Abonné·e de Mediapart

Billet publié dans



Suivi par 37 abonnés

Billet de blog 8 sept. 2021

How Facebook undermines privacy protections for its two billion WhatsApp users

WhatsApp assures users that no-one can see their messages – but, reports US investigative newsroom ProPublica, the company has an extensive monitoring operation and regularly shares personal information with prosecutors.

Abonné·e de Mediapart

Ce blog est personnel, la rédaction n’est pas à l’origine de ses contenus.

By Peter Elkind, Jack Gillum and Craig Silverman, with additional reporting by Alex Mierjeski and Doris Burke

When Mark Zuckerberg unveiled a new “privacy-focused vision” for Facebook in March 2019, he cited the company’s global messaging service, WhatsApp, as a model. Acknowledging that “we don’t currently have a strong reputation for building privacy protective services,” the Facebook CEO wrote that “I believe the future of communication will increasingly shift to private, encrypted services where people can be confident what they say to each other stays secure and their messages and content won’t stick around forever. This is the future I hope we will help bring about. We plan to build this the way we’ve developed WhatsApp.”

Zuckerberg’s vision centered on WhatsApp’s signature feature, which he said the company was planning to apply to Instagram and Facebook Messenger: end-to-end encryption, which converts all messages into an unreadable format that is only unlocked when they reach their intended destinations. WhatsApp messages are so secure, he said, that nobody else — not even the company — can read a word. As Zuckerberg had put it earlier, in testimony to the U.S. Senate in 2018, “We don’t see any of the content in WhatsApp.”

WhatsApp emphasizes this point so consistently that a flag with a similar assurance automatically appears on-screen before users send messages: “No one outside of this chat, not even WhatsApp, can read or listen to them.”

Those assurances are not true. WhatsApp has more than 1,000 contract workers filling floors of office buildings in Austin, Texas, Dublin and Singapore, where they examine millions of pieces of users’ content. Seated at computers in pods organized by work assignments, these hourly workers use special Facebook software to sift through streams of private messages, images and videos that have been reported by WhatsApp users as improper and then screened by the company’s artificial intelligence systems. These contractors pass judgment on whatever flashes on their screen — claims of everything from fraud or spam to child porn and potential terrorist plotting — typically in less than a minute.

Policing users while assuring them that their privacy is sacrosanct makes for an awkward mission at WhatsApp. A 49-slide internal company marketing presentation from December, obtained by ProPublica, emphasizes the “fierce” promotion of WhatsApp’s “privacy narrative.” It compares its “brand character” to “the Immigrant Mother” and displays a photo of Malala ​​Yousafzai, who survived a shooting by the Taliban and became a Nobel Peace Prize winner, in a slide titled “Brand tone parameters.” The presentation does not mention the company’s content moderation efforts.

WhatsApp’s director of communications, Carl Woog, acknowledged that teams of contractors in Austin and elsewhere review WhatsApp messages to identify and remove “the worst” abusers. But Woog told ProPublica that the company does not consider this work to be content moderation, saying: “We actually don’t typically use the term for WhatsApp.” The company declined to make executives available for interviews for this article, but responded to questions with written comments. “WhatsApp is a lifeline for millions of people around the world,” the company said. “The decisions we make around how we build our app are focused around the privacy of our users, maintaining a high degree of reliability and preventing abuse.”

WhatsApp’s denial that it moderates content is noticeably different from what Facebook Inc. says about WhatsApp’s corporate siblings, Instagram and Facebook. The company has said that some 15,000 moderators examine content on Facebook and Instagram, neither of which is encrypted. It releases quarterly transparency reports that detail how many accounts Facebook and Instagram have “actioned” for various categories of abusive content. There is no such report for WhatsApp.

Deploying an army of content reviewers is just one of the ways that Facebook Inc. has compromised the privacy of WhatsApp users. Together, the company’s actions have left WhatsApp — the largest messaging app in the world, with two billion users — far less private than its users likely understand or expect. A ProPublica investigation, drawing on data, documents and dozens of interviews with current and former employees and contractors, reveals how, since purchasing WhatsApp in 2014, Facebook has quietly undermined its sweeping security assurances in multiple ways. (Two articles this summer noted the existence of WhatsApp’s moderators but focused on their working conditions and pay rather than their effect on users’ privacy. This article is the first to reveal the details and extent of the company’s ability to scrutinize messages and user data — and to examine what the company does with that information.)

Many of the assertions by content moderators working for WhatsApp are echoed by a confidential whistleblower complaint filed last year with the U.S. Securities and Exchange Commission. The complaint, which ProPublica obtained, details WhatsApp’s extensive use of outside contractors, artificial intelligence systems and account information to examine user messages, images and videos. It alleges that the company’s claims of protecting users’ privacy are false. “We haven’t seen this complaint,” the company spokesperson said. The SEC has taken no public action on it; an agency spokesperson declined to comment.

Facebook Inc. has also downplayed how much data it collects from WhatsApp users, what it does with it and how much it shares with law enforcement authorities. For example, WhatsApp shares metadata, unencrypted records that can reveal a lot about a user’s activity, with law enforcement agencies such as the Department of Justice. Some rivals, such as Signal, intentionally gather much less metadata to avoid incursions on its users’ privacy, and thus share far less with law enforcement. (“WhatsApp responds to valid legal requests,” the company spokesperson said, “including orders that require us to provide on a real-time going forward basis who a specific person is messaging.”)

WhatsApp user data, ProPublica has learned, helped prosecutors build a high-profile case against a Treasury Department employee who leaked confidential documents to BuzzFeed News that exposed how dirty money flows through U.S. banks.

