Meta Pays $725M To Settle Facebook Privacy Suit

Uploaded on 2023-01-03 in TECHNOLOGY-Key Areas-Social Media, FREE TO VIEW, BUSINESS-Services-Law

Facebook’s corporate parent company Meta has agreed to pay $725 million to settle a long-running lawsuit that accused the social network of allowing third parties, including Cambridge Analytica, to access users' private data and support Donald Trump’s Presidential campaign.

The settlement is the largest recovery ever for a data privacy class action lawsuit and is the most Facebook has ever paid out to settle a private class action. Facebook has not admitted to any wrong action as part of the settlement.

In August, the social media giant had reportedly reached a preliminary agreement regarding the lawsuit, however, the terms and amount were kept private until now. 

Plaintiffs alleged that Facebook “granted numerous third parties access to their Facebook content and information without their consent, and that Facebook failed to adequately monitor the third parties’ access to, and use of, that information,” according to the law firm behind the lawsuit.

The lawsuit was initiated in 2018, when Facebook was accused of violating privacy rules by sharing data with third parties. The information was ultimately accused of being used to steer US voters in favor of Donald Trump in the 2016 elections. The case was subsequently broadened to focus on Facebook’s overall data-sharing practices which focused on Cambridge Analytica, which has since shut down, which collected and exploited the personal data of 87 million Facebook users without their consent. That information was allegedly used to develop software to steer US voters in support of Trump.

Facebook has not admitted any wrongdoing as part of the settlement, which still requires approval by a judge in the San Francisco division of the US District Court. "We pursued a settlement as it's in the best interest of our community and shareholders... Over the last three years we revamped our approach to privacy and implemented a comprehensive privacy program." Meta said in a statement.

Besides the class action settlement, Facebook has agreed to pay $5 billion to the U.S. Federal Trade Commission following the scandal. In response to a similar inquiry, Facebook has also paid $100 million to the U.S. Securities and Exchange Commission. Both cases arose because the company had previously agreed to inform users when their data was being shared with third parties. FTC and SEC findings alleged that Facebook either failed to do so or allegedly used misleading tactics.

Facebook has since removed access to its data from thousands of apps suspected of abusing it, restricted the amount of information available to developers, and made it easier for users to calibrate restrictions on personal data sharing.

Last year, Meta paid US Federal authorities a fine $90m in settlement after Facebook kept tracking users' internet activity after they'd logged off from the platform.

PBS:    CNBC:     Oodaloop:      Security Week:      Telegraph:    Screenrant:  

You Might Also Read:

EU & US Agree New Data Rules To Replace Privacy Shield:

 

« Looking Back - Top 10 Most Read Articles Of 2022
2023 Tech Predictions »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Our Supplier Directory lists 6,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Forensic Control

Forensic Control

Forensic Control is an insider threat and risk management firm specialising in computer forensics and behavioural psychology.

Information-Technology Promotion Agency (IPA) - Japan

Information-Technology Promotion Agency (IPA) - Japan

IPA is an implementing agency in Japan with a role to address Information Security, IT Systems Reliability and IT Resource Development.

Cybersecurity Philippines CERT (CSP-CERT)

Cybersecurity Philippines CERT (CSP-CERT)

Cybersecurity Philippines CERT is the national Computer Emergency Response Team for the Philippines.

Conscia

Conscia

Conscia provides IT infrastructure solutions and 24/7 services in network, data center, security and mobility.

Onspring

Onspring

Onspring is the cloud-based platform of choice for governance, risk and compliance (GRC) teams and business operations experts across multiple industries.

CloudKnox Security

CloudKnox Security

CloudKnox Security is the only Cloud Security Platform built from the ground up for Identity Authorization Administration across hybrid cloud environments.

Trinity Cyber

Trinity Cyber

Trinity Cyber’s patent-pending technology stops attacks before they reach internal networks,reducing risk and increasing cost to adversaries.

Zymbit

Zymbit

Zymbit provides hardware security modules (HSM) for IoT devices, including Raspberry Pi and other single board computers.

eLearnSecurity

eLearnSecurity

eLearnSecurity is an innovator in the IT Security training market providing quality online courses paired with highly practical virtual labs.

Pentest360

Pentest360

Pentest360 is a 24x7x365 Penetration testing service offered through a feature-rich, centralised platform on the cloud that delivers instant visibility during security assessments.

Mosaic Technologies Group

Mosaic Technologies Group

MOSAIC’s Cyber solutions provide the analytics, planning, technologies, and operations support to protect our clients’ systems, our warfighters, and the nation’s joint cyber mission.

MCPc

MCPc

MCPc improves the security and well-being of our clients. We protect data, manage the complexity and sustainability of technology, empower employee performance, and ultimately reduce business risk.

CrowdSec

CrowdSec

CrowdSec is an open-source & participative IPS able to analyze visitor behavior by parsing logs & provide an adapted response to all kinds of attacks.

Shorebreak Security

Shorebreak Security

Shorebreak Securioty specialize in conducting highly accurate, safe, and reliable Information Security tests to determine the risks posed to your business.

Newchip Accelerator

Newchip Accelerator

Newchip is an online startup accelerator program providing you with all of the tools and skills necessary to fund, build, and scale.

LogicMonitor

LogicMonitor

LogicMonitor provides SaaS-based IT infrastructure monitoring services for on-premises and multi-cloud environments.