<html><head></head><body dir="auto" lang="en-US" style="background-color: rgb(255, 255, 255); line-height: initial;"> <div style="width: 100%; font-size: initial; font-family: Calibri, 'Slate Pro', sans-serif, sans-serif; color: rgb(31, 73, 125); text-align: initial; background-color: rgb(255, 255, 255);">Hey Ebele,</div><div style="width: 100%; font-size: initial; font-family: Calibri, 'Slate Pro', sans-serif, sans-serif; color: rgb(31, 73, 125); text-align: initial; background-color: rgb(255, 255, 255);"><br></div><div style="width: 100%; font-size: initial; font-family: Calibri, 'Slate Pro', sans-serif, sans-serif; color: rgb(31, 73, 125); text-align: initial; background-color: rgb(255, 255, 255);">That sounds like another "sneaky" case of getting caught with hands in the cookie jar. How long did this go on before you could flag it up..? Did it have to await feedback from a third party for Fb to realize this, or are there internal controls and checks to monitor what each of the API's are feeding into or collecting from the huge amount of data available..?</div><div style="width: 100%; font-size: initial; font-family: Calibri, 'Slate Pro', sans-serif, sans-serif; color: rgb(31, 73, 125); text-align: initial; background-color: rgb(255, 255, 255);"><br></div><div style="width: 100%; font-size: initial; font-family: Calibri, 'Slate Pro', sans-serif, sans-serif; color: rgb(31, 73, 125); text-align: initial; background-color: rgb(255, 255, 255);">Some clarity would suffice..</div><div style="width: 100%; font-size: initial; font-family: Calibri, 'Slate Pro', sans-serif, sans-serif; color: rgb(31, 73, 125); text-align: initial; background-color: rgb(255, 255, 255);"><br></div><div style="width: 100%; font-size: initial; font-family: Calibri, 'Slate Pro', sans-serif, sans-serif; color: rgb(31, 73, 125); text-align: initial; background-color: rgb(255, 255, 255);">Regards,</div><div style="width: 100%; font-size: initial; font-family: Calibri, 'Slate Pro', sans-serif, sans-serif; color: rgb(31, 73, 125); text-align: initial; background-color: rgb(255, 255, 255);">Harry</div> <div style="width: 100%; font-size: initial; font-family: Calibri, 'Slate Pro', sans-serif, sans-serif; color: rgb(31, 73, 125); text-align: initial; background-color: rgb(255, 255, 255);"><br></div> <div style="font-size: initial; font-family: Calibri, 'Slate Pro', sans-serif, sans-serif; color: rgb(31, 73, 125); text-align: initial; background-color: rgb(255, 255, 255);">Sent from my BlackBerry 10 smartphone </div> <table width="100%" style="background-color:white;border-spacing:0px;"> <tbody><tr><td colspan="2" style="font-size: initial; text-align: initial; background-color: rgb(255, 255, 255);"> <div style="border-style: solid none none; border-top-color: rgb(181, 196, 223); border-top-width: 1pt; padding: 3pt 0in 0in; font-family: Tahoma, 'BB Alpha Sans', 'Slate Pro'; font-size: 10pt;"> <div><b>From: </b>Ebele Okobi via kictanet</div><div><b>Sent: </b>Wednesday, October 12, 2016 20:57</div><div><b>To: </b>Harry Delano</div><div><b>Reply To: </b>KICTAnet ICT Policy Discussions</div><div><b>Cc: </b>Ebele Okobi</div><div><b>Subject: </b>Re: [kictanet] Facebook, Twitter and Instagram Share Data with Location-based Social Media Surveillance Startup</div></div></td></tr></tbody></table><div style="border-style: solid none none; border-top-color: rgb(186, 188, 209); border-top-width: 1pt; font-size: initial; text-align: initial; background-color: rgb(255, 255, 255);"></div><br><div id="_originalContent" style="">
<meta http-equiv="Content-Type" content="text/html; charset=us-ascii">
<div>Yes-this is a mess, and this article isn't an accurate report. Basically-this was a private company that set itself up as a developer-same as, say, Candy Crush makers or those quiz things about your friends on FB. As a developer, it got access to API (see
here <a href="http://readwrite.com/2013/09/19/api-defined/">http://readwrite.com/2013/09/19/api-defined/</a> for definition) that allowed it to build programs into FB. This allowed it to write programs targeting publicly available information on FB platform.
