Facebook Said That They Are Bypassing IE Privacy Settings Because P3P Is Outdated

Microsoft blamed Google for bypassing the privacy settings of Internet Explorer, but it turns out that Facebook is also doing the same. Facebook and thousands of other websites are doing the same thing by writing incorrectly formatted compact policies (CPs) for the Platform for Privacy Preferences Project (P3P). IE is the only major browser to support P3P.

“Facebook social plugins are built and designed to protect privacy by providing people with engaging social experiences on other websites without requiring any additional cookies to be set,” said a Facebook spokesperson said in a statement to ZDNet. “Therefore, our P3P policy is not intended to enable us to set additional cookies or to track users. While we would like to be able to express our cookie policy in a format that a browser could read, P3P was developed 5 years ago and is not effective in describing the practices of a modern social networking service and platform. Instead, we have posted a public notice describing our practices that is consistent with Section 3.2 of P3P. We have reached out directly to Microsoft in hopes of developing additional solutions and we would welcome the opportunity to work with W3 to update P3P to account for the advances in social networking and the web since 2007.”

Section 3.2 of the P3P policies define the syntax and semantics. The W3C designed P3P to give users more control of their personal information when browsing. P3P has been part of IE since IE 6 when it was released in August 2001.

This article was written by Amit Chowdhry. You can follow me at @amitchowdhry or on Google+ at
Leave a Comment