Personal Data in the Wake of Facebook/Cambridge Analytica

Posted by Paul Anderson-Riley in Identity Theft on 17 April 2018 - Paul is a Credit Analyst at checkmyfile

Strange as it might sound to some, huge numbers of people routinely complete online surveys through Facebook to find out which football player they are most like, which Hogwarts house they should be in or how much money they will be earning in 2050. The truth is, every time you volunteer seemingly innocuous information or consent to share profile information with an app, your data is probably going somewhere to be used for another purpose.

Even logging into a site using your social media profile contributes to wider advertising capabilities, giving many sites the ability to access all the data shared on your profile, along with select data from your friends’ profiles. In Australia only 53 people used Cambridge Analytica’s information-gathering app, which was enough to give them data from as many as 311,127 users.

checkmyfile has always been an advocate of online privacy and the importance of responsible personal information usage, warning in the past about the dangers of information-gathering platforms, including Facebook’s privacy settings. This is why we felt it necessary to weigh in our thoughts about what the recent findings surrounding Facebook & Cambridge Analytica mean for your personal privacy online.

How is your information gathered?

The recent Facebook/Cambridge Analytica (CA) scandal highlights how little we know about where our information is going and how it can be used to influence us. Or, it could also show that we give up our personal information too easily.

While data breaches have almost become a regular fixture of modern news, it’s important to remember that what’s happened with Facebook and CA isn’t like a typical data breach: nobody ‘hacked’ the information used, it was information that, for the most part, we agreed could be used – even if the ‘what for’ part left a lot to be desired. The real rub comes from the fact that the thing users signed up for and the way their information was used were deceptively different.

If anything, the moral of this story is: think twice before agreeing to give out personal information online. Is it worth giving up all that personal information, in order to be told that you’re most like James Milner, you’d be in Slytherin, and you’re likely to earn a disappointingly small amount in 2050.

There are a number of methods used by companies with a view to accessing your data, usually for their own marketing purposes. These are just a few:

  • Competitions– these usually require a fair amount of your information to be covered off. Companies usually like this method as a way of building up a good user database that they can later mail with offers and promotions at a low cost.
  • Social media signup– using your Facebook, Twitter or Google+ account to sign into a website has admittedly taken a lot of the effort out of signing up, but it can give away more information than you anticipated
  • Data brokers– this is where information is ‘bought’ and ‘sold’. Websites have to disclose in their terms and conditions whether your information may be passed on or sold to third parties.

Data breaches are a seemingly regular fixture in modern news, fuelled in part by our unending quest for convenience, often at the cost of privacy. What many don’t realise though is that this readiness to volunteer information on ourselves and making it publicly-available is also putting us at a heightened risk of influence or identity fraud.

What is all this personal data used for?

Currently, allegations from a former Cambridge Analytica contractor suggest that Cambridge Analytica used information from Facebook profiles to target individuals to influence the outcome of the U.S Presidential Election with carefully-placed political marketing. Recently the CEO of CA was filmed boasting about the capabilities of their system in influencing elections around the world through Facebook, which has led to the question why Facebook has allowed it.

This is similar to the reasons used by most websites for gathering user data, albeit with a much more ambitious outcome and with arguably more deceptive methods. Companies collect data about their users because it allows them to build profiles about products or services that they might be interested in, and advertise accordingly. Where information is sold to advertisers by third parties, the more specific they can be in terms of targeting certain groups of people, the more they can charge.

The real elephant in the room is that it’s unlikely that just CA that have gathered and used information in this way: a former Facebook manager estimates that hundreds of millions of us will have had our information gathered using this method by different private companies. Facebook has now publically apologised in the UK and US, detailing that investigations will be made into companies that have access to large amounts of personal data through Facebook. A #deletefacebook movement has started which will in the short term impact the value of Facebook share prices.

With technology simplifying how easy it is to sign up and provide details online we can only remind ourselves to remain vigilant not only to where we supply data but also how we are influenced by the things we see online. The recent revelations have only served to reinforce the fact that even the most basic of information we provide online can be used to great effect. Privacy settings and privacy policies are included on all reputable websites, if a site doesn’t have one be extremely careful before volunteering any information. If you are ever concerned about the way your information is being used simply contact the company or check their privacy policy.

If you apply the concepts of the internet to everyday life you are less likely to provide details online. As a rule of thumb, never give information out online that you wouldn’t give in person. If someone turned up at your house knocked on your door and asked you to complete a quick ten question survey to see which footballer you are most like, you’d probably suspect that something was awry there too.

