Facebook quietly relaunches apps for Groups platform after lockdown

Facebook quietly relaunches apps for Groups platform after lockdown

Facebook is becoming a marketplace for enterprise apps that help Group admins manage their communities.

To protect itself and its users in the wake of the Cambridge Analytica scandal, Facebook locked down the Groups API for building apps for Groups. These apps had to go through a human-reviewed approval process, and lost access to Group member lists, plus the names and profile pics of people who posted. Now, approved Groups apps are reemerging on Facebook, accessible to admins through a new in-Facebook Groups apps browser that gives the platform control over discoverability.

Facebook confirmed the new Groups apps browser after our inquiry, telling TechCrunch, “What you’re seeing today is related to changes we announced in April that require developers to go through an updated app review process in order to use the Groups API. As part of this, some developers who have gone through the review process are now able to access the Groups API.”

Facebook wouldn’t comment further, but this Help Center article details how Groups can now add apps. Matt Navarra first spotted the new Groups apps option and tipped us off. Previously, admins would have to find Group management tools outside of Facebook and then use their logged-in Facebook account to give the app permissions to access their Group’s data.

Groups are often a labor of love for admins, but generate tons of engagement for the social network. That’s why the company recently began testing Facebook subscription Groups that allow admins to charge a monthly fee. With the right set of approved partners, the platform offers Group admins some of the capabilities usually reserved for big brands and businesses that pay for enterprise tools to manage their online presences.

Becoming a gateway to enterprise tool sets could make Facebook Groups more engaging, generating more time on site and ad views from users. This also positions Facebook as a natural home for ad campaigns promoting different enterprise tools. And one day, Facebook could potentially try to act more formally as a Groups App Store and try to take a cut of software-as-a-service subscription fees the tool makers charge.

Facebook can’t build every tool that admins might need, so in 2010 it launched the Groups API to enlist some outside help. Moderating comments, gathering analytics and posting pre-composed content were some of the popular capabilities of Facebook Groups apps. But in April, it halted use of the API, announcing that “there is information about people and conversations in groups that we want to make sure is better protected. Going forward, all third-party apps using the Groups API will need approval from Facebook and an admin to ensure they benefit the group.”

Now apps that have received the necessary approval are appearing in this Groups apps browser. It’s available to admins through their Group Settings page. The apps browser lets them pick from a selection of tools like Buffer and Sendible for scheduling posts to their Group, and others for handling commerce messages.

Facebook is still trying to bar the windows of its platform, ensuring there are no more easy ways to slurp up massive amounts of sensitive user data. Yesterday it shut down more APIs and standalone apps in what appears to be an attempt to streamline the platform so there are fewer points of risk and more staff to concentrate on safeguarding the most popular and powerful parts of its developer offering.

The Cambridge Analytica scandal has subsided to some degree, with Facebook’s share price recovering and user growth maintaining at standard levels. However, a new report from The Washington Post says the FBI, FTC and SEC will be investigating Facebook, Cambridge Analytica and the social network’s executives’ testimony to Congress. Facebook surely wants to get back to concentrating on product, not politics, but must take it slow and steady. There are too many eyes on it to move fast or break anything.

Source: Mobile – Techcruch

Facebook mistakenly leaked developer analytics reports to testers

Facebook mistakenly leaked developer analytics reports to testers

Set the “days without a Facebook privacy problem” counter to zero. This week, an alarmed developer contacted TechCrunch, informing us that their Facebook App Analytics weekly summary email had been delivered to someone outside their company. It contains sensitive business information, including weekly average users, page views and new users.

Forty-three hours after we contacted Facebook about the issue, the social network now confirms to TechCrunch that 3 percent of apps using Facebook Analytics had their weekly summary reports sent to their app’s testers, instead of only the app’s developers, admins and analysts.

Testers are often people outside of a developer’s company. If the leaked info got to an app’s competitors, it could provide them an advantage. At least they weren’t allowed to click through to view more extensive historical analytics data on Facebook’s site.

Facebook tells us it has fixed the problem and no personally identifiable information or contact info was improperly disclosed. It plans to notify all impacted developers about the leak today and has already begun.

Update: 1pm Pacific: TechCrunch was provided with this statement from a Facebook spokesperson:

“Due to an error in our email delivery system, weekly business performance summaries we send to developers about their account were also sent to a small group of those developer’s app testers. No personal information about people on Facebook was shared. We’re sorry for the error and have updated our system to prevent it from happening again.”

