Mark Zuckerberg on Data Portability: An Interview
Facebook founder Mark Zuckerberg is at SXSW doing press interviews today and many people want to know what his thoughts are concerning data portability. There's a big web out there that would like to give and take user data in and out of Facebook. We focused on data portability in our conversation with Zuckerberg and got a fairly clear picture of his views on the subject.
Zuckerberg told me today that he believes data portability is an important direction the web is moving in, that fundamental openness between sites is inevitable - but that Facebook is focusing on questions of privacy and user control as its contribution to that movement. That may be a fair, if frustrating, position for Facebook to take. It may also leave them on the sidelines of larger conversations.
Privacy Controls as the Key to Data Portability
Granular control over degrees of openness are vital to making openness viable, Zuckerberg told me today. He said people have been trained to believe that there is a binary set of options concerning privacy and sharing of data: that some things are sharable and others are not.
"Take a photo album from a party," he said. "Unless you have specific tools to limit who can see it, then you won't share it with anyone." If users have granular control over who is able to access shared data, Zuckerberg argued, then whole classes of information previously considered unsharable could be opened up. Those tools, he said, need to be simple enough for non-power users to use them easily.
When that information is opened, though, which parts of it are sharable and which aren't?
"If you export your friends list, does their contact information come with that? What if they change their privacy settings later? Right now if you take an action that gets published to your friends' news feeds, but then if you change your privacy settings later to be more restrictive - then those events disappear from the news feeds. If that data is published off-site, then there's no longer any control over the data for users."
Hopefully these aren't deal breakers on openness. Privacy controls are integral to the core of Facebook, Zuckerberg pointed out. "That's the vector around which Facebook operates." In order for data portability to become a reality within the privacy-centric context of Facebook, he said, there need to be good answers to questions like these. Zuckerberg says Facebook is actively working on answering those questions.
On Beacon
The company has been pushing the limits of privacy for some time now, though. The introduction of both the now-loved newsfeed and the still-controversial Beacon caused huge privacy debates.
On Beacon, Zuckerberg said: "There were sites that people wanted to share from, like Yelp, where you're already making public comment. For shopping, maybe in a couple of years people will want to share that." He said that it "was probably a mistake" to roll out Beacon in the context of user commercial activity. He emphasizes that Beacon is a part of the Facebook Platform more than it is an advertising effort.
In his keynote interview here yesterday, though, Zuckerberg argued that exposed shopping activity was the future of advertising, that such personal endorsements of products from trusted friends was the ultimate in advertising. If Beacon's developers didn't see advertising at the center of their vision, no one told the marketing department that prior to the program's launch.
To be fair, Beacon does have a lot of potential for sharing a variety of types of activity on Facebook. It's an efficient and innovative way to capture what are essentially authenticated feeds of user activities on 3rd party sites. At least a handful of non-commerce companies like SixApart and Joost participated in the launch of Beacon. It's much smarter than it would be to ask users to login to those sites from Facebook, for example. The whole mess could move towards a solution if Facebook used its largess to advance standards-based authentication protocols, but that's not what's happening.
Zuckerberg's assertion that people may be more excited about exposing their shopping activities in a few years may be correct, but it might also be the delusion of a man trying to monetize the tricky market of social networking.
If Facebook could keep its pants on and make tangible progress on trustworthy sharing of non-commercial activities from elsewhere back onto Facebook - then maybe there would be sufficient trust built with users to expose commercial activity in the future.
"We Threw an API and Nobody Came"
At the current time, Zuckerberg says he's not clear how much actual demand there is for the whole-hog of data portability. Six months before the launch of the Developer Platform, he says, the company opened up a series of APIs that anyone could use to access user profile information.
He expected the reaction to those APIs to be huge and it wasn't. Today there are just more than 1,000 sites leveraging those APIs, he said, but there are more than 300,000 developers who have built apps on the Developer Platform.
I asked Zuckerberg if he was taken to the edge of a cliff and had to implement either OpenID, oAuth or APML immediately - which would he chose? He said he enjoyed the question, that OpenID was the one of the three protocols that had been most discussed internally, but that the bulk of actual developer demand seems to him to be focused on the Facebook Platform.
