Another important area is the handling of personal data. It is logical that selling user data to advertisers is contrary to company interests, given that one can earn a lot more money selling ads oneself. But what happens when data is leaked anyway? Facebook doesn’t just bear a responsibility to refrain from intentionally sharing data. It must also actively protect that data from third-party access.
External regulation is a sensible way of giving back a sense of security to users of platforms like Facebook. Binding rules must be combined with monitoring to ensure the rules are being observed. But what should such controls look like if they are to establish trust without infringing on user freedom?