The Office of the Data Protection Commissioner has returned with a follow-up report on Facebook’s personal data policies praising the social network’s efforts in giving users more control over their personal information.
The DPC delivered its first report last December following complaints from the pressure group Europe v Facebook about the nature of information retained by the website for marketing purposes.
The current report assessed Facebook’s compliance with Irish Data Protection law and by extension EU law in this area. Facebook Ireland’s delivery on its commitments in that Report was evaluated throughout the first half of 2012 and formally on-site in Facebook’s European HQ in Dublin from 2-3 May and 10-13 July 2012.
The review found that many recommendations made by the DPC in relation providing greater transparency for users in showing how their data is handled; providing increased user control over settings; and the implementation of clear retention periods for the deletion of personal data or an enhanced ability for the user to delete items were all met.
Facebook also decided to turn off its controversial facial tagging feature in the EU.
Data Protection Commissioner Billy Hawkes said: "I am satisfied that the review has demonstrated a clear and ongoing commitment on the part of Facebook to comply with its data protection responsibilities by way of implementation or progress towards implementation of the recommendations in the Audit Report.
I am particularly encouraged in relation to the approach it has decided to adopt on the tag suggest/facial recognition feature by in fact agreeing to go beyond our initial recommendations, in light of developments since then, in order to achieve best practice. This feature has already been turned off for new users in the EU and templates for existing users will be deleted by 15 October, pending agreement with my Office on the most appropriate means of collecting user consent. By doing so it is sending a clear signal of its wish to demonstrate its commitment to best practice in data protection compliance."
Deputy Commissioner Gary Davis who led the both the intiail audit and the review said: "The outcome reflects months of detailed engagement between Facebook Ireland and this Office. The discussions and negotiations that have taken place, while often robust on both sides, were at all times constructive with a collective goal of compliance with data protection requirements. There were a number of items on which progress was not as fully forward as we had hoped and we have set a deadline of four weeks for these matters to be brought to a satisfactory conclusion.
It is also clear that ongoing engagement with the company will be necessary as it continues to bring forward new ways of serving advertising to users and retaining users on the site. The value of such engagement to identify and deal with any data protection concerns prior to launch of new products and services is fully accepted by Facebook."
Techcentral Reporters
Subscribers 0
Fans 0
Followers 0
Followers