Many companies rely on data to connect with their customers. Collecting data allows companies to provide a personalized experience for individual users. However, collecting data can be a slippery slope. It can damage consumer trust, especially if that information is sold to a third party or stolen in a data breach.
If a company is collecting data, steps need to be taken to protect that data in order to maintain trust. If you don’t work to maintain that privacy, you’ll lose consumer trust, and eventually, you’ll lose customers as well.
Twitter has been under fire in the past for poor data privacy methods, with the Federal Trade Commission filing a complaint against the company in 2010. After Elon Musk bought the company in 2022, changes may be coming to Twitter’s User Privacy. But in the meantime, what can we learn from Twitter’s past?
We’ve talked about the importance of end-to-end encrypted messaging in the past, and social media platforms are no different. When users are able to privately message other users on the platform, the best practice is to use end-to-end encrypted messages.
Twitter’s current direct messaging system doesn’t use end-to-end encryption, meaning your private conversations could potentially be not-so-private.
However, Elon Musk has criticized the lack of end-to-end encryption in the past, which leaves us hopeful that the feature will be introduced soon.
Honesty is the Best Policy
Twitter was recently fined $150 million after wrongfully using personal information. This information was supposedly collected and stored for security purposes but was then used to create targeted ads.
Twitter failed to accurately portray why they were collecting data, which can cause distrust between the users and the brand.
While Twitter does collect and store personal information, the site collects less personal identifying information than many other websites.
Twitter collects information like name, phone number and email address, and sometimes location information, but doesn’t ask for social security numbers or bank information.
However, when Twitter Blue rolled out, users were given the option to pay for exclusive Twitter access. New paid features means bank information will have to be stored in the app, which would be more damaging in a data breach.
If you want to delete your Twitter account to protect your privacy, that may not be as effective as one might think. Even after permanently deleting a Twitter account, that information may be stored indefinitely on their servers:
“Twitter may retain some information on your deactivated account to ensure the safety and security of its platform and people using Twitter.” – Twitter Help Center
Sometimes, it may be necessary to store personal information. In those instances, it’s important to be honest and transparent about the reasons data is stored and how it is used. It’s also necessary to take the proper precautions to protect the information that is being stored.
Tech42 can help prepare you and your staff against the rising number of cyber attacks against businesses with our penetration testing. Tech42 will work directly with you to train your staff on the proper requirements and offers testing specific to your business’s needs that will keep your business secure.