Facebook has published a page for Facebook Platform developers that answers frequenty asked questions (FAQs) about the General Data Protection Regulation (GDPR).
The GDPR went into effect on May 25 and requires companies in the European Union and around the world to comply with stronger data protection rules when collecting and using data from individuals based in the EU.
The FAQs describe the data that Facebook collects via its SDK and also discusses what is required of developers.
According to the FAQs, developers need to adhere to Facebook's terms requiring that they provide "a clear and prominent link that is easily accessible inside your app settings or any privacy policy and from within any store or website where your app is distributed that links to a clear explanation (a) that third parties, including Facebook, may collect or receive information from your app and other apps and use that information to provide measurement services and targeted ads and (b) how and where users can opt out of the collection and use of information for ad targeting."
The FAQs also remind developers using products such as Account Kit, Facebook Login, and Facebook Analytics that Facebook is a data processor for the data developers pass to Facebook using these services and that developers are responsible for establishing the legal basis for using this data.
In theory, the GDPR, combined with greater enforcement of its rules on the part of Facebook, could reduce the potential for another Cambridge Analytica-like incident.