Select your localized edition:

Close ×

More Ways to Connect

Discover one of our 28 local entrepreneurial communities »

Be the first to know as we launch in new countries and markets around the globe.

Interested in bringing MIT Technology Review to your local market?

MIT Technology ReviewMIT Technology Review - logo


Unsupported browser: Your browser does not meet modern web standards. See how it scores »

{ action.text }

Social-networking sites lead a double life. On one hand, they encourage users to share as much personal information as possible, making it easy to post photos, videos, notes, and links. But at the same time, these sites have to safeguard that information and limit how it is shared between users and beyond their own walls. Users are often dismayed when their information reaches unintended recipients, such as bosses, relatives, or other companies.

This situation encourages social networks to bury the privacy settings that they build, according to research that will be presented later this month at the Eighth Workshop on the Economics of Information Security, in London, U.K. Social networks are under pressure from privacy-rights groups and activists to build in ways for users to control their information, the researchers say, but it’s also in their interest to keep those settings off users’ minds.

“To the social network, your value increases the more data you share on the site,” says Joseph Bonneau, one of two University of Cambridge researchers who worked on the project. More user data means better targeted advertising, and more of a feeling of community, he says. “Their goal is to create a very free-flowing environment where everybody is constantly sharing everything and seeing all this data on other people,” he says. “The best way to achieve that is to not bring up the concept of privacy.”

To arrive at their conclusions, the researchers evaluated 45 social-networking sites from all over the world, looking at more than 200 criteria related to privacy policies and privacy controls. Although social-networking sites have often been criticized as a group for their privacy practices, the researchers say that they found a lot of variation in quality. Using criteria such as the amount of data collected during sign up, the default privacy settings, and whether information is routinely shared with third parties, the researchers judged Bebo, LinkedIn, and GaiaOnline to have the best privacy practices of all, and Badoo, CouchSurfing, and MyLife to have the weakest. Ironically, sites that made privacy a selling point tended to have lower-quality privacy controls. Facebook and MySpace ranked toward the middle, but the researchers note that these sites also offer users more features, making privacy harder to maintain.

In general, more popular social-networking sites did better with privacy, which the researchers put down to these sites having more resources to devote to the problem, as well as to being under more pressure to protect user data.

Bonneau believes that revealing the privacy practices of all sites could help put pressure on major sites to add further protections for users. For example, the researchers found one site, the business network Xing, that encrypts all interactions to protect personal information against eavesdroppers. This shows what kinds of features are possible, Bonneau says.

1 comment. Share your thoughts »

Credit: Technology Review

Tagged: Web, Facebook, privacy, social networks

Reprints and Permissions | Send feedback to the editor

From the Archives


Introducing MIT Technology Review Insider.

Already a Magazine subscriber?

You're automatically an Insider. It's easy to activate or upgrade your account.

Activate Your Account

Become an Insider

It's the new way to subscribe. Get even more of the tech news, research, and discoveries you crave.

Sign Up

Learn More

Find out why MIT Technology Review Insider is for you and explore your options.

Show Me