Like other social media and communications platforms, WhatsApp is caught between users who expect privacy and law enforcement entities that effectively demand the opposite: that WhatsApp turn over information that will help combat crime and online abuse. WhatsApp has responded to this dilemma by asserting that it’s no dilemma at all. “I think we absolutely can have security and safety for people through end-to-end encryption and work with law enforcement to solve crimes,” said Will Cathcart, whose title is Head of WhatsApp, in a YouTube interview with an Australian think tank in July.

The tension between privacy and disseminating information to law enforcement is exacerbated by a second pressure: Facebook’s need to make money from WhatsApp. Since paying $22 billion to buy WhatsApp in 2014, Facebook has been trying to figure out how to generate profits from a service that doesn’t charge its users a penny.

That conundrum has periodically led to moves that anger users, regulators or both. The goal of monetizing the app was part of the company’s 2016 decision to start sharing WhatsApp user data with Facebook, something the company had told European Union regulators was technologically impossible. The same impulse spurred a controversial plan, abandoned in late 2019, to sell advertising on WhatsApp. And the profit-seeking mandate was behind another botched initiative in January: the introduction of a new privacy policy for user interactions with businesses on WhatsApp, allowing businesses to use customer data in new ways. That announcement triggered a user exodus to competing apps.

WhatsApp’s increasingly aggressive business plan is focused on charging companies for an array of services — letting users make payments via WhatsApp and managing customer service chats — that offer convenience but fewer privacy protections. The result is a confusing two-tiered privacy system within the same app where the protections of end-to-end encryption are further eroded when WhatsApp users employ the service to communicate with businesses.

The company’s December marketing presentation captures WhatsApp’s diverging imperatives. It states that “privacy will remain important.” But it also conveys what seems to be a more urgent mission: the need to “open the aperture of the brand to encompass our future business objectives.”


See more of this report from ProPublica on its website here.

  • ProPublica is a nonprofit newsroom that investigates abuses of power.

Bienvenue dans le Club de Mediapart

Tout·e abonné·e à Mediapart dispose d’un blog et peut exercer sa liberté d’expression dans le respect de notre charte de participation.

Les textes ne sont ni validés, ni modérés en amont de leur publication.

Voir notre charte

À la Une de Mediapart

Journal — Migrations
Des femmes et des enfants survivent dans la rue à Bagnolet
Une vingtaine de femmes exilées, et autant d’enfants, dont des nourrissons, occupent un coin de rue à Bagnolet depuis le 4 août pour revendiquer leur droit à un hébergement. Une pétition vient d’être lancée par différentes associations pour soutenir leur action et interpeller les autorités sur leur cas.
par Nejma Brahim
Journal — Migrations
Face au risque d’expulsion à Montreuil : « Je veux juste un coin pour vivre »
Ce mardi, une audience avait lieu au tribunal de proximité de Montreuil pour décider du délai laissé aux cent vingt personnes exilées – femmes, dont certaines enceintes, hommes et enfants – ayant trouvé refuge dans des bureaux vides depuis juin. La juge rendra sa décision vendredi 12 août. Une expulsion sans délai pourrait être décidée.
par Sophie Boutboul
Journal — Énergies
La sécheresse aggrave la crise énergétique en Europe
Déjà fortement ébranlé par les menaces de pénurie de gaz, le système électrique européen voit les productions s’effondrer, en raison de la sécheresse installée depuis le début de l’année. Jamais les prix de l’électricité n’ont été aussi élevés sur le continent.
par Martine Orange
Journal — Politique économique
Inflation : le gouvernement se félicite, les Français trinquent
L’OCDE a confirmé la baisse des revenus réels en France au premier trimestre 2022 de 1,9 %, une baisse plus forte qu’en Allemagne, en Italie ou aux États-Unis. Et les choix politiques ne sont pas pour rien dans ce désastre.
par Romaric Godin

La sélection du Club

Billet de blog
Faire face à l’effondrement du service public de santé
Après avoir montré l’étendue et les causes des dégâts du service public de santé français, ce deuxième volet traite des solutions en trompe-l’œil prises jusque-là. Et avance des propositions inédites, articulées autour de la création d’un service public de santé territorial, pour tenter d’y remédier.
par Julien Vernaudon
Billet de blog
Ce que nous rappelle la variole du singe
[REDIFFUSION] A peine la covid maitrisée que surgit une nouvelle alerte sanitaire, qui semble cette fois plus particulièrement concerner les gays. Qu’en penser ? Comment nous, homos, devons-nous réagir ? Qu’est-ce que ce énième avertissement peut-il apporter à la prévention en santé sexuelle ?
par Hervé Latapie
Billet de blog
Variole du singe : ce que coûte l'inaction des pouvoirs publics
« L'objectif, c'est de vacciner toutes les personnes qui souhaitent l'être, mais n'oublions pas que nous ne sommes pas dans l'urgence pour la vaccination ». Voilà ce qu'a déclaré la ministre déléguée en charge des professions de santé, au sujet de l'épidémie de la variole du singe. Pourtant pour les gays/bis et les TDS il y a urgence ! Quel est donc ce « nous » qui n'est pas dans l'urgence ?
par Miguel Shema
Billet de blog
Variole du singe : chronique d'une (nouvelle) gestion calamiteuse de la vaccination
[REDIFFUSION] Créneaux de vaccination saturés, communication inexistante sur l'épidémie et sur la vaccination, aucune transparence sur le nombre de doses disponible : la gestion actuelle de la variole du singe est catastrophique et dangereuse.
par Jean-Baptiste Lachenal