An investigation by the New York State Department of Financial Services has discovered app developers regularly sent sensitive user data from third-party websites and apps to Facebook in violation of its policy. The report found that data included medical and personal data. While Facebook implemented a system to identify and block sensitive information, the DFS report urges the company to “do more to prevent developers from transmitting sensitive data in the first place” and to take “additional steps to police its own rules.”
