Facebook done goofed.
— Will Silberman, March 2018
I like to assume that those who have time to read something like this blog take the time to read up on more important things, like…I don’t know…the news? If you’re unaware of the current Facebook debacle, don’t worry—I got you. If you think you have read enough about it, then perhaps you should skip a few paragraphs. Matt Coblentz’s approach to discussing the debacle is much more lighthearted than mine, that’s for sure.
In light of the Cambridge Analytica (CA) scandal in which members of this “company” (used lightly, of course) were recorded saying that they have intervened in political elections all across the globe, including the 2016 Presidential Election, it was revealed that much of the data Cambridge Analytica received came from…Facebook. Facebook’s API (basically, the tool for third parties to use to export Facebook data/integrate it onto other apps/websites/platforms) allows for data to be collected by academic entities, but it does not contain any rules about what these academic entities can do with the data after collection. A professor collected data from 50 million Facebook users (270,000 of those provided consent) and shared this data with CA, who then used this information to target individuals who aligned with certain political ideologies.
One of the controversies associated with this news story is that much of this data was publicly available. In other words, Facebook users who weren’t aware of (or perhaps, indifferent to) their own Facebook use were analyzed without consenting. It seems as though Facebook users might not know how to use Facebook and maintain their privacy, or perhaps they do, but lack the wherewithal to do so.
As many tools we currently have relating to proper Facebook use, many of these rules regarding “proper” use are implicit. Over time, Facebook users have constructed a set of rules to separate Facebook use from Facebook abuse similar to Collins’ (1974) notion of an Invisible College. We know not to like every single post a person makes in a single sitting (to avoid bombarding them with notifications). We know not to go through older posts (e.g., posts which are many years old) and comment on them, as much of the context associated with the original post will have been lost. We know not to add every single person we see unless we interact with them in some other capacity (or perhaps we don’t). There is no single place where this information is publicly available, it’s learned through making mistakes online. Although Collins didn’t necessarily have Facebook in mind at the time, much of the discourse regarding the complexities of social media (ab)use is applicable to earlier thought experiments involving social circles and knowledge transmission.
This does not take into account proper privacy management on Facebook, however. We are clearly still learning how to manage our privacy in mediated settings. We do not have a set of rules surrounding proper Facebook use to maintain privacy other than the colloquial “don’t post something offensive or else you won’t get a job.” As noted by Bharati, Zhang, and Chaudhury (2015), social media use is tied with social capital acquisition. That is, one who uses Facebook is more concerned with displaying the quality of what they know. While the authors advise organizational bodies to take advantage of this notion, they lack discourse specifying the conditions under which organizations are to interact and respond to their customers on social media. For the case of Facebook, I cannot help to wonder what these authors would advise Mark Zuckerberg to do to rebuild the trust of Facebook’s user base as a platform of social capital acquisition.
Facebook is clearly in the process of saving their image in the wake of the CA scandal. If anything, Facebook is still trying to define the role of their customers (or perhaps, their course of income, since Facebook users technically are the product when they use the free social media platform that is Facebook). With regard to this notion of the customer’s role, Facebook has room to improve. Starbucks kept the customer in mind when it came to redesigning their menu (Chua & Banerjee, 2013). Facebook, in this case, needs to keep their customers’ privacy in mind when it comes to using the website itself. While the tools Facebook has already implemented in terms of audience management and password security are a step in the right direction, they were not created from listening to their users. The deafness from Facebook is striking, as millions of users’ information was used for election meddling (and perhaps other nefariousness currently unknown to the public).
As much as I criticize Facebook for not keeping these things in mind in light of the CA scandal, perhaps Facebook should be given some benefit of the doubt. If users are still unsure about knowing their own privacy, how can Facebook know how to respond to the needs of their population in any way but a retroactive fashion?
