’d throw this post up. This topic actually reminds me of a paper I wrote for a competition earlier this year concerning the future of social networking services and the privacy of their respective users. Alas, I didn’t win though still believe I made some excellent arguments throughout (it was probably a touch too forward-thinking and conceptual for them).
In it I argued that for social networking services and privacy to co-exist in any meaningful way together, the first and crucial step was to raise awareness and educate users about the risks they faced and the tools at their disposal to manage those risks.
With informed users, I reckoned, not only would there be less online stupidity with people failing to appreciate the dangers and the full effects of their actions but it would allow for the harnessing of market forces to successfully regulate social networking providers. In short, where users were well-informed enough to choose a service which offered safe connectivity, prized security and respected users’ privacy, the respective social networking services would compete with one another on this front; security would become less of a trade-off with functionality and more of a function in its own right. For the average, less technically au fait user, well, they would be influenced by those in the know and the herd theory would operate to result in an exodus of users from services which didn’t pass muster on the security/privacy front.
There was a lot more to the paper than that, obviously, and it was heavily weighted on the side of regulatory theory rather than black letter law – perhaps that’s why I didn’t win – but I think many of the ideas I advanced are still good. I may publish it myself via Law Actually given time.