Home Flickr’s New Friend Finder: Data Portability or Privacy Violation?

Flickr’s New Friend Finder: Data Portability or Privacy Violation?

Late last night Yahoo! owned photo sharing site Flickr launched a new feature – the ability to search your Gmail, Yahoo! Mail or Hotmail contacts list for people on Flickr so you can add them as contacts. Many services let you do that, but almost all of them require you to give up the user name and password for your email. Flickr did it right and it was exciting, for us at least. GMail users are taken to a GMail page, where GMail asks for their usernames and passwords – then asked if Flickr should be given one time access or ongoing access. That’s great. We’ve been calling on applications to use best practices and emerging protocols to access user data without asking for passwords for some time. The risks are too great, otherwise.

Some Flickr users, though, are really upset. They don’t want anyone who has sent them an email to be able to easily find their photos on Flickr. What some people call Data Portability, others call a privacy violation.

The Down Side

Flickr users have been able to find each other by searching for individual emails for some time, but that “security by obscurity” has been changed dramatically by a bulk comparison of all your email contacts to the Flickr user database. There’s not consensus whether this is a good thing or a bad thing.

I liked it when I tried it, I connected with some interesting people on Flickr that I wouldn’t have otherwise. I wouldn’t appreciate it, though, if certain people from my past who have otherwise forgotten about me were now prompted to check out my photos on Flickr. If blog comment spammers I’ve had nasty email exchanges with were suddenly prompted to friend me on Flickr, I wouldn’t like that very much either.

Ongoing Discussion

Just like many people objected to Robert Scoble’s scraping emails out of Facebook in the name of Data Portability because they felt they had given him contact info in the limited setting of Facebook – these kinds of issues are going to come up a lot. The sticky privacy questions are the ones that Mark Zuckerberg told us are key to Facebook’s own engagement with Data Portability. We’ve asked similar questions here about the new Google Social Graph API. The Data Portability Working Group has lively discussions on privacy (subscribe to a filtered feed for the topic here) but mainstream users clearly have serious concerns.

The situation at Flickr wasn’t helped by the fact that the option to opt-out of exposing your email address to this new feature was broken for the first 12 hours after launch, as was the ability to search Yahoo! Mail contacts. In the big picture view of these issues, though – Yahoo! in general is generally remarkably good about identity issues for all but the occasional Chinese journalist. (Flickr is better known for innovation than for its crimes against justice and democracy, of which there haven’t been any that we know of.)

Some users have stated that they would prefer email exposure in the new feature to be opt-in, instead of opt-out. Though it will drastically slow down user connections – opt-in for this kind of feature may ultimately be required in order for data portability to be accepted. On the other hand, the Facebook Newsfeed faced a wholescale revolt when user activity was by default exposed to friends there and now it’s the site’s defining feature.

Even what’s thought of as the best practices in webmail APIs have a lot of unanswered questions remaining, as we discussed yesterday in a post about Xoopit. Australian tech consultant Lachlan Hardy argues that standards based authentication steps could still soften users’ resistance to phishing and reminds us to look at the URL of the authentication page.

What do you think? How should checking your email contacts for friends on a new network be done? What other best practices would you like to see emerge in order to make portability of data useful, safe and desirable?

About ReadWrite’s Editorial Process

The ReadWrite Editorial policy involves closely monitoring the tech industry for major developments, new product launches, AI breakthroughs, video game releases and other newsworthy events. Editors assign relevant stories to staff writers or freelance contributors with expertise in each particular topic area. Before publication, articles go through a rigorous round of editing for accuracy, clarity, and to ensure adherence to ReadWrite's style guidelines.

Get the biggest tech headlines of the day delivered to your inbox

    By signing up, you agree to our Terms and Privacy Policy. Unsubscribe anytime.

    Tech News

    Explore the latest in tech with our Tech News. We cut through the noise for concise, relevant updates, keeping you informed about the rapidly evolving tech landscape with curated content that separates signal from noise.

    In-Depth Tech Stories

    Explore tech impact in In-Depth Stories. Narrative data journalism offers comprehensive analyses, revealing stories behind data. Understand industry trends for a deeper perspective on tech's intricate relationships with society.

    Expert Reviews

    Empower decisions with Expert Reviews, merging industry expertise and insightful analysis. Delve into tech intricacies, get the best deals, and stay ahead with our trustworthy guide to navigating the ever-changing tech market.