Below you can find the email the company is sending:

Subject line: We recently resolved an error with your weekly summary email

We wanted to let you know about a recent error where a summary e-mail from Facebook Analytics about your app was sent to testers of your app ‘[APP NAME WILL BE DYNAMICALLY INSERTED HERE]’. As you know, we send weekly summary emails to keep you up to date with some of your top-level metrics — these emails go to people you’ve identified as Admins, Analysts and Developers. You can also add Testers to your account, people designated by you to help test your apps when they’re in development.

We mistakenly sent the last weekly email summary to your Testers, in addition to the usual group of Admins, Analysts and Developers who get updates. Testers were only able to see the high-level summary information in the email, and were not able to access any other account information; if they clicked “View Dashboard” they did not have access to any of your Facebook Analytics information.

We apologize for the error and have made updates to prevent this from happening again.

One affected developer told TechCrunch “Not sure why it would ever be appropriate to send business metrics to an app user. When I created my app (in beta) I added dozens of people as testers as it only meant they could login to the app…not access info!” They’re still waiting for the disclosure from Facebook.

Facebook wouldn’t disclose a ballpark number of apps impacted by the error. Last year it announced 1 million apps, sites and bots were on Facebook Analytics. However, this issue only affected apps, and only 3 percent of them.

The mistake comes just weeks after a bug caused 14 million users’ Facebook status update composers to change their default privacy setting to public. And Facebook has had problems with misdelivering business information before. In 2014, Facebook accidentally sent advertisers receipts for other business’ ad campaigns, causing significant confusion. The company has also misreported metrics about Page reach and more on several occasions. Though user data didn’t leak and today’s issue isn’t as severe as others Facebook has dealt with, developers still consider their business metrics to be private, making this a breach of that privacy.

While Facebook has been working diligently to patch app platform privacy holes since the Cambridge Analytica scandal, removing access to many APIs and strengthening human reviews of apps, issues like today’s make it hard to believe Facebook has a proper handle on the data of its 2 billion users.

Source: Mobile – Techcruch

Snapchat launches privacy-safe Snap Kit, the un-Facebook platform

Snapchat launches privacy-safe Snap Kit, the un-Facebook platform

Today Snapchat finally gets a true developer platform, confirming TechCrunch’s scoop from last month about Snap Kit. This set of APIs lets other apps piggyback on Snap’s login for sign up, build Bitmoji avatars into their keyboards, display public Our Stories and Snap Map content, and generate branded stickers with referral links users can share back inside Snapchat.

Snap Kit’s big selling point is privacy — a differentiator from Facebook. It doesn’t even let you share your social graph with apps to prevent a Cambridge Analytica-style scandal.

Launch partners include Tinder bringing Bitmojis to your chats with matches, Patreon letting fans watch creators’ Stories from within its app, and Postmates offering order ETA stickers you can share in Snapchat that open the restaurant’s page in the delivery app. Developers that want to join the platform can sign up here.

Snap Kit could help the stumbling public company colonize the mobile app ecosystem with its buttons and content, which might inspire Snapchat signups from new users and reengagement from old ones. “Growth is one of our three goals for 2018, so we absolutely hope it can contribute to that, and continue to strengthen engagement, which has always been a key metric for us” Snap’s VP of product Jacob Andreou tells me. That’s critical since Snapchat sunk to its lowest user growth rate ever last quarter under the weight of competition from Instagram and WhatsApp.

“There have been areas inside of our products where we’ve really set standards” Andreou explains. “Early, that was seen in examples like Stories, but today with things like how we treat user data, what we collect, what we share when people login and register for our service . . . Snap Kit is a set of developer tools that really allow people to take the best parts of our products and the standards that we’ve set in a few of these areas, and bring them into their apps.”

This focus on privacy manifests as a limit of 90 days of inactivity before your connection with an app is severed. And the login feature only requires you bring along your changeable Snapchat display name, and optionally, your Bitmoji. Snap Kit apps can’t even ask for your email, phone number, gender, age, location, who you follow, or who you’re friends with.

“It really became challenging for us to see our users then use other products throughout their day and have to lower their expectations. . . having to be okay with the fact that all of their information and data would be shared” Andreou gripes. This messaging is a stark turnaround from four years ago when it took 10 days for CEO Evan Spiegel to apologize for security laziness causing the leak of 4 million users’ phone numbers. But now with Facebook as everyone’s favorite privacy punching bag, Snapchat is seizing the PR opportunity.

“I think one of the parts that [Spiegel] was really excited about with this release is how much better our approach to our users in that way really is — without relying on things like policy or developer’s best intentions or them writing perfect bug free code, but instead by design, not even exposing these things to begin with.”

