Introducing Tools to Help Developers and Businesses Protect People's Privacy

Today we are announcing two new features to help developers and businesses better protect people's privacy and respond to their privacy requests. First, we're providing a callback URL to automate people's requests for their data to be deleted. We are also providing companies subject to the General Data Protection Regulation (GDPR) a way to provide people with contact information for their Data Protection Officer (DPO).

Personal Data Deletion Callback

To follow up from our previous communication, we are announcing the availability of a callback URL to receive a person’s request that the information an app/website received from Facebook be deleted.

If people remove your app/website from Facebook's apps and websites settings, we can provide them with the option to request that your app/website delete all information you received about them from Facebook. The experience on Facebook will inform people when they sent a request and when it was acknowledged by your service. It will also provide them with a confirmation number you supply and a way to check the status of their request. Offering this option to people can help you automate customer service requests, demonstrate that you're handling their information responsibly, and help meet your compliance requirements, such as for the GDPR.

To enable this option, we need you to provide us with a callback URL where we can send the request. You can add the callback URL at your app's Facebook Login Settings page in the app dashboard. Your callback must use HTTPS.

If you implement a data deletion request callback, it must initiate the deletion of any data your app has from Facebook about the user. For more information on implementing and testing Data Deletion Requests, see our documentation.

Data Protection Officer Contact Information

The General Data Protection Regulation (GDPR), which goes into effect May 25, 2018, requires certain companies that serve individuals in the EU to designate and publish contact information for a Data Protection Officer (DPO) who can assist with matters related to the processing of personal information. We are now offering a way for you to easily provide this contact information to people.

Go to your app's Facebook Login Settings page in the app dashboard to add your DPO's name (optional), mailing address, and email address. This information will be made available in people's apps and website settings so that they can contact your DPO if they have questions about how their data is processed and used.

We appreciate your partnership as we work together to ensure people's privacy and the security of their data.