Facebook and GDPM Addendum

photo of green data matrix
Photo by Markus Spiske temporausch.com on Pexels.com

I’m sure many authors, and indeed any “page” owners, have recently received an email from Facebook saying that they are updating their Page Insights Addendum. 

I was going to ignore it, but a friend of mine made me sit up and think when he said he would be closing down his FB presence as a result.

Time to investigate.

Click here for FB update on Page Insights Addendum

The addendum says FB, with no apparent way of stopping this happening short of shutting down your page, will be making each page admin a joint data controller, responsible under GDPR for the data processed on their page.

Now, the page admin has no access to individual personal data, and I quote from the update:

Page admins do not have access to the personal data processed as part of events but only to the aggregated Page Insights. Events used to create Page Insights do not store IP addresses, cookie IDs or any other identifiers associated with people or their devices aside from a FB user ID for people logged in to Facebook.

So, as an admin, I have access to zero personal data. Yet, I’m going to be made legally responsible and have to jump through a whole host of hoops just to keep talking to people… Because, the addendum goes on to state:

Where an interaction of people with your Page and the content associated with it triggers the creation of an event for Page Insights which includes personal data for whose processing you (and/or any third party for whom you are creating or administering the Page) determine the means and purposes of the processing jointly with Facebook Ireland Limited, you acknowledge and agree on your own behalf (and as agent for and on behalf of any such other third party) that this Page Insights Controller Addendum (“Page Insights Addendum”) applies…

Now, I’m not even sure what such a triggering-event could be! There then follows a lot of pretty confusing legalise, but the important bit to me is where it identifies the page admin’s role / responsibilities:

Page admins: You should ensure that you also have a legal basis for the processing of Insights Data. In addition to the information provided to data subjects by Facebook Ireland via the Information about Page Insights, you should identify your own legal basis including the legitimate interests you pursue, if applicable, the responsible data controller(s) on your side including their contact details as well as the contact details of the data protection officer(s) (Article 13(1)(a-d) GDPR), if any.

My reading of this is that every fan page / author page or indeed any page at all now needs a data protection policy, a data officer and a complaints / information response process for data subjects. That’s pretty onerous for most one-person bands!

Now, I’m not a lawyer and wouldn’t profess to know the answer. In a previous life, I would have had the budget to get this lengthy (and seemingly onerous) amendment interpreted. But, as a struggling author, I don’t have the resources to do this, or to manage it.

My question is, what are the options? I don’t seem to be able to turn off insights and so avoid the issue.

Does this mean the death of thousands, maybe millions of pages – or that authors and other page owners will simply run the risk of being prosecuted / sued?

 

Does anyone have any insight on this? Answers on a postcard, please…

Posted on

One thought on “Facebook and GDPM Addendum

  1. I did notice our friend close down his page and it paniced me a bit. I haven’t received this email but I will ask my hosting provider, lyrical host.. they may have answers. So many of us rely on our Facebook pages. Mine like others has followers who follow my blog who are not on word press, I agree it is worrying news. On word press there is a cookie and privacy document we can install for gdpr.. face book seems more confusing.

    Like

    Reply

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s