May 8, 2018
Today, Facebook launched the Data Abuse Bounty to reward people who report any misuse of data by app developers.
Facebook committed to launching this program a few weeks ago as part of its efforts to quickly uncover potential abuse of people’s information. The Data Abuse Bounty, inspired by the existing bug bounty program which Facebook uses to uncover and address security issues, will help the company identify violations of its policies.
According to Collin Greene, Head of Product Security, Facebook, “We’ll review all legitimate reports and respond as quickly as possible when we identify a credible threat to people’s information. If we confirm data abuse, we will shut down the offending app and take legal action against the company selling or buying the data, if necessary. We’ll pay the person who reported the issue, and we’ll also alert those we believe to be affected.”
This program will reward people with first-hand knowledge and proof of cases where a Facebook platform app collects and transfers people’s data to another party to be sold, stolen or used for scams or political influence. Just like the bug bounty program, Facebook will reward based on the impact of each report. While there is no maximum, high impact bug reports have garnered as much as $40,000 for people who bring them to Facebook’s attention.
Data Abuse Bounty is the first of its kind so it will change as Facebook learns and gets your feedback. For more information, please visit: facebook.com/data-abuse.