That means-no private chats, no private groups, no data that users haven't made publicly available. The point of APIs in this context is SUPPOSED to be so advertisers (from small business to nonprofits to Andela, etc.) can send ads to targeted users. This
group completely violated our policies and used their API access to target publicly available info to send to police. FB has kicked them off our platform. As you can imagine, there are many conversations now about this. But key to know that FB did NOT and
does not sell user data; that this was a completely unauthorized use of our developer platform, that we rectified this as soon as we were notified, that the access was not to user data, but essentially a program that allowed them to target public info on
Facebook. It's still unacceptable, and something we are taking extremely seriously.</div>
<div id="AppleMailSignature"><br>
<span style="background-color: rgba(255, 255, 255, 0); font-size: 13pt;">Ebele Okobi </span><span style="background-color: rgba(255, 255, 255, 0); font-size: 13pt;">| Public Policy Director, Africa</span><br>
<div>
<div>
<p class="MsoNormal" style="margin: 0cm 0cm 0.0001pt;"><span style="background-color: rgba(255, 255, 255, 0);">m. <a href="tel:+44%20(0)%20771%20156%201315" x-apple-data-detectors="true" x-apple-data-detectors-type="telephone" x-apple-data-detectors-result="0/0">+44
(0) 771 156 1315</a></span></p>
<p class="MsoNormal" style="margin: 0cm 0cm 0.0001pt;"><span style="background-color: rgba(255, 255, 255, 0);"><o:p></o:p></span></p>
<p class="MsoNormal" style="margin: 0cm 0cm 0.0001pt;"><font color="#000000"><span style="background-color: rgba(255, 255, 255, 0);"><a href="x-apple-data-detectors://0/1" x-apple-data-detectors="true" x-apple-data-detectors-type="address" x-apple-data-detectors-result="0/1">10
Brock Street | London</a> | NW1 3FG<o:p></o:p></span></font></p>
<p class="MsoNormal" style="margin: 0cm 0cm 0.0001pt;"><a href="mailto:ebeleokobi@fb.com" x-apple-data-detectors="true" x-apple-data-detectors-type="link" x-apple-data-detectors-result="0/2" style="background-color: rgba(255, 255, 255, 0);"><font color="#000000">ebeleokobi@fb.com</font></a></p>
<div><span style="background-color: rgba(255, 255, 255, 0);"><br>
</span></div>
</div>
<span style="background-color: rgba(255, 255, 255, 0);"><img src="cid:6F376569-CC77-422B-BAD3-794055B1E02B" alt="6F376569-CC77-422B-BAD3-794055B1E02B" height="43"></span></div>
</div>
<div><br>
On Oct 12, 2016, at 5:43 PM, Ahmed Mohamed Maawy via kictanet <<a href="mailto:kictanet@lists.kictanet.or.ke">kictanet@lists.kictanet.or.ke</a>> wrote:<br>
<br>
</div>
<blockquote type="cite">
<div>
<div dir="ltr">
<div><i>The ACLU of California has obtained records showing that Twitter, Facebook, and Instagram provided user data access to Geofeedia, a developer of a social media monitoring product that we have seen marketed to law enforcement as a tool to monitor activists
and protesters. We are pleased that after we reported our findings to the companies, Instagram cut off Geofeedia’s access to public user posts, and Facebook has cut its access to a topic-based feed of public user posts.</i><br>
<br>
</div>
More here: <a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__www.aclu.org_blog_free-2Dfuture_facebook-2Dinstagram-2Dand-2Dtwitter-2Dprovided-2Ddata-2Daccess-2Dsurveillance-2Dproduct-2Dmarketed&d=DQMFaQ&c=5VD0RTtNlTh3ycd41b3MUw&r=ArvepG4_wcNu_X9xi3nb_Xa9WsGLVfmK6mwPdVONOTE&m=GhVvdCFxDu4EVUb8ylng2LCvR_0IBt5-yhOx6fQy7Ss&s=G0SoSpLD_f-qRWCjjSMY5s9GRO2y2wlRmg_ch_J_Tms&e=">
https://www.aclu.org/blog/free-future/facebook-instagram-and-twitter-provided-data-access-surveillance-product-marketed</a>
<br clear="all">
<div><br>
-- <br>
<div class="gmail_signature">
<div dir="ltr">
<div>
<div dir="ltr">
<div>
<div dir="ltr">
<div>
<div dir="ltr">
<div>
<div dir="ltr">
<div>
<div dir="ltr">
<div>
<div dir="ltr">
<div>
<div dir="ltr">
<div>
<div dir="ltr">
