By Chris Conley, Technology & Civil Liberties Fellow, ACLU of Northern California
Facebook has come under withering fire recently for its recent string of privacy-unfriendly practices, from its “privacy transition” that took away privacy controls to “instant personalization” that instantly shares personal information with third party pages without the user’s consent.
These failings led over 80,000 people to sign ACLU petitions demanding that Facebook give users control over all of the information they share via Facebook and ensure that user information is not shared with any third party without our own opt-in consent. Oddly, that sounds a lot like two of the principles that CEO Mark Zuckerberg expressed on Monday: “You have control over how your information is shared” and “We do not share your personal information with people or services you don’t want.”
But Facebook deserves a lot of credit for its latest changes. Facebook moved very quickly this time around, going from a reported closed door meeting on May 13th to the release of new privacy tools a scant two weeks later. And these changes address several of the most serious privacy problems with their service. Although there are further changes users want and need, today’s changes are a significant and promising step in the right direction.
Following is an overview of Facebook’s most serious privacy problems and what Facebook has done (and in some cases, not done) to address them today:
Problem #1: Giving Users Control Over All Information They Share Via Facebook
Users share a wide range of information via Facebook: friends lists, photos, education and work history, religious and political leanings, relationship status—the whos, whats, whens, hows, and whys of their lives. For much of Facebook’s history, this information was entirely under the control of the user, and others could only view the information if the user permitted it.
However, that has gradually changed. Last December, Facebook introduced the concept of “publicly available information,” information that users must make public if they share it at all. More recently, the company expanded this definition to include “connections,” which includes users’ interests, work and educational background, and more. In doing so, Facebook decreased the amount of control that users actually had over the information they shared via Facebook.
What Changed Today:
The most visible change to Facebook’s privacy controls is the addition of “simplified” options. For profile information, you can now use a single click to change all of their settings to “Everyone,” “Friends of Friends,” “Friends Only,” or Facebook’s “Recommended” settings. You can also still fine-tune your own settings. In addition, the “simplified” settings will affect both past and future sharing, resetting the privacy level of past content and carrying over to any new services that Facebook releases (though this will not necessarily happen if you customize your settings). Having controls that are actually easy to use—even for unsophisticated users—is a significant improvement.
Even more significant is the addition of several “Basic Directory Information” privacy settings. These settings allow users to control the privacy of Facebook’s new “Connections:” their education and work history, current city and hometown, and interests and fan pages—including preventing any Facebook visitor from discovering the connection from either end of the connection. (These are not brand new controls—prior to the launch of Connections, users had privacy controls for this information—but are still a marked change from yesterday.)
The addition of simplified options (combined with the continued ability to fine-tune your settings if you wish) and user control over Facebook’s “connections” are significant improvements to Facebook’s privacy. There are still some basic fields that users cannot prevent others from viewing on their profile—name, gender, and profile photo—but removing connections from that list is an enormous improvement. Unfortunately this content, while no longer public by Facebook fiat, is still public by default, whereas it was largely private by default a year ago.
Going forward, Facebook should restore the previous default settings for “Basic Directory Information,” most of which were not “share with everyone,” and include even the most basic fields like profile picture and gender in these settings It should also try to make these settings more prominent and include them in the “simplified” privacy options, making these controls even more useful. But these are fairly minor steps—Facebook has already done much of the heavy lifting today.
Problem #2: Sharing Information With Third Parties Without Users’ Opt-In Consent
Third party applications and websites have access to a huge amount of information about individuals (something we highlighted in our very own Facebook app), including information about people who never even use apps. Over time, Facebook has increased the amount of information these apps and pages can access and taken away some of the few controls users had to prevent this access. And Facebook recently took this one step further with "instant personalization," allowing some websites to access Facebook user information without giving notice to the user first—and made the process of opting out of this “feature” extremely convoluted.
The result of this has been that, while users can choose which other users to friend and share their information with, they cannot make the same choices about applications. Facebook in effect has treated third-party applications and web sites as friends, giving the user limited power to control what these apps could see. (In fact, applications could access some information, such as friend lists, that were hidden from friends!)
What Changed Today:
Facebook addressed third party sharing in two ways. First, it made it easier for users to opt out of “instant personalization” entirely by providing a single privacy control to disable instant personalization via friends as well as directly. Second, Facebook has restored the option to opt out of third party sharing entirely.
Allowing users to opt out of instant personalization and third-party app sharing is a significant advance for privacy and Facebook deserves praise for taking these steps.
Unfortunately, the privacy control that Facebook has given to users over the sharing of information with general Platform apps and pages is extremely crude: users are only given the choice between having much of their information visible to any application or site they or their friends use or not allowing the sharing of any information with any application or site at all. That means that users who want to use even a single handy app will have to choose between not using that app or opening up all their information to any third-party app used by themselves OR their friends. A better approach would be to allow users to disable sharing information with their friends’ apps, which would still allow users to interact with (and interact with friends via) any application they specifically chose.
Similarly, making it easier to opt out of “instant personalization” is nice, but it still requires users, even users who never visit the sites, to opt out. Facebook should rethink the whole idea of instant personalization as a default, and at minimum require users who want the “feature” to actually opt in before their experience on partner sites is affected.
Overall, Facebook needs to recognize that users should be allowed to fully control third party sharing. Just as each user can determine whether any other user can see her information, she should be able to choose whether any third party can access that information—without being forced to make a blanket “yes or no” choice that applies to every single application. And these controls should be as easy to use as possible.
Today’s changes are a major step forward for privacy on Facebook: users simply have more and better controls today than they had yesterday. There are still substantial issues that Facebook needs to address, but they deserve credit for today’s release.
But much of the credit also belongs to you. Today’s improvements are a direct result of users and others who have Demanded Their dotRights and pushed for control over their own information.
So keep up the good work! Please take this opportunity to sign our new petition and demand that Facebook continue working to live up to its principles by giving you real control of your personal information. It’s up to us to tell Facebook that, even when it comes to sharing, it needs to be our choice, not theirs, to do so. Please help us push Facebook and other companies to build on today’s events!