Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Risk

9/12/2013
11:58 AM
Connect Directly
Google+
LinkedIn
Twitter
RSS
E-Mail
50%
50%

Facebook Privacy Changes: FTC Steps In

Regulators will probe whether Facebook's privacy changes violate an agreement as part of routine compliance monitoring.

10 Facebook Features To Help You Get Ahead
10 Facebook Features To Help You Get Ahead
(click image for larger view)
The Federal Trade Commission confirmed Wednesday that it will review Facebook's latest changes to its privacy policies to determine whether they violate a 2011 agreement with federal regulators.

The changes, which Facebook announced August 29, provide more information about its advertising policies and facial recognition feature. According to the updated document, Facebook users now agree to permit businesses to pay the social network to display your name and profile picture with your content or information without any compensation to you. The updated wording of the policy states that by using Facebook, you are agreeing to these terms.

The updates also describe how the company uses facial recognition technology to identify you in your friends' photos and to suggest that friends tag you. It's this photo tagging feature that the FTC plans to investigate, according to FTC spokesman Peter Kaplan.

[ How can your privacy settings protect you from nosy Facebook searchers? Read Three Facebook Privacy Settings to Check. ]

Kaplan said the FTC had no reason to believe that the company had violated the 2011 agreement but that it was "monitoring compliance with the order and part of that involves interacting with Facebook." He said that Facebook never approached the FTC beforehand about the proposed changes.

Facebook said that the FTC was informed of the new language just before it was posted to its blog, and that it complied with both the 2011 agreement and this year's class-action settlement. Facebook is not required to submit changes to its privacy and data use policy to the FTC.

According to the 2011 agreement, the social network is required to get the explicit consent of its users before exposing their private information to new audiences. Privacy advocates say that the Tag Suggest feature violates that agreement. Facebook spokeswoman Jodi Seth said in a statement to InformationWeek that the updates were intended to better explain its policies. "We were not required to change our policies and we have not done so. The updates to our Data Use Policy were language clarifications to better explain our policies," she said.

Facebook's new policy proposal came after a San Francisco judge approved a $20 million settlement that resolved claims that Facebook featured users' images in its Sponsored Stories advertisements without payment or permission.

Shortly after Facebook announced the proposed changes, a group of six privacy advocates sent a letter to the FTC requesting that it block the changes because they violated Facebook's current policies. The privacy groups that signed off on the letter included the Electronic Privacy Information Center, the Center for Digital Democracy and the Privacy Rights Clearinghouse, among others.

"The right of a person to control the use of their image for commercial purposes is the cornerstone of modern privacy law," the groups wrote. "It requires 'Alice in Wonderland' logic to see this as anything but a major setback for the privacy rights of Facebook users."

Facebook announced late last week that it had decided to delay the proposed policy changes, and that it anticipated the new date would be "in the coming week." The FTC's new involvement suggests the date may be pushed further back.

"We are taking the time to ensure that user comments are reviewed and taken into consideration to determine whether further updates are necessary and we expect to finalize the process in the coming week," the social network said in a statement.

The Interop New York Conference and Expo, Sept. 30-Oct. 4, 2013, provides the knowledge and insight to help IT and corporate decision-makers bridge the divide between technology and business value. Through three days of educational conference sessions, two days of workshops, real-world demonstrations on the Expo Floor and live technology implementations in its unique InteropNet program, Interop New York provides the forum for the most powerful innovations and solutions the industry has to offer.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
radkoaleks
50%
50%
radkoaleks,
User Rank: Apprentice
9/14/2013 | 11:23:14 PM
re: Facebook Privacy Changes: FTC Steps In
Sure this will be a long story and Facebook owners don't care at all about what some people thinking about privacy.
Thomas Claburn
50%
50%
Thomas Claburn,
User Rank: Ninja
9/12/2013 | 8:59:53 PM
re: Facebook Privacy Changes: FTC Steps In
Let's hope the FTC entered the fray with its dentures affixed firmly. All too often it departs toothless.
chrisp114
50%
50%
chrisp114,
User Rank: Apprentice
9/12/2013 | 6:41:59 PM
re: Facebook Privacy Changes: FTC Steps In
Everyone should know that it doesn't really matter what changes facebook makes to its privacy agreement. The very nature of fb means that they will always violate our privacy. This is why I use Ravetree, DuckDuckGo, and other sites that don't violate my privacy.
Cara Latham
50%
50%
Cara Latham,
User Rank: Apprentice
9/12/2013 | 6:20:14 PM
re: Facebook Privacy Changes: FTC Steps In
While I am not usually a proponent for government getting involved in something like this, I am glad to see the FTC step in here and at least review the changes and possibly try to protect users to the best of its ability.
Microsoft Patches Wormable RCE Vulns in Remote Desktop Services
Kelly Sheridan, Staff Editor, Dark Reading,  8/13/2019
The Mainframe Is Seeing a Resurgence. Is Security Keeping Pace?
Ray Overby, Co-Founder & President at Key Resources, Inc.,  8/15/2019
GitHub Named in Capital One Breach Lawsuit
Dark Reading Staff 8/14/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
7 Threats & Disruptive Forces Changing the Face of Cybersecurity
This Dark Reading Tech Digest gives an in-depth look at the biggest emerging threats and disruptive forces that are changing the face of cybersecurity today.
Flash Poll
The State of IT Operations and Cybersecurity Operations
The State of IT Operations and Cybersecurity Operations
Your enterprise's cyber risk may depend upon the relationship between the IT team and the security team. Heres some insight on what's working and what isn't in the data center.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-11276
PUBLISHED: 2019-08-19
Pivotal Apps Manager, included in Pivotal Application Service versions 2.3.x prior to 2.3.16, 2.4.x prior to 2.4.12, 2.5.x prior to 2.5.8, and 2.6.x prior to 2.6.3, makes a request to the /cloudapplication endpoint via Spring actuator, and subsequent requests via unsecured http. An adjacent unauthen...
CVE-2019-5631
PUBLISHED: 2019-08-19
The Rapid7 InsightAppSec broker suffers from a DLL injection vulnerability in the 'prunsrv.exe' component of the product. If exploited, a local user of the system (who must already be authenticated to the operating system) can elevate their privileges with this vulnerability to the privilege level o...
CVE-2019-6159
PUBLISHED: 2019-08-19
A stored cross-site scripting (XSS) vulnerability exists in various firmware versions of the legacy IBM System x IMM (IMM v1) embedded Baseboard Management Controller (BMC). This vulnerability could allow an unauthenticated user to cause JavaScript code to be stored in the IMM log which may then be...
CVE-2019-6165
PUBLISHED: 2019-08-19
A DLL search path vulnerability was reported in PaperDisplay Hotkey Service version 1.2.0.8 that could allow privilege escalation. Lenovo has ended support for PaperDisplay Hotkey software as the Night light feature introduced in Windows 10 Build 1703 provides similar features.
CVE-2019-6171
PUBLISHED: 2019-08-19
A vulnerability was reported in various BIOS versions of older ThinkPad systems that could allow a user with administrative privileges or physical access the ability to update the Embedded Controller with unsigned firmware.