Facebook paid teenagers to mine device data

[The AchieVer]

Facebook paid teenagers to mine device data

 

Facebook denies it specifically targeted teens with its research programme

Facebook is halting a scheme that gathered highly personal data from paid volunteers, after it was exposed.

TechCrunch said participants - including those aged 13-17 - had been paid up to $20 (£15.30) a month to open up their phones to deep analysis. 

Apple has said Facebook misused its privileges to distribute the app involved. 

The iPhone-maker has now restricted Facebook's ability to issue iOS apps that are not listed on its App Store.

This will disrupt the social network's ability to distribute test versions of its software among staff and for the employees to run apps designed for their exclusive use, which are used to do things such as book transportation.

This could add to tensions between the two companies.

A spokeswoman for the social network was unable to say whether it ran the programme in the UK or other countries outside the US.

TechCrunch reported that Facebook used social media ads to target teenagers for the scheme. Facebook denies this.

Personal data

The app had the potential to provide Facebook with "nearly limitless access" to a user's device including:

• the contents of private messages in chat apps including photos and videos
• emails
• web browsing activity
• logs of what apps were installed, and when they were used
• a location history of where the owner had physically been
• data usage

In addition, TechCrunch reported that users were asked to provide screenshots of their Amazon orders.

When the BBC visited one of the sign-up pages, it stated that Facebook would use the information to improve its services.

It added that "there are some instances when we will collect this information even where the app uses encryption, or from within secure browser sessions".

It added that participants had to agree not to disclose "any information about this project to third parties".

The social network said everyone involved in the programme had consented, and that market research was standard practice. 

However, in the hours after TechCrunch's report was published, Facebook said it would end the programme on Apple devices. 

It has not, however, suspended a parallel effort on Android.

The research focused on users aged 13-35, and those under 18 were asked to get signed parental consent, Facebook said.

Image copyrightGETTY IMAGES

Image captionFacebook remains the most popular social media app among UK 12-to-15-year-olds according to a recent Ofcom report

However, when the BBC identified itself as a 14-year-old boy during its test, it was able to download the app without any parental consent being sought. A page did state, however, that users should be over the age of 18.

A reporter from BuzzFeed News tried signing up via an alternative registration page, where obtaining parental consent involved sharing an email address and clicking a tick box. He said this form did not mention Facebook by name.

'Not spying'

In a statement, Facebook took issue with TechCrunch's characterisation of the programme.

"Key facts about this market research programme are being ignored," a spokeswoman said via email.

"Despite early reports, there was nothing 'secret' about this; it was literally called the Facebook Research App. It wasn't 'spying' as all of the people who signed up to participate went through a clear on-boarding process asking for their permission and were paid to participate.

"Finally, less than 5% of the people who chose to participate in this market research program were teens. All of them with signed parental consent forms."

 

When asked by the BBC how exactly the parental consent was obtained, Facebook said it was handled by a third party and did not elaborate.

Apple has accused Facebook of abusing a system designed to distribute software to staff to carry out the scheme.

 

"We designed our Enterprise Developer Programme solely for the internal distribution of apps within an organisation," it said in a statement.

"Facebook has been using their membership to distribute a data-collecting app to consumers, which is a clear breach of their agreement with Apple.

"Any developer using their enterprise certificates to distribute apps to consumers will have their certificates revoked, which is what we did in this case to protect our users and their data."

Facebook has yet to respond to the punishment.

Image copyright@MIKEISAAC

Image copyright@TOMWARREN

There is also an app for devices running on Android distributed outside of Google's Play Store.

TechCrunch’s detailed report explained Facebook had previously conducted market research using a virtual private network (VPN) app called Onavo, which it acquired in 2013. 

Image copyrightGETTY IMAGES

Internal documents, published online in December, revealed Facebook had used the data gathered to decide to takeover WhatsApp and track usage of rivals including Snapchat and Twitter's former video service Vine.

But in August last year, Facebook removed the app from the App Store after Apple complained that violated its data-collection rules.

Not unusual

However, Facebook had another research app that it had been running since 2016. It circumvented Apple’s App Store by using testing tools typically used to install software that is still in development. 

The app installed a “root certificate”, which enabled deeper access to a phone’s software including functions not reachable by typical apps. 

Apple allows the installation of root certificates in narrow cases, such as for companies that provide employees with iPhones but want to install internal apps, monitoring capabilities and extra security.

But Apple’s Developer Enterprise Program License Agreement makes it clear that these certificates must only be used for “specific business purposes” and “only for use by your employees”.

There are scenarios that allow exceptions to the rule, the policy goes on to say. But market research is not one of them.

Facebook had earlier insisted its market research policies were not unusual.

"Like many companies, we invite people to participate in research that helps us identify things we can be doing better,” it said.

"Since this research is aimed at helping Facebook understand how people use their mobile devices, we've provided extensive information about the type of data we collect and how they can participate. 

"We don't share this information with others and people can stop participating at any time."

 

 

Source

[steven36]

Topic title  is misleading   it was not just teenagers and they did not  use 12 year olds most all websites require you to be 13 years old to join them even.

 

Quote

The report details how the tech giant recruited users ages 13–35 to install and run its “Facebook Research” app, a VPN designed to monitor all data passing through a user’s phone, including private messages (text and images!), internet searches and browsing, and, in some cases, continuously updated location info, according to a security expert TechCrunch consulted. In exchange, the company, working through third-party administrators, offered participants e-gift cards on the order of $20 a month, plus extra for referring others. Notably, the Research app seemed to be a repackaging of the Onavo Protect app, a different Facebook program that Apple banned last year for violating its rules on data collection by developers.

https://slate.com/technology/2019/01/facebook-research-vpn-app-teens-paid-data-collection-project-atlas.html

 

It wouldnt shock  me none if it was like Cambridge Analytica were  they did not even use people from the UK's data.

 

It don't seem to be the 1st time they done it ether  it seems they just clone there app and change the name  of it.

 

Quote

 

A clone of a banned app?

The VPN is reportedly similar to Facebook’s Onavo Protect app that was pulled from the Apple App Store last year for privacy violations. However, Facebook calls on iOS users to side-load the Facebook Research app by declaring the social network to be a trusted developer.

In any event, the outlet’s research showed the app seems to have plenty of references to the Onavo app. In fact, the Guardian Mobile Firewall representative said the app shared so much references to Onavo Protect that it seemed like a “poorly re-branded build.”

 

 

https://www.androidauthority.com/facebook-research-vpn-948171/