Song du jour: Marian Hill – Differently
References
Bharati, P., & Chaudhury, A. (2015). Better knowledge with social media? Exploring the roles of social capital and organizational knowledge management. Journal of Knowledge Management, 19, 456-475. doi:10.1108/JKM-11-2014-0467
Chua, A Y. K., & Banerjee, S. (2013). Customer knowledge management via social media: The case of Starbucks. Journal of Knowledge Management, 17(2), 237-249. doi:10.1108/13673271311315196
Collins, H. M. (1974). The TEA set: Tacit knowledge and scientific networks. Science Studies, 4, 165-185.
wil. 
I won’t say that the old people – like me – would say, “I told you so”. Most of those my age and older didn’t really ‘get’ Facebook when it came out. I am pretty sure that many people worried about oversharing online but never imagined that impact of doing so would be so vast. Most of the ‘tried and true’ norms of social behavior don’t translate easily to online behavior because of the way they are stated. Yet, they remain quite true, even for online behavior.
You know that person at a party that overshares all about themselves? You tend to avoid them? Putting your phone number and social security number on your checks? Yep, briefly, that was a thing until we woke up to that one. Print your DL on the check – i actually thought about it for a while because I was tired of writing it down all the time. Fortunately cooler heads prevailed (my wife).
What’s a check?, you ask? “A written order to a bank to pay a stated sum from the drawer’s account”. When is the last time you wrote a check? Okay, how many of you have NEVER written a check?
You have heard of “Walk of Shame”, I’m sure. Sadly most of us that done that at some point in our lives, even us old farts. A Ride of Glory? Pretty much a walk of shame, but Uber made it into a magnificent thing; see https://rideofglory.wordpress.com/. If you don’t think this is all pretty creepy, you should reread ‘1984’.
Thought police ( Urban Dictionary): From George Orwell’s 1984. A Gestapo organization responsible for monitoring all citizens and making sure they are not guilty of political dissent, or thoughtcrime.
If you have taken LIS 600, you have already heard about the idea of librarians and patron privacy dating back to the days of the Alexandria Library.
Just, pay attention to what you are doing. Think about your actions from a broader perspective. You might want to reconsider.
LikeLiked by 1 person
Here is a story: the android version of the Facebook app can actually grab the message content and metadata of things you send and receive from people outside of the app itself. That is, Facebook Messenger on Android grabs far more than you might expect. Specifically: metadata for phone calls and text messages, even though they were sent with Android’s default phone and SMS apps, not Facebook’s Messenger apps.
See this news story for more: https://www.theregister.co.uk/2018/03/25/facebook_app_privacy/
What that means is, even people who don’t have a Facebook account, and who therefore have not opted in or out of Facebook – there is no ‘contract’ between them because they are innocent third parties – may have had their data slurped up by Facebook.
Whoa! The EU, which has really strict privacy laws, should be going after them BIG time.
LikeLiked by 1 person
They responded to the media yesterday:
https://newsroom.fb.com/news/2018/03/fact-check-your-call-and-sms-history/
LikeLiked by 1 person
Their post says they don’t collect the content, however several developers have found the metadata of call records. See this TTwitter thread.
LikeLike
And here: https://www.theguardian.com/technology/2018/mar/25/facebook-logs-texts-and-calls-users-find-as-they-delete-accounts-cambridge-analytica?te=1&nl=dealbook&emc=edit_dk_20180326
LikeLike
Which links back to the same thread, so it does not change the provenance too much. However, it leads you to the steps needed to duplicate the process. And that’s useful.
LikeLike
Y’all may like this goodie: https://kieranhealy.org/blog/archives/2013/06/09/using-metadata-to-find-paul-revere/
LikeLiked by 1 person
I’d only briefly looked at the Facebook debacle and your post was really helpful in getting abetter grasp on the issue. Matt’s comments were great as well!
I think there is also a perceived “ease” in just accepting terms without reading, or just clicking “continue” when certain applications tell you they need xyz from your Facebook to continue. Like, you accept, or you can’t share your results like all your friends just did. So ease of access PLUS following the bandwagon. If everybody has it, it must be ok. If everybody shared, then everybody consented, so it must be ok. Why bother with the particulars?
LikeLiked by 1 person