INFO5301 Data Privacy and General Data Protection Regulation
• Restrict Data Access on Facebook:
According to Facebook as in 2018: An Update on Our Plans to Restrict Data Access on
Facebook: the following changes will take place:
The Events API can no longer access the guest list or wall posts, and only apps that
meet "strict requirements" will be able to use the API in the future.
Any third party app wanting to use the Groups API will need approval from Facebook
and a group admin. Personal data from members will be removed, and apps won’t be
able to access the member list. Any future access to the Pages API will need Facebook
approval.
Any apps that request access to personal user information (check-ins, likes, photos,
posts, etc.) will need Facebook approval, and the review process is getting more com-
plex. Apps can’t ask for personal data (political views, relationship status, etc.) any-
more and developers can no longer request data that people had shared with them if
they haven’t used the app in three months.
The Instagram Platform API has been deprecated. Facebook has eliminated the abil-
ity to search for a user by a person’s phone number or email address and has made
changes to account recovery to fight data scraping.
Facebook collects call and text history as an opt-in feature and will delete logs older
than one year. In the future, only needed information will be uploaded to servers.
Partner Categories, "a product that lets third-party data providers offer their targeting
directly on Facebook," has been shut down.
Starting April 9, a new feature will appear in users’ News Feeds that shows users what
apps they’re using and what data they have shared with the apps. There they’ll be able
to remove the apps as well.
REF: https://about.fb.com/news/2018/04/restricting-data-access/
• Implementing GDPR
Duration: 40 min
Information Security Management Page 6of 6