When one company acquires another, there’s usually a lot of discussion about how to harmonize divergent procedures – everything from personnel policies to buying paper clips. But a letter to executives at Facebook and WhatsApp from Jessica Rich, Director of the FTC’s Bureau of Consumer Protection, should remind businesses there's one thing that doesn’t change: privacy promises made to customers.
The letter focuses on Facebook’s proposed acquisition of WhatsApp, a company that offers an instant messaging service to hundreds of millions of users worldwide. The staff’s concern: WhatsApp has made certain promises about limits on what it collects, maintains, and shares – protections that go beyond those currently made to Facebook users. The letter makes it clear that regardless of the proposed acquisition, consumers have a right to rely on those promises remaining in full effect. If the acquisition is completed and the promises aren’t kept, both companies could be in violation of Section 5 of the FTC Act – and, potentially, the FTC’s order against Facebook.
This shouldn’t come as news to FTC watchers: “The FTC has made clear that, absent affirmative express consent by a consumer, a company cannot use data in a manner that is materially inconsistent with promises made at the time the data was collected, and that such use of data could be an unfair practice under Section 5.”
You’ll want to read the letter for the specifics. It offers a detailed analysis of what WhatsApp promises, what both companies have said since then, and how a failure to honor those pledges could possibly result in law enforcement. And it underscores the FTC’s commitment to consumers: “Hundreds of millions of users have entrusted their personal information to WhatsApp. The FTC staff will continue to monitor the companies’ practices to ensure that Facebook and WhatsApp honor the promises they have made to those users.”
The purpose of this blog and its comments section is to inform readers about Federal Trade Commission activity, and share information to help them avoid, report, and recover from fraud, scams, and bad business practices. Your thoughts, ideas, and concerns are welcome, and we encourage comments. But keep in mind, this is a moderated blog. We review all comments before they are posted, and we won’t post comments that don’t comply with our commenting policy. We expect commenters to treat each other and the blog writers with respect.
- We won’t post off-topic comments, repeated identical comments, or comments that include sales pitches or promotions.
- We won’t post comments that include vulgar messages, personal attacks by name, or offensive terms that target specific people or groups.
- We won’t post threats, defamatory statements, or suggestions or encouragement of illegal activity.
- We won’t post comments that include personal information, like Social Security numbers, account numbers, home addresses, and email addresses. To file a detailed report about a scam, go to ReportFraud.ftc.gov.
We don't edit comments to remove objectionable content, so please ensure that your comment contains none of the above. The comments posted on this blog become part of the public domain. To protect your privacy and the privacy of other people, please do not include personal information. Opinions in comments that appear in this blog belong to the individuals who expressed them. They do not belong to or represent views of the Federal Trade Commission.