Get the Tech News Flash Newsletter from TechNewsWorld » View Sample | Subscribe
Welcome Guest | Sign In

Facebook Drops Another 'P' Bomb

By Erika Morphy
Jan 17, 2011 10:55 AM PT

Facebook dropped a privacy bombshell on an unsuspecting user base before the start of the holiday weekend: Going forward, it will make a user's address and mobile phone number accessible as part of the User Graph object. That means that users' addresses and mobile numbers are now available to third party developers of such apps as, say, FarmVille.

Facebook Drops Another 'P' Bomb

Facebook acknowledged it was dealing with "sensitive information" in the blog post making the announcement. For that reason, it created a special opt-in permission requirement for the phone number and address to be explicitly granted to the application developer through Facebook's standard permissions dialog.

It also pointed out that these permissions only provide access to a user's address and mobile phone number -- not to friends' addresses or mobile phone numbers.

Privacy Uproar

Privacy and security advocates, not surprisingly, were unimpressed by Facebook's nod to consumers with its opt-in form.

"It is a consent requirement, but the notice is so confusing to users it makes it seem as though the information is necessary for the application to work," Marc Rotenberg, EPIC executive director, told MacNewsWorld. "Then there is the very real risk that over time Facebook will change the default opt-in to opt-out. After all it has made so many changes to its privacy policy, why not this one too at some point?"

Facebook did not respond to MacNewsWorld's request for comment in time for publication.

As for Facebook's decision to grant developers this information, Rotenberg expressed more scorn.

In general, granting information to third parties has become a very slippery slope, with little attention being paid to what they are using it for.

"Increasingly, it is being used for purposes other than app development," noted Rotenberg, "such as advertising or behavioral targeting."

Security Threat

Facebook's decision will leave users open to security threats by rogue developers, suggested Graham Cluley of Internet security research firm Sophos in a blog post.

"Facebook is already plagued by rogue applications that post spam links to users' walls, and point users to survey scams that earn them commission -- and even sometimes trick users into handing over their cellphone numbers to sign them up for a premium rate service," he wrote.

Shady app developers will find it easier to gather this data now that Facebook has legitimatized it, he continued, predicting an increase in identity theft as a consequence of making this and other data available on Facebook.

Developers are also at risk with this system, pointed out Douglas Karr, founder of DK New Media and author of Corporate Blogging for Dummies.

"Since this data isn't 'scrubbed' against national do not call and do not mail data, Facebook may be putting application developers in a precarious, dangerous position if the data is somehow misused," he said.

Another Backlash

With so many ways this decision could go wrong, there is a significant likelihood of a backlash, predicted Simon Buckingham, CEO and founder of "This is a major change for users, and many won't realize that they have given permission for their phone numbers to be gathered."

When they do, he said, hell is going to break loose. "With 600 million members, Facebook needs to err on the side of caution. This type of information is sensitive, and it is almost guaranteed that a lot of users will be unhappy about its disclosure."

Contact Center AI Explained by Pop Culture
If my employer requires me to return to the company's office full-time to perform my job, I will...
Agree, because I like my job regardless of where I perform my duties.
Comply, because I can't afford to lose my current job.
Go with the flow, but start looking for different employment.
Resign immediately, so I can dedicate all of my time to find a job that better suits my needs.
Try to negotiate a hybrid work from home / work in office arrangement with my employer.
Contact Center AI Explained by Pop Culture