Privacy group files FTC complaint over Facebook's 'emotional contagion' study

EPIC contends that Facebook 'purposefully messed with people's minds' when it manipulated their news feeds to measure emotional responses

Facebook "purposefully messed with people's minds" in a "secretive and non-consensual" study on nearly 700,000 users whose emotions were intentionally manipulated when the company altered their news feeds for research purposes, a digital privacy rights group charges in a complaint filed with the U.S. Federal Trade Commission.

The Electronic Privacy Information Center filed the complaint Thursday, asking the FTC to impose sanctions on Facebook. The study violated terms of a 20-year consent decree that requires the social-networking company must protect its users' privacy, EPIC said. EPIC also wants Facebook to be forced to disclose the algorithms it uses to determine what appears in users' news feeds.

The complaint follows days of mounting outrage from privacy-rights advocates and Facebook users -- some of whom are quoted in the EPIC complaint -- after results of the study, published June 2 by the Proceedings of the National Academy of Sciences, became widely known. Researchers from Facebook, the University of California, San Francisco and Cornell University conducted the study from Jan. 11 to Jan. 18, 2012, on 689,003 English-speaking Facebook users. The study was, however, for Facebook's internal purposes.

The research sought to show whether emotions can be influenced with no face-to-face contact by altering Facebook's algorithm to show mostly positive or negative posts. Scientists call that "emotional contagion." The study found that people whose news feeds contained more positive comments tended to make more positive comments and those who took in more negative posts were more bummed out in their own posts.

When news of the study emerged, researchers and eventually Facebook COO Sheryl Sandberg said that the research wasn't explained well by the company, though the apologies struck many as well short of an actual mea culpa.

PNAS editor-in-chief Inder M. Verma published an "editorial expression of concern" on Wednesday regarding the study, saying that researchers contend it was consistent with Facebook's data use policy so that when users sign up, they are giving "informed consent" that their data might be used in research. Because the research was conducted internally by Facebook, it did not fall under the auspices of Cornell's Human Research Protection Program, the statement says.

The statement further notes that as a private company Facebook is under no obligation to follow what is known as the "common rule" among researchers, to obtain informed consent from study participants and allow them to opt out if they don't want to be part of research.

"Based on the information provided by the authors, PNAS editors deemed it appropriate to publish the paper," Verma wrote. "It is nevertheless a matter of concern that the collection of the data by Facebook may have involved practices that were not fully consistent with the principles of obtaining informed consent and allowing participants to opt out."

Apart from the privacy implications and questionable ethics of social-media experimentation on users who had no idea they were part of a study, Facebook also altered its data use policy in May 2012, four months after the study was conducted. The policy change specifically said that user data might be used for research and could be shared with researchers, a major point of contention in the EPIC complaint.

Regulators in the U.K. and Ireland are also investigating the study.

Facebook issued a statement via email when asked for comment about EPIC's complaint with the FTC, saying that the company isn't commenting about the complaint specifically.

When someone signs up for Facebook, weve always asked permission to use their information to provide and enhance the services we offer," the company also said via email. "To suggest we conducted any corporate research without permission is complete fiction. Companies that want to improve their services use the information their customers provide, whether their privacy policy uses the word research' or not.

Join the CSO newsletter!

Error: Please check your email address.

Tags Internet-based applications and servicessecuritylegalsocial networkingElectronic Privacy Information CenterinternetprivacyFacebook

More about Electronic Privacy Information CenterFacebookFederal Trade CommissionFTC

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Nancy Weil

Latest Videos

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

  • 150x50

    IDG Live Webinar:The right collaboration strategy will help your business take flight

    Speakers - Mike Harris, Engineering Services Manager, Jetstar - Christopher Johnson, IT Director APAC, 20th Century Fox - Brent Maxwell, Director of Information Systems, THE ICONIC - IDG MC/Moderator Anthony Caruana

    Play Video

More videos

Blog Posts