Yet judging by Facebook’s continued growth and recovered share price, privacy is too abstract of a concept for many people to grasp. Snap Kit will have to win on the merits of what it brings other apps, and the strength of its partnerships team. Done right, Snapchat could gain an army of allies to battle the blue menace.

Snapvengers Assemble

Snap’s desire to maintain an iron grip on its ‘cool’ brand has kept its work with developers minimal until now. Its first accidental brush with a developer platform was actually a massive security hazard.

Third-party apps promising a method to secretly screenshot messages asked users to login with their Snapchat usernames and passwords, then proceeded to get hacked, exposing some users’ risqué photos. Snap later cut off an innocent music video app called Mindie for finding a way to share to users’ Stories. Last year I wrote how A year ago I urged it to build a platform in my article “Snap’s anti-developer attitude is an augmented liability”, as it needs help to populate the physical world with AR.

2017 saw Snap cautiously extend the drawbridge, inviting in ads, analytics, and marketing developer partners to help brands be hip, and letting hacker/designers make their own AR lenses. But the real transition moment was when Spiegel said on the Q4 2017 earnings call that “We feel strongly that Snapchat should not be confined to our mobile application—the amazing Snaps created by our community deserve wider distribution so they can be enjoyed by everyone.”

At the time that meant Snaps on the web, embedded in news sites, and on Jumbotrons. Today it means in other apps. But Snap will avoid one of the key pitfalls of the Facebook platform: over-promising. Snap Deputy General Counsel for Privacy Katherine Tassi tells me “It was also very important to us that there wasn’t going to be the exchange of the friends graph as part of the value proposition to third party developers.”

How Snap Kit Works

Snap Kit breaks down to four core pieces of functionality that will appeal to different apps looking to simplify signup, make communication visual, host eye-catching content, or score referral traffic. Developers that want access to Snap Kit must pass a human review and approval process. Snap will review their functionality to ensure they’re not doing anything shady.

Once authorized, they’ll have access to these APIs:

  • Login Kit is the foundation of Snap Kit. It’s an OAuth-style alternative to Facebook Login that lets users skip creating a proprietary username and password by instead using their Snapchat credentials. But all the app gets is their changeable, pseudonym-allowed Snapchat display name, and optionally, their Bitmoji avatar to use as a profile pic if the user approves. Getting that login button in lots of apps could remind people Snapchat exists, and turn it into a fundamental identity utility people will be loath to abandon.
  • Creative Kit is how apps will get a chance to create stickers and filters for use back in the Snapchat camera. Similar to April’s F8 launch of the ability to share from other apps to Instagram and Facebook Stories, developers can turn content like high scores, workout stats and more into stickers that users can overlay on their Snaps to drive awareness of the source app. Developers can also set a deep link where those stickers send people to generate referral traffic, which could be appealing to those looking to tap Snap’s 191 million teens.

  • Bitmoji Kit lets developers integrate Snapchat’s personalized avatars directly into their app’s keyboard. It’s an easy path to making chat more visually expressive without having to reinvent the wheel. This follows the expansion of Friendmoji that illustrate you and a pal rolling out to the iOS keyboard. But Bitmoji Kit means developers do the integration work instead of having to depend on users installing anything extra.
  • Story Kit allows developers to embed Snapchat Stories into their apps and websites. Beyond specific Stories, apps can also search through public Stories submitted to Our Story or Snap Map by location, time, or captions. A journalism app could surface first-hand reports from the scene of breaking news or a meme app could pull in puppy Snaps. The company will add extra reminders to the Our Story submission process to ensure users know their Stories could appear outside of Snapchat’s own app.

One thing that’s not in Snap Kit, at least yet, is the ability to embed Snapchat’s whole software camera into other apps which TechCrunch erroneously reported. Our sources mistakenly confused Creative Kit’s ability to generate stickers as opposed to sharing whole stories, which Andreou called “an interesting first step” for making Snapchat the broadcast channel for other apps.

Additional launch partners include bringing Bitmoji to Quip’s word processor, RSVP stickers from Eventbrite, GIF-enhanced Stories search in Giphy, Stories from touring musicians in Bands In Town, storytelling about your dinner reservation on Quandoo, music discovery sharing from SoundHound, and real-time sports score sharing from ScoreStream.

While other platforms have escaped their host’s control, like Facebook’s viral game spam outbreak in 2009 or Twitter having to shut down errant clients, Snapchat’s approval process will let it direct the destiny of its integrations.

