this post was submitted on 26 May 2022
17 points (100.0% liked)

Technology

34842 readers
22 users here now

This is the official technology community of Lemmy.ml for all news related to creation and use of technology, and to facilitate civil, meaningful discussion around it.

Ask in DM before posting product reviews or ads. All such posts otherwise are subject to removal.

Rules:

1: All Lemmy rules apply

2: Do not post low effort posts

3: NEVER post naziped*gore stuff

4: Always post article URLs or their archived version URLs as sources, NOT screenshots. Help the blind users.

5: personal rants of Big Tech CEOs like Elon Musk are unwelcome (does not include posts about their companies affecting wide range of people)

6: no advertisement posts unless verified as legitimate and non-exploitative/non-consumerist

7: crypto related posts, unless essential, are disallowed

founded 5 years ago
MODERATORS
MinutePhrase@lemmy.ml
17
FTC Orders Twitter to Pay $150 Million Penalty for Profiting from Deceptively Collected Data (www.ftc.gov)
submitted 2 years ago* (last edited 2 years ago) by hamborgr@feddit.de to c/technology@lemmy.ml
3 comments fedilink hide all child comments
 

The Federal Trade Commission is taking action against Twitter, Inc. for deceptively using account security data for targeted advertising. Twitter asked users to give their phone numbers and email addresses to protect their accounts. The firm then profited by allowing advertisers to use this data to target specific users. Twitter’s deception violates a 2011 FTC order that explicitly prohibited the company from misrepresenting its privacy and security practices. Under the proposed order, Twitter must pay a $150 million penalty and is banned from profiting from its deceptively collected data.

“As the complaint notes, Twitter obtained data from users on the pretext of harnessing it for security purposes but then ended up also using the data to target users with ads," said FTC Chair Lina M. Khan. "This practice affected more than 140 million Twitter users, while boosting Twitter’s primary source of revenue.”

In addition to the $150 million penalty, other provisions of the proposed order would:

  • prohibit Twitter from profiting from deceptively collected data;
  • allow users to use other multi-factor authentication methods such as mobile authentication apps or security keys that do not require users to provide their telephone numbers;
  • notify users that it misused phone numbers and email addresses collected for account security to also target ads to them and provide information about Twitter’s privacy and security controls;
  • implement and maintain a comprehensive privacy and information security program that requires the company, among other things, to examine and address the potential privacy and security risks of new products;
  • limit employee access to users’ personal data; and
  • notify the FTC if the company experiences a data breach.
top 3 comments
sorted by: hot top controversial new old
[–] krolden@lemmy.ml 4 points 2 years ago (1 children)

Is that a lot?

[–] hamborgr@feddit.de 4 points 2 years ago

Relative to other fines? Not really.

A lot of fines I've seen against such companies for violating privacy regulations were usually about 50 - 250 Million EUR/USD (Most of them being from the EU). The only exception being Facebook getting fined for 5 billion USD by the FTC in 2019 for the Cambridge Analytica scandal.

Relative to their annual revenue? No.

From what I can tell, Twitter apparently had a revenue of about 5 billion USD in 2021. So if my math is correct then this fine is only about 3% of their annual revenue from last year.

[–] MichaelMcDonnell@lemmy.ml 3 points 2 years ago

So which executive ordered this at Twitter? And who's going to jail?