|Agency:||Federal Trade Commission|
|Rule:||Proposed Consent Agreement: In the Matter of TWITTER, INC., a corporation; FTC File No. 092 3093|
Comments:Twitter should have acted more responsibly to ensure the security and privacy of its users data, particularly nonpublic data that could be used to access a Twitter account. Carelessness with such data could enable unauthorized people to view messages sent through Twitter accounts that the account holders designated as "private". Twitter should have been more careful about access to administrative logons at its site. It should not enable unauthorized people who were not Twitter administrators to have access to the site. This could be used to tamper with the accounts of Twitter users, such as by resetting passwords or attaining unauthorized access to non-public information of Twitter account users. Twitter has given the impression of providing privacy to Twitter Account users by enabling privacy settings. Twitter should allow its users to control the privacy settings on their accounts. However, there have been problems with the Administrator settings of the Twitter web site and this has jeopardized not only the privacy, but the very security, of Twitter account users data. Twitter should have been more responsible about controlling the administrative sections of its site. Twitter should be held to more responsibility in the future.