You can find out if you are at heightened risk of identity fraud with our free-to-use risk estimator

The problems with private data being made public

In the case of Facebook and CA, much of the information used was publically accessible online, however in using the information in a way other than initially intended, there has still been a clear breach of trust.

On this occasion, happily, the information used hasn’t been purchased or used for fraudulent purposes, although the legality of it all is still very much in question. Harvesting information from social media is just one of the techniques utilised by fraudsters, and what might seem like inconsequential disclosure – as per the techniques used in the Facebook scandal – is often anything but that and can come back to hurt you.

Checking your credit file is one of the single most effective ways to monitor for fraudulent attempts on your finances, allowing you to take action as soon as possible. Only checkmyfile includes data from 4 credit reference agencies together, in the UK’s most detailed online credit report.

You can try checkmyfile free for 30 days, then for just £14.99 a month, which you can cancel at any time online, or via freephone or email.

How To Check if Someone Is Using Your Identity For Fraud

Scams and fraudsters may have evolved to become more sophisticated over time, but when it comes to fighting back, one piece of advice has stayed true: If you’re concerned that you might have fallen victim to identity fraud or want to better protect yourself against it, your Credit Report is one of the best places to turn.

Published on 3 Apr 2019 by Paul Anderson-Riley

Full Article

Affected by the Marriott Hack? Here’s What To Do

If you’re one of the 500 million consumers to have stayed in a Marriott-owned Starwood chain hotel in the past four years, there’s a chance your personal information could have been compromised in what could be the second biggest ever data breach.

Published on 30 Nov 2018 by Jamie Mackenzie Smith

Full Article

Tesco Online Grocery List Disappears

After well over 10 years of using Tesco’s online grocery service, all of sudden, all of my Tesco order history has disappeared, alongside all the information stored in My Favourites – purchases made in-store and online over the past 13 months, My Usuals, and My Shopping Lists.

Published on 9 Oct 2018 by Barry Stamp

Full Article

Are linked addresses on your credit file a bad thing

Your Credit Report can surprise you: it can include reference to an address you have long-forgotten about or sometimes even an address you have never heard of, which is one of the reasons it’s important to check in every now and then.

Published on 30 Jul 2018 by Ian Carpenter

Full Article

Loan Fee Fraud: The £3.5 Million a Year Scam

For people facing financial hardship, sometimes taking out a loan to tide things over can seem like the most viable solution. But if you’re out of work or have a lower-than-average credit rating, it can be harder to get credit from mainstream lenders and mean that more expensive forms of finance in the sub-prime market are the only viable option. It often feels like a hopeless situation.

Published on 8 Jun 2018 by Jamie Mackenzie Smith

Full Article

Protecting yourself against identity theft online

Modern day fraudsters are now able to use the internet as a helpful tool to acquire a vast amount of information about an individual just from using their name. From this, they start to build a portfolio of data that they can then use to obtain credit, bank accounts and sign up for other services. By following a few simple steps you can help to reduce the risk of being exposed to a fraudster online.

Published on 22 May 2018 by Paul Anderson Riley

Full Article

Identity Fraud: What To Do If It Happens To You

Year on year, there has been a substantial rise in the number of identity fraud cases being reported to organisations such as Cifas, the UK’s fraud prevention service. It’s no real surprise when you consider the crime can be committed from the comfort of someone’s home without ever having to risk showing their face.

Published on 6 Feb 2018 by George Coburn

Full Article

What's a Politically Exposed Person (PEP) & Why is it on my Report?

PEP stands for Politically Exposed Person, which would typically relate to an individual who has a prominent public title or function. If you receive this classification, often you will have to undergo additional security checks when applying for finance. Your credit file will tell you if you have been identified as a PEP, however for most people it isn’t something they’ll need to worry about.

Published on 8 Jan 2018 by Paul Anderson-Riley

Full Article

Brits continuing to fall for HMRC and Apple gift card scam

At the face of it, it seems a bit odd that the company responsible for collecting taxes would request payment from individuals in the form of an Apple iTunes gift card, but according to Action Fraud, this scam has continued to be profitable for fraudsters. The scheme first came to light in May last year and Action Fraud have received hundreds of complaints since then.

Published on 30 Jan 2017 by George Coburn

Full Article

Yahoo’ve been hacked – Yahoo in largest ever reported data breach

In the last two years, we have already been alerted to data breaches at Three Mobile, Tesco Bank, TalkTalk, Morrison’s, Steam and Sage, amongst others. The scale of these hacker attacks have varied. But none have come close to the newest report.

Published on 16 Dec 2016 by Ben Tumilty

Full Article


We are rated number 1 for customer service on