Facebook is once again announcing a privacy flaw that leads some partners to access data in Groups that they should not have.
Shortly after agreeing to pay £500,00 fine to Information Commissioner’s Office for its role in the Cambridge Analytica scandal, Facebook announced another privacy flaw. According to the blog post published by Facebook, about 100 partners had retained access to Group data. Facebook claims they could only reach people’s names and photos.
Facebook will ask them to delete data
According to the post, 11 partners out of the 100 accessed the group members’ information in the last 60 days. There is no sign of abuse of these data yet. Facebook announced that these partners will be asked to delete the data of the members and Facebook will conduct audits to confirm. The data breach is caused by the flaw in the Facebook Group API.
Facebook also said: “These were primarily social media management and video streaming apps, designed to make it easier for group admins to manage their groups more effectively and help members share videos to their groups. For example, if a business managed a large community consisting of many members across multiple groups, they could use a social media management app to provide customer service, including customized responses, at scale. But while this access provided benefits to people and groups on Facebook, we made the decision to remove it and are following through on that approach.” about the incident.