Evolving the Facebook Platform
That Platform will increasingly move off-site, Zuckerberg said, to other websites, mobile applications and elsewhere. That doesn't sound nearly as nice as expanding the pool based on open standards would.
Instead, Facebook is focused right now on changing the incentive structure for application developers on its Platform, Zuckerberg said. "Developers aren't fundamentally spammy," he told me, "they want to add value around what they are enabled to do. So far they've been incentivized to get as many users as possible." He said the company is trying to shift the incentive structure to reward truly useful, trustworthy apps. Today they are using that kind of metric to set an app's number of invitations it can send and in the near future they will use the same metric to meter newsfeed notifications. Presumably that will include newsfeed notifications from off-site activity, via Beacon and off-site applications.
Data portability advocates might take heart in the fact that Zuckerberg wants to clean up the Facebook ecosystem of Zombie-throwing crap. The percentage of data worth making portable on Facebook is far from ideal today. Zuckerberg himself likes games best, too, though. I asked him what some of his favorite apps were and he said he plays Scrabulous with his grandparents. I don't know if that's a far cry from the heady Platform launch days when Facebook was going to "become an operating system" or not.
A Big, Ambivalent Picture
Facebook has sent a representative from the highest levels of the company to join the Data Portability Working Group, but on balance Zuckerberg seems content for now to focus on getting his own house in order before moving towards general interoperability.
That may be frustrating, but the problems Facebook is tackling are important ones. Data portability will not be viable anywhere until there are simple, granular and effective controls over user data and privacy. Facebook is in a good place to focus on solving those problems. Could they do that work with the existing community of other companies and developers based in open standards? Yes, they could.
Their previous innovations (newsfeed, for example) have spread far and wide as inspiration, though, without that kind of collaboration. Perhaps the best that data portability advocates can hope for now is that Facebook will solve big, common problems in interesting ways that others can emulate. It's a big missed opportunity for all parties involved, though, that they aren't doing that work with other companies and organizations. Arguably, Google and Microsoft are doing that right now.
Facebook may have felt like the only game in town when the Platform launched, but things change fast and between the much broader OpenSocial and a fast expanding community of standards based developers - Facebook might soon find that it's sitting on the sidelines while everyone else works together to solve these common problems.
"We are philosophically aligned [with the data portability movement]," Zuckerberg said. "We are pushing in our own way to make the world a more open place. It's going to be good when it happens."
We'll see.
FOLLOW RWW ON TWITTER
RECENT JOBS
Comments
Subscribe to comments for this post OR Subscribe to comments for all ReadWriteWeb posts
Conflating privacy with data portability and putting them at opposing ends of the spectrum is not a real dichotomy.
There are a number of simple, secure steps that can be taken to make things more open today.
For example, if the mini-feed can import RSS feeds (or will soon) then why can't there be an RSS feed out?
Chris
Posted by: Chris Saad | March 10, 2008 2:30 PM
Chris, I take it you didn't care for the interview then. I think the point is that Zuckerberg thinks there can't be a feed out because that would separate the newsfeed from all the privacy, permissions and user control central to the Facebook experience. That makes sense to me as a problem that needs to be solved.
Posted by: Marshall Kirkpatrick
|
March 10, 2008 2:39 PM
Great insights and questions here Marshall.
"Data portability advocates might take heart in the fact that Zuckerberg wants to clean up the Facebook ecosystem of Zombie-throwing crap."
They are already doing this rather quickly with the sliding scale invites that an app can send daily. This goes toward his concept of "trust" that he discussed yesterday.
"OpenSocial and a fast expanding community of standards based developers - Facebook might soon find that it's sitting on the sidelines while everyone else works together to solve these common problems".
Facebook really needs to step up to the plate in my opinion and get in the game with opensocial. They stand the real risk of losing developers if they don't do this. It is just a lot of extra coding to build for facebook only.
They need to work on data portability for sure.
Cheers!
Rodney Rumford
Posted by: Rodney Rumford | March 10, 2008 3:47 PM
On the contrary Marshall - loved the writeup :)
Posted by: Chris Saad | March 10, 2008 4:25 PM
Marshall/Chris,
The privacy concern listed here doesn't seem like a big issue. Every user understands time based sequence. They know that if certain actions were published in the feed in the past, they wont happen again once the settings are changed.
