Facebook To Pay $90m Penalty For Tracking Users

Facebook's parent compant Meta has agreed to pay $90 million to settle a decade-old lawsuit alleging Facebook kept tracking users' internet activity after they'd logged off of the platform. 

Users accused the Facebook of violating federal and state privacy and wiretapping laws by using plug-ins to store cookies that tracked when they visited outside websites containing Facebook “like” buttons.

The proposed settlement, which was filed on 14th February still requires court approval. If approved, it would be one of the 10 biggest data-privacy class-action settlements ever. Facebook agreed to delete all the data at issue.

Initiated in 2012, the case centered on Facebook’s use of proprietary browser plug-ins to track users’ visits to third-party sites.  Facebook obtained consent to track subscribers while logged in but promised to stop the tracking once the subscriber logged out, which according to the class-action suit, was not the case. Facebook violated privacy and wiretapping laws by using plug-ins to store cookies tracking users' visits to third-party websites that contained "like" buttons.

The social media site had users' permission to track them while they were logged in and promised to stop when they logged out, but failed to do so.

Besides the $90 million sum, which would be distributed among affected users, the settlement would require that Facebook delete data improperly collected on users through the use of this practice. Facebook's parent company, Meta, said, "Reaching a settlement in this case, which is more than a decade old, is in the best interest of our community and our shareholders and we're glad to move past this issue." 

As part of the settlement, Meta denies any wrongdoing.

The case dates back to a 2010 update by Facebook called “Open Graph,” which was designed to give users’ friends a closer look at their activity and interests across the internet. That lawsuit was dismissed in 2017 when a US  federal judge said the plaintiffs failed to show they had a reasonable expectation of privacy or that they suffered economic harm. 

In 2020, a federal appeals court revived the case, saying there is economic harm in such a situation. Facebook tried to have the Supreme Court take up the case, but it declined, allowing the federal appeals court's decision to stand.

Last year, Facebook agreed to pay $650m to settle a separate private lawsuit alleging the company's tagging feature violated an Illinois law prohibiting the collection of biometric data without prior notification and written consent. 

Business Insider:     Variety:     The East African:     Dawn:   The Citizen:     Haute Lawyer:     Image: Unsplash

You Might Also Read: 

Facebook Tanks:

 

« Ukraine Defence Ministry & Banks Under Cyber Attack
The New Security Demands Of Our Hybrid Working Future  »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

vArmour

vArmour

vArmour is the industry’s first distributed security system that provides insight and control for multi-cloud environments.

Data Security Council of India (DSCI)

Data Security Council of India (DSCI)

DSCI is a premier industry body on cyber security and data protection in India, committed to making the cyberspace safe, secure and trusted.

Guy Carpenter

Guy Carpenter

Guy Carpenter delivers a powerful combination of broking expertise, strategic advisory services, and industry-leading analytics.

Georgia Cyber Center

Georgia Cyber Center

Georgia Cyber Center is dedicated to training the next generation of professionals through education and real-world practice while also supporting innovation in new technologies for online defenses.

CloudAlly

CloudAlly

CloudAlly provides online cloud to cloud backup and recovery solutions, which backs up daily changes in your SaaS to unlimited Amazon S3 storage and makes it available for restore or export.

Philippine National Police Anti-Cybercrime Group (PNP-ACG)

Philippine National Police Anti-Cybercrime Group (PNP-ACG)

The mission of the PNP Anti-Cybercrime Group is to implement and enforce pertinent laws on cybercrime and other cyber related crimes and pursue an effective anti-cybercrime campaign.

Cybriant

Cybriant

Cybriant Strategic Security Services provide a framework for architecting, constructing, and maintaining a secure business with policy and performance alignment.

UK Cyber Security Council (UKCSC)

UK Cyber Security Council (UKCSC)

The role of The UK Cyber Security Council is to champion the cybersecurity profession across the UK, provide representation for the industry, accelerate awareness and promote excellence.

Inetum

Inetum

Inetum (formerly Gfi Informatique) is an agile IT services providing digital services and solutions, and a global group that helps companies and institutions to get the most out of digital flow.

Path Forward IT

Path Forward IT

Path Forward IT has been troubleshooting, architecting, migrating, protecting, and securing IT environments for businesses across the USA since 2002.

Private Client Cyber Security (PCCS)

Private Client Cyber Security (PCCS)

PCCS provides enterprise-grade cybersecurity consulting and services to professional practices, executives, athletes, and high net worth families.

Klarytee

Klarytee

Protect your data wherever it goes. Klarytee is a SaaS platform that builds security into sensitive content to enable granular control in AI, public cloud and SaaS.

Offensive Security Manager (OSM)

Offensive Security Manager (OSM)

Offensive Security Manager is the ultimate AI software that will enforce offensive security automation, orchestration, coverage, ensure quality, and lets you manage whole process.

Corinium Global Intelligence

Corinium Global Intelligence

At Corinium, we have been bringing together the brightest minds in data, AI and info sec since 2013, to innovate at the intersection of technological advancements and critical thinking.

GlassHouse Technology

GlassHouse Technology

GlassHouse supports customers in their digitalization journey with our deep technical expertise in Managed Cloud and Security Services, SAP Infrastructure Service and Business Continuity Services.

Cybersecurity Elastic Laboratory (CEL)

Cybersecurity Elastic Laboratory (CEL)

CEL specialize in providing top-tier services in vulnerability diagnosis and penetration testing, offering a comprehensive suite of solutions to mitigate cyber risks.