Feeds

Facebook spurns privacy probe as 'routine audit'

More of a gentle poke than an outright dig

Build a business case: developing custom apps

Facebook's international headquarters are in Dublin, Ireland, where the company just so happens to face a regulatory probe into the handling of personal data on the social network.

According to the RTE, the Irish data protection commissioner will carry out a privacy audit of the site in November.

That's potentially a big deal, because Facebook's presence in Dublin is much more dominant than anywhere else in Europe.

The company farms all the data it stores back to its spiritual homeland in the US, but a privacy audit in Ireland is significant as it's not only Facebook's major EMEA bolthole, but is also the nearest responsible data protection authority outside of the firm's US head office.

It's important to note, however, that Facebook isn't breaching European law when it makes stealth changes to its technology that cause upset among its 800 million-strong stalkerbase.

Last week the company fielded lots of complaints from users unhappy with the latest redesign to Facebook, that included Mark Zuckerberg's creepy concept of "frictionless sharing", which means displaying an individual's entire life history as chronicled on the network.

An Austria-based collective called Europe versus Facebook filed 22 complaints with the Irish data protection commissioner.

Among other things, the group griped about Facebook's "Like" button that – it was revealed by Oz blogger Nik Cubrilovic – carried cookies that included unique information after people had logged out of the dominant social network.

Facebook said it had "quickly" fixed the issue, but insisted there was no privacy or security breach.

"Like every site on the internet that personalises content and tries to provide a secure experience for users, we place cookies on the computer of the user," it told The Register earlier this week.

Irish deputy data protection commissioner Gary Davis told the FT that his office would investigate Facebook's operation outside of the US and Canada.

“This audit will examine the subject matter of the complaint but also will be more extensive and will seek to examine Facebook’s compliance more generally with Irish data protection law,” he added.

According to the RTE, a report on the outcome of that probe won't be published until the end of 2011.

Facebook's European policy director Richard Allan has previously called on self-regulation and the development of industry standards rather than for people to get stuck on "a debate on principles about data protection law each time”.

Despite the howls of protest against the immensely popular network, Brussels has limited power over how Facebook operates in Europe while siphoning the data it gathers to the US.

Regulators hope to close the loophole with the reform of the Data Protection Directive, proposals for which are expected in early 2012.

Facebook underplayed the latest regulatory action taken against the firm:

“Facebook’s European headquarters in Ireland manages the company’s compliance with EU data protection law," it said.

"We are in regular dialogue with the Irish data protection commissioner and we look forward to demonstrating our commitment to the appropriate handling of user data as part of this routine audit.” ®

Endpoint data privacy in the cloud is easier than you think

More from The Register

next story
Microsoft's Euro cloud darkens: US FEDS can dig into foreign servers
They're not emails, they're business records, says court
'Things' on the Internet-of-things have 25 vulnerabilities apiece
Leaking sprinklers, overheated thermostats and picked locks all online
iWallet: No BONKING PLEASE, we're Apple
BLE-ding iPhones, not NFC bonkers, will drive trend - marketeers
Multipath TCP speeds up the internet so much that security breaks
Black Hat research says proposed protocol will bork network probes, flummox firewalls
Plug and PREY: Hackers reprogram USB drives to silently infect PCs
BadUSB instructs gadget chips to inject key-presses, redirect net traffic and more
Only '3% of web servers in top corps' fully fixed after Heartbleed snafu
Just slapping a patched OpenSSL on a machine ain't going to cut it, we're told
How long is too long to wait for a security fix?
Synology finally patches OpenSSL bugs in Trevor's NAS
Israel's Iron Dome missile tech stolen by Chinese hackers
Corporate raiders Comment Crew fingered for attacks
prev story

Whitepapers

7 Elements of Radically Simple OS Migration
Avoid the typical headaches of OS migration during your next project by learning about 7 elements of radically simple OS migration.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
Solving today's distributed Big Data backup challenges
Enable IT efficiency and allow a firm to access and reuse corporate information for competitive advantage, ultimately changing business outcomes.
A new approach to endpoint data protection
What is the best way to ensure comprehensive visibility, management, and control of information on both company-owned and employee-owned devices?