Now that Mark Zuckerberg‘s Facebook has been caught out again with catching all those calls you’ve made over the years along with your text history, he’s suddenly implementing some security settings changes for users.
Remember when you tried to make those changes before? It was like a twenty step process, but now that Facebook is seeing a huge hit in profits, suddenly they’re playing nice to those of us thinking of bailing on them. Now, it’s their priority to make those arcane security privacy settings much more accessible with much clearer explanations on how their data tools are used.
Another thing that helped expedite this was the fast-growing #DeleteFacebook movement along with companies quickly distancing themselves from the social media platform after the 50 million user data scandal hit.
“Last week showed how much more work we need to do to enforce our policies and help people understand how Facebook works and the choices they have over their data,” Facebook vice president and chief privacy officer, Erin Egan, and vice president and deputy general counsel, Ashlie Beringer, said in a statement. “We’ve heard loud and clear that privacy settings and other important tools are too hard to find and that we must do more to keep people informed.
Here are the changes that have been made so you can easily change your Facebook privacy settings. If Zuckerberg and company had only done this years ago, they wouldn’t see their empire veering off course.
Redesigning settings menu
First, Facebook plans to roll out a redesign of its settings menu on mobile devices. The company says the new layout will streamline the settings into one location “instead of having settings spread across nearly 20 different screens.”
Making it easier to control your data
Next, Facebook is adding a privacy shortcuts menu “where you can control your data in just a few taps.” Users can turn on additional security measures like two-factor authentication, manage information used for Facebook ads and adjust who sees posts and information on profiles.
Redesigning settings menu
First, Facebook plans to roll out a redesign of its settings menu on mobile devices. The company says the new layout will streamline the settings into one location “instead of having settings spread across nearly 20 different screens.”
Making it easier to control your data
Next, Facebook is adding a privacy shortcuts menu “where you can control your data in just a few taps.” Users can turn on additional security measures like two-factor authentication, manage information used for Facebook ads and adjust who sees posts and information on profiles.
Now that you know how to keep your data on Facebook private, here’s how this whole mess started.
The news that Facebook’s Android app has been collecting call and text histories is yet another black eye for the social media giant. But just why was Facebook able to siphon off records of who its users were contacting — and when — in the first place?
The short answer: Because Google let it. The longer answer: Well, it’s complicated.
The social network acknowledged on Sunday that it began uploading call and text logs from phones running Google’s Android system in 2015 — first via its Messenger app and later through an option in Facebook Lite, a stripped-down version of its main app. Facebook added that only users who gave appropriate permission were affected, that it didn’t collect the contents of messages or calls, and that users can opt out of the data collection and have the stored logs deleted by changing their app settings.
Facebook did not respond to multiple requests for more specifics. The kerfuffle over this data collection, first reported by the website Ars Technica, follows a week of turmoil for the social network involving charges that it allowed political consultants to steal the data of 50 million users in order to influence elections.
There’s a reason Facebook’s actions were restricted to Android phones. Apple locks down app permissions tightly, which offers more privacy protection to iPhone users. “Apple’s fundamental approach is to collect the minimum amount of information to keep the service running, and keep customers in control of the information,” said Rich Mogull, CEO of the security firm Securosis.
But Android has long been more indulgent.
Until recently, in fact, Google let app developers gain access to a phone’s call and text logs. All they needed was an app that required access to user contacts. Once users agreed, Android would then also grant access to those communication histories.
Starting in 2012 with its “Jelly Bean” release, Android would notify people installing such apps that they were also giving apps access to their call and text logs, but still required them to agree to all those permissions at once. Rejecting the request meant the apps wouldn’t work.
It wasn’t until 2015 when Google released Android 6.0, dubbed “Marshmallow,” that Android phones finally split up those permissions. That meant users could agree to share contacts, but reject access to their messaging and phone histories.
That’s the same year Facebook says its apps started collecting this information. But many Android users aren’t using the latest version of the software. In fact, they often can’t get it even if they want it.
Apple owns both the software and hardware for iPhones, which allows it to push out new versions of its iOS operating software at will. Google, by contrast, is largely at the mercy of both mobile carriers and hardware makers when it comes to distributing new Android versions.
There are nearly 20,000 Android phone models now in service, and carriers like to tweak the software for each to ensure that it will work as smoothly as possible on their networks. As a result, new Android versions reach users very slowly.
As of January, about 65 percent of iPhone users were using the latest iOS software, introduced in 2017. Less than 1 percent of Android devices currently use the latest version of Android, known as “Oreo.” (Many of them are owners of Google’s new Pixel phones, which get software updates directly from Google.)
Just over half of all Android users are using the two previous versions, which allow them to specifically reject the sharing of communication logs. Last October, Google began forcing all apps to follow the new rules when they issue updates, even on phones running older versions of Android.
All that leaves two big questions unanswered. Why did Google set up Android permissions this way? And how many other apps have taken advantages of the same setup?
Experts and privacy advocates say the answer to the first question is probably related to Google’s advertising-based business model, which — like Facebook — depends on collecting detailed information about users in order to target them with tailored ads. Apple, meanwhile, derives its profits from the sale of devices and services like Apple Music.
Another possible factor: Android was playing catch-up with Apple for many years, and was eager to attract app developers in order to attain parity with Apple’s App Store. Some app developers may have found greater access to user data on Android attractive — as Facebook did.
Experts say it’s not clear if other apps are going as far as Facebook in terms of tracking call history and texts, but it’s very possible.
“In a lot of ways, Facebook is the tip of the iceberg,” said Bob O’Donnell, chief analyst at Technalysis Research. “There are plenty of other people doing this kind of data collection.”
It is unclear how many apps gained access to call logs so far or how many users’ call logs had been sent to app developers. A Google spokesperson declined to comment.
One major Android phone maker expressed uncertainty over its role in protecting user privacy. “At this time the nature of the data breach is unclear so it is difficult to comment on the cause or the solution,” LG Electronics Inc. said Tuesday in a statement.