Bitmoji Kit in Tinder

When asked why Snapchat was building Snap Kit, Andreou explained that “We think that giving people more tools to be able to express themselves freely, have fun and be creative, both on Snapchat and other apps is a good thing. We also think that helping more people outside of Snapchat learn about our platform and our features is a good thing. And most importantly, being able to do this in a way that doesn’t compromise our users’ privacy is very good thing.”

Without much data sharing, there’s a lot less risk here for Snapchat. But the platform won’t have the same draw that Facebook can dangle with its massive user base and extensive personal info access. Instead, Snapchat will have to leverage the fear of being left out of the visual communication era and tout itself as the catalyst for apps to evolve. The biggest driver of the platform might be youngins demanding their Bitmoji everywhere.

Snap needs all the help it can get right now. If other apps are willing to be a billboard for it in exchange for some of its teen-approved functionality, Snapchat could find new growth channels amidst stiff competition. Platforms can entrench apps. And after its user count shrunk in March, Snap has to find a way to keep from disappearing

Source: Mobile – Techcruch

Facebook and Instagram Stories open to sharing from other apps

Facebook and Instagram Stories open to sharing from other apps

Facebook is recruiting help to make its Stories more interesting than Snapchat’s. Starting with Spotify, SoundCloud and GoPro, third-party apps can now let their users share to Facebook Stories and Instagram Stories. Rather than screenshotting, users will be able to hit a button to share a photo or video of a playlist, song or mini-movie from another app into Facebook or Instagram’s Stories camera, where they can embellish it with effects and post it to their friends. GoPro’s integration actually lets you edit your movies inside Facebook’s apps, while you can immediately start listening to songs shared from Spotify and SoundCloud.

Facebook’s CPO Chris Cox announced the feature at Facebook’s F8 conference, saying that he’s excited to see what developers build. Other launch partners include selfie editor Meitu, lipsyncing app Musically, Indian streaming music service Saavn and more.

While this new wing of the Facebook platform is opening to all developers, only approved partners that go through a review process like the three mentioned will have attribution watermarks added to the shares.

This platform move mirrors what Facebook did with its Open Graph launch 7 years ago at F8 2011. That let developers push stories about in-app activity to Facebook’s Ticker and News Feed. Eventually Facebook dropped the Ticker and phased out these Open Graph auto-shares in favor of explicit sharing, where the user is in full control. Facebook is taking this more cautious approach with Stories too, rather than make users worry their guilty pleasure listening or private imagery could be unknowingly shared to their Story.

The plan deviates significantly from Snapchat’s strategy, which has shunned third-party developers like music video-maker Mindie in the past. Now Snapchat lets developers create augmented reality lenses and geofilters that users can unlock, but the content creation happens in Snapchat’s app. Facebook hopes that by recruiting developers and getting them to build special content users can share to their Stories, it will avoid the feature growing stale from the same old selfies and sunsets.

Source: Mobile – Techcruch

Facebook shuts down custom feed-sharing prompts and 12 other APIs

Facebook shuts down custom feed-sharing prompts and 12 other APIs

Facebook is making good on Mark Zuckerberg’s promise to prioritize user safety and data privacy over its developer platform. Today Facebook and Instagram announced a slew of API shutdowns and changes designed to stop developers from being able to pull your data or your friends’ data without express permission, drag in public content or trick you into sharing. Some changes go into effect today, and others roll out on August 1 so developers have more than 90 days to fix their apps. They follow the big changes announced two weeks ago.

Most notably, app developers will have to start using the standardized Facebook sharing dialog to request the ability to publish to the News Feed on a user’s behalf. They’ll no longer be able to use the publish_actions API that let them design a custom sharing prompt. A Facebook spokesperson says this change was planned for the future because the consistency helps users feel in control, but the company moved the deadline up to August 1 as part of today’s updates because it didn’t want to have to make multiple separate announcements of app-breaking changes.

Facebook app developers will now have to use this standard Facebook sharing prompt since the publish_action API for creating custom prompts is shutting down

One significant Instagram Graph API change is going into effect today, which removes the ability to pull the name and bio of users who leave comments on your content, though commenters’ usernames and comment text is still available.

Facebook’s willingness to put user safety over platform utility indicates a maturation of the company’s “Hacker Way” that played fast-and-loose with people’s data in order to attract developers to its platform who would in turn create functionality that soaked up more attention.

For more on Facebook’s API changes, check out our breakdown of the major updates:

Source: Mobile – Techcruch