<div>
<div dir="ltr"><b>Ahmed Maawy</b><br>
Executive Director - SwahiliBox / M-Power (CBO)<br>
Curator - Global Shapers Mombasa Hub<br>
Ambassador - Open Knowledge<br>
Director - Startup Grind Mombasa<br>
Software Developer - AJ+ / EveryLayer<br>
(KE) +254 714 960 627<br>
Skype: ultimateprogramer<br>
<br>
<a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__swahilibox.co.ke&d=DQMFaQ&c=5VD0RTtNlTh3ycd41b3MUw&r=ArvepG4_wcNu_X9xi3nb_Xa9WsGLVfmK6mwPdVONOTE&m=GhVvdCFxDu4EVUb8ylng2LCvR_0IBt5-yhOx6fQy7Ss&s=xgEGgQpfX4YAzWFb01qZ9xpVfsYmcj-Thzm7LwBnOdA&e=" target="_blank">swahilibox.co.ke</a><a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__globalshapers.org&d=DQMFaQ&c=5VD0RTtNlTh3ycd41b3MUw&r=ArvepG4_wcNu_X9xi3nb_Xa9WsGLVfmK6mwPdVONOTE&m=GhVvdCFxDu4EVUb8ylng2LCvR_0IBt5-yhOx6fQy7Ss&s=AD4YSyg9ZAPmuqMQ2KT8U-TWAx0oZRabNuXs4OBBXvs&e=" target="_blank"><br>
globalshapers.org</a><br>
<a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__okfn.org_&d=DQMFaQ&c=5VD0RTtNlTh3ycd41b3MUw&r=ArvepG4_wcNu_X9xi3nb_Xa9WsGLVfmK6mwPdVONOTE&m=GhVvdCFxDu4EVUb8ylng2LCvR_0IBt5-yhOx6fQy7Ss&s=0mJDrKTlVZmhtNIV_NCX7sDVspc8EvEbJ0yDBisHU8Y&e=" target="_blank">www.okfn.org</a><br>
<a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__startupgrind.com&d=DQMFaQ&c=5VD0RTtNlTh3ycd41b3MUw&r=ArvepG4_wcNu_X9xi3nb_Xa9WsGLVfmK6mwPdVONOTE&m=GhVvdCFxDu4EVUb8ylng2LCvR_0IBt5-yhOx6fQy7Ss&s=EBa6-yJCvfxdk_mFmI6H-ZXzXOb0rr17M0mEJpTofqs&e=" target="_blank"><span>startupgrind.com</span></a><br>
<a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__ajplus.net&d=DQMFaQ&c=5VD0RTtNlTh3ycd41b3MUw&r=ArvepG4_wcNu_X9xi3nb_Xa9WsGLVfmK6mwPdVONOTE&m=GhVvdCFxDu4EVUb8ylng2LCvR_0IBt5-yhOx6fQy7Ss&s=YWO9IHDsdCDx7uytBzeJF-NTjZhVZjk-dOXuBLS9j6w&e=" target="_blank">ajplus.net</a><br>
<a href="https://urldefense.proofpoint.com/v2/url?u=http-3A__www.everylayer.com_&d=DQMFaQ&c=5VD0RTtNlTh3ycd41b3MUw&r=ArvepG4_wcNu_X9xi3nb_Xa9WsGLVfmK6mwPdVONOTE&m=GhVvdCFxDu4EVUb8ylng2LCvR_0IBt5-yhOx6fQy7Ss&s=lNcgAS0-227nMM6fqAu163-v-PyiO5D4CTywdQL_1P8&e=" target="_blank">www.everylayer.com</a><br>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</div>
</blockquote>
<blockquote type="cite">
<div><span>_______________________________________________</span><br>
<span>kictanet mailing list</span><br>
<span><a href="mailto:kictanet@lists.kictanet.or.ke">kictanet@lists.kictanet.or.ke</a></span><br>
<span><a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.kictanet.or.ke_mailman_listinfo_kictanet&d=DQICAg&c=5VD0RTtNlTh3ycd41b3MUw&r=ArvepG4_wcNu_X9xi3nb_Xa9WsGLVfmK6mwPdVONOTE&m=GhVvdCFxDu4EVUb8ylng2LCvR_0IBt5-yhOx6fQy7Ss&s=tY_FmWozK9wITxf0Wi2mSTnAJ3IESBY7WT33HlgqAYs&e=">https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.kictanet.or.ke_mailman_listinfo_kictanet&d=DQICAg&c=5VD0RTtNlTh3ycd41b3MUw&r=ArvepG4_wcNu_X9xi3nb_Xa9WsGLVfmK6mwPdVONOTE&m=GhVvdCFxDu4EVUb8ylng2LCvR_0IBt5-yhOx6fQy7Ss&s=tY_FmWozK9wITxf0Wi2mSTnAJ3IESBY7WT33HlgqAYs&e=</a>
</span><br>
<span></span><br>
<span>Unsubscribe or change your options at <a href="https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.kictanet.or.ke_mailman_options_kictanet_ebeleokobi-2540fb.com&d=DQICAg&c=5VD0RTtNlTh3ycd41b3MUw&r=ArvepG4_wcNu_X9xi3nb_Xa9WsGLVfmK6mwPdVONOTE&m=GhVvdCFxDu4EVUb8ylng2LCvR_0IBt5-yhOx6fQy7Ss&s=LAZLJsuQHbk66IPOo4JjXcmrto5E92ncpWcgmoqMezk&e=">
https://urldefense.proofpoint.com/v2/url?u=https-3A__lists.kictanet.or.ke_mailman_options_kictanet_ebeleokobi-2540fb.com&d=DQICAg&c=5VD0RTtNlTh3ycd41b3MUw&r=ArvepG4_wcNu_X9xi3nb_Xa9WsGLVfmK6mwPdVONOTE&m=GhVvdCFxDu4EVUb8ylng2LCvR_0IBt5-yhOx6fQy7Ss&s=LAZLJsuQHbk66IPOo4JjXcmrto5E92ncpWcgmoqMezk&e=</a>
</span><br>
<span></span><br>
<span>The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim
of ICT enabled growth and development.</span><br>
<span></span><br>
<span>KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares
or qualifications.</span></div>
</blockquote>
<br><!--end of _originalContent --></div></body></html>