That however does not mean that a big rollback occurs to change all past actions. This applies to all other interaction models on the web. Take email for example. If I choose to change my alias after 1 year of usage, that does not mean that all past emails will reflect the change. Users understand this concept already.
Secondly any access to data should be based on permissions from users. As applications can gain access to user's information within Facebook ecosystem with user's permission, external apps should be able to do the same.
Posted by: Abhishek | March 10, 2008 5:08 PM
This is a pretty good commentary on zuck & fb too:
http://abclocal.go.com/wpvi/story?section=news/business&id=6005406
Posted by: Fewie | March 10, 2008 8:34 PM
Marshall, the social standards of privacy with data portability has been set for decades now by email use.
If you send me an email, then I have the ability to port out of my account both your email address and the contents of the message.
I should have that same ability with my content and relationships in Facebook.
Or, here's a simple solution - allow me to set my content as "non-portable", which will allow my friends to see it on Facebook but not be able to port it out wholesale.
Problem solved!
Now, Mr. Zuckerberg, let me have my data back! It's mine, not yours!
Posted by: Hashim Warren | March 10, 2008 10:40 PM
As Chris points out, it is a false dichotomy. Privacy and data portability are not mutually exclusive, and can easily be achieved. The issue is bigger than privacy, it is about ownership. That is, a user can only really have granular control to make some data private and some public (i.e., privacy) if the user has ownership over that data. Does a picture of me that a Facebook Friend posts on Facebook "belong" to me? Can I export it? I can copy/paste the picture and save it to my hard drive, but is it mine? Same with email addresses of Facebook Friends ('cept obviously their rendered as images now:)).
Chris, would like to see data portability address some of this.
Posted by: christopher | March 10, 2008 10:40 PM
Is it just me or is Zuckerberg deliberately evading the question and hiding behind his big shield of privacy. It's almost as if a PR person is telling him what to say!
The fact is that people should be given a choice about whether their data and social graph is exported, who it is given to, and the rules under which this can be utilised. As long as these factors are clear, there is no reason for anyone not to allow it to happen.
Beacon turned into a disaster purely because Facebook believed "they" owned our social data and could do what they like with it, including making money.
Posted by: Philip Wilkinson | March 11, 2008 2:49 AM
Frustrating to whom? Not to customers. Not to the broad user base of Facebook, quite a few of whom rebelled at the Beacon episode or for that matter, criticized the Scoble Scrape.
I'm so glad, despite your own obvious enthusiasm for data portability, that you could report the real news here:
"At the current time, Zuckerberg says he's not clear how much actual demand there is for the whole-hog of data portability. Six months before the launch of the Developer Platform, he says, the company opened up a series of APIs that anyone could use to access user profile information.
He expected the reaction to those APIs to be huge and it wasn't. Today there are just more than 1,000 sites leveraging those APIs, he said, but there are more than 300,000 developers who have built apps on the Developer Platform."
Exactly. People want social media for...socializing that is under their control, not to become scraped data for advertisers unless they can granulate their consent.
Posted by: Prokofy Neva | March 11, 2008 5:44 AM
privacy issues are in the details. Zuckerberg's argument is logical, but he is just giving out soundbites. Question is what are the details of the issue, and is he committed to sharing facebook data that his company previously believed they owned... (and wrongfully punished people like me who had information that I used in the invite). We all don't want spam, question is he committed to using privacy as a way to monopolize power or does he sincerely believe in the value added benefit of the average man contacting who we want to and giving the end user the RIGHT to block. I have been to New York night clubs with more social liberties then my experience on facebook and it's social thugs.
Posted by: Noah David Simon | March 11, 2008 6:24 AM
Interesting interview Marshall, it tells me Zucker's is genuinely thinking about DataPortability rather than just playing the PR game.
I wouldn't expect him to have answers, because we are still trying to work it out ourselves (hence our research and investigation phase right now)
Thank you.
Posted by: Elias Bizannes | March 12, 2008 4:50 AM