and when user’s data is collected and shared by Facebook when anyone uses the Workplace platform.
These Platforms are called services which are intended for use by organizations in accordance with their
EU’s General Data Protection Regulation (GDPR)
The European Union’s GDPR is a set of consistent data protection rules which are applicable to the
companies based in the EU. GDPR is also applicable to the companies worldwide who process
personal data. Facebook is going to apply GDPR rules effective from May 25, 2018.
GDPR gives a similar sense of existing EU data protection rules but has a wider scope, better standards
and huge fines.
- Compliance with GDPR would require higher standard of consent for using some important data
- It also increases freedom for an individual with respect to accessing and porting their data.
- For certain violations, supervisory authority of an organization may seek fines of up to 4% of
their global annual revenue.
Facebook is committed to transparency, according to their data policy: “Our Data Policy will remain the single
consolidated place that maps out the ways in which we process people’s personal data, but we’ll also
provide education through consent experiences for new and existing users, in-product notifications and
consumer education campaigns”.
Data Theft Controversy of Facebook
Use of data provided by Facebook during trump’s campaign has diverted the entire world’s focus on data
privacy rules of Facebook and hence, in turn sought a requirement to make some additional changes in
the existing privacy policies to which any organization is complied with.
The data was used by creating personality profiles by gathering data regarding personality attributes,
hobbies, attitudes, beliefs, etc. This action of creating Personality profiles is called as Psychographic
profiling. Behavior modeling in general, a way of telling other persons to act in a manner based on
modelled data, which is further used for the analytics purpose.
This controversy has ruled out the basic belief of data security on bigger organizations. Facebook and
other organizations are now more serious towards data privacy and holding accountability for all the
data they are storing and sharing. This should be learning curve for organizations who neglect cyber security. Now, it is a matter of time that will tell the world whether new privacy rules are sufficient for data protection or not.
Reluctance to comply with data protection standards
Facebook CEO Mark Zuckerberg announces that his business will apply EU‘s GDPR to Ireland
representation only. That means the entire world will benefit from high EU Privacy protection except for
Canada and the U.S. The world is quite mystified over how Facebook is going to reliably distinguish
among EU and non-EU users, to build separate tiers of GDPR-compliance.
Facebook’s additional incoming changes to its terms of service would be about “Transparency”, a key
principle of GDPR, which asks data controllers to clearly explain to their users what personal data they
intend to collect and for what exact purpose.