Facebook will not notify the 533 million users whose personal data were obtained through the misuse of a feature prior to 2019, which was made public in a database recently. The scraped information originally reported on Saturday did not include financial information, health information or passwords, and may predate the GDPR, according to Irish Legal News. In a blog post, Facebook said that "malicious actors" had obtained the data by "scraping" profiles using a vulnerability in the platform's tool for syncing contacts.
Politico reveals the breach has exposed EU officials' personal information, including European Commissioner for Justice Didier Reynders, Federal Commissioner for Data Protection and Freedom of Information Ulrich Kelber, and Luxembourg Prime Minister Xavier Bettel.
Data Protection Authorities in France, Italy, Hong Kong, and Russia are demanding Facebook to come forward with details regarding the breach and reassess its data security measures.
UPDATE: 080421 - Politico reports that data security professionals are questioning Facebook's claim that the data compromised in the breach was public user profile information.
What is this page?
You are reading a summary article on the Privacy Newsfeed, a free resource for DPOs and other professionals with privacy or data protection responsibilities helping them stay informed of industry news all in one place. The information here is a brief snippet relating to a single piece of original content or several articles about a common topic or thread. The main contributor is listed in the top left-hand corner, just beneath the article title.
The Privacy Newsfeed monitors over 300 global publications, of which more than 5,750 summary articles have been posted to the online archive dating back to the beginning of 2020. A weekly roundup is available by email every Friday.
