News

Actions

Facebook collected 1.5 million users’ email contacts without their knowledge

Posted
and last updated

Facebook has admitted that it collected up to 1.5 million users’ email contacts without their consent, in the latest privacy issue to hit the giant tech firm.

The world’s biggest social network said Wednesday night that the email contact lists had been “unintentionally” uploaded to Facebook following a design change almost two years ago, and the company was now in the process of deleting them.

Facebook said the issue began three years ago when it made changes to the step-by-step verification process users go through when signing up for an account on the platform. Prior to those changes, users were given the option to upload their email contact lists when opening an account to help them find friends already on Facebook.

Facebook has admitted that it collected up to 1.5 million users’ email contacts without their consent, in the latest privacy issue to hit the giant tech firm. / AFP PHOTO / LOIC VENANCELOIC VENANCE/AFP/Getty Images

But in May 2016, Facebook removed language that explained users’ contact lists could be uploaded to the company’s servers when they signed up for an account. This meant that in some cases people’s email contact lists were uploaded to Facebook without their knowledge or consent.

A Facebook spokesperson said Wednesday the firm did not realize this was happening until April of this year, when it stopped offering email password verification as an option for people signing up to Facebook for the first time.

“When we looked into the steps people were going through to verify their accounts, we found that in some cases people’s email contacts were also unintentionally uploaded to Facebook when they created their account,” the spokesperson added.

The company said the mistakenly uploaded contact lists had not been shared with anyone outside of Facebook. The news was first reported by Business Insider on Wednesday.

Ashkan Soltani, a former chief technology officer for the Federal Trade Commission, tweeted Wednesday evening that he thought this was “one of the most legally actionable behaviors by @facebook to date.”

“I’m confident regulators will be taking a look,” he said.

The incident is the latest privacy issue to rock Facebook, which has more than two billion users globally. Over the last 18 months these have included the Cambridge Analytica data scandal and the biggest security breach in its history.

CEO Mark Zuckerberg has responded to criticism by promising to introduce more privacy-focused measures on the platform, such as encrypted messaging and better data security.

Facebook was also engulfed in controversy after a shooter in New Zealand livestreamed his March 15 attack on two mosques in Christchurch using the social network’s video tools. The shooter killed 50 people.

Its WhatsApp instant messaging application has been accused of enabling the spread of misinformation in India.