[grandalf]

This is one of the many dark patterns that Facebook uses. It simply does not respect any boundaries the user might wish to have in place...

Install it on your phone? Anyone you have in your phone's address book gets to see your picture under "people you may know".

Someone in your family joins Facebook and friends you? Now everyone you are friends with gets prompted about whether or not they know your family member.

Want to delete some pictures you uploaded to Facebook? It's extremely difficult and they must be deleted one by one.

Other than LinkedIn, I'd say FB is the prime innovator of UI dark patterns that exploit users' unwitting behavior for profit.

The youngest generation of internet users gets this which is why they largely do not use Facebook. Soon they will realize that IG and Whatsapp are connected, and will avoid those too.

What's interesting to me is that the recommendations are fundamentally not useful. It's easy to look someone up by searching for their name without the privacy-invading helpful suggestions.

[hoodoof]

Some girl from a dating site Googled my phone number, found my name, searched for me on Facebook and then Facebook suggested I friend her, providing me with her full name, which I did not previously know.

If you search for someone on Facebook, then Facebook will suggest to that person that they friend you. Seems a massive privacy hole to me.

[cloudjacker]

I DID NOT KNOW ABOUT THAT PATTERN

I've been aware of how Facebook attaches people to you for a long time, so I deactivated that one, made a new Facebook several years ago primarily for development purposes, different name, different email address, friended a few people from one particular circle, never installed it on my phone

Occasionally I will get random friend suggestions about people in different chapters of my life

Facebook didn't have my address book, or a big enough graph to make these connections

I hadn't considered that those were the people merely searching for my name or variations of it

[pjc50]

I didn't know about this either, but it sounds like you may have found another possible source of the leak: patients putting the name of the psychiatrist into FB search.

If B searches for A and C searches for A, does that imply a relationship between B and C? Especially if they live nearby? Who knows :(

[codingmyway]

In this case I'd almost certainly guess that it is through the phone number. LinkedIn is particularly creepy for this.

[dvcrn]

I noticed that too. The more often you search for someone and click on their profile, the more facebook will promote the connection both ways.

I think it's kind of interesting to 'figure out' how the facebook machine works. How a simple interaction, a location, a conversation or even a purchase on amazon shapes your news feed and the feed of people around you.

[Mendenhall]

Its interesting to me you think youngest generation of internet users get this. I do hope its the case. I always thought it was the people around at start of net who would get it. I was around preNet and remember how dangerous and scammy everything was so I never sign up for things like facebook or use real name etc. My first thought when I saw facebook was its a great way to get stalked and killed or targeted for whatever people can think of.

[grandalf]

> youngest generation of internet users get this.

They get it because in the jungles of many junior high and high schools, anything that can get you bullied will get you bullied, and young people quickly realized that all the accidental oversharing (by themselves or by their parents, elders, etc.) were easily exploited by bullies.

Thus they came to prefer simpler networks with simpler security/sharing models and features (like automatic photo deletion) that respect user privacy.

[rando444]

I know it's seems like it's 'dark pattern' week on HN, but not everything is a dark pattern.

Dark Patterns are user interfaces that are designed to trick users.

Facebook requests the permission to go through your stuff and if you read their data use policy, they go so far as to tell you in detail exactly the information they're taking from you, as well as how they use it.

Sure, it's a little bothersome when the information that you've given them goes farther than your personal preference, but it's not a 'dark pattern', it's just a feature that you don't like.

[grandalf]

> it's not a 'dark pattern', it's just a feature that you don't like

It's a similar sort of dark pattern to the practice of putting the important details of a contract hidden in a massive block of text rendered in a tiny font.

Yes, they are technically being upfront about what is going on, in the same way that two pages of 8pt legal boilerplate informs the signer of the details of a written contract.

If it weren't a dark pattern it would be very easy to turn off the undesirable bits, and users would rarely be surprised by the consequences of the default settings.

Let's not forget that contrary to our poor performance on abstract logic puzzles, humans of all levels of intellect are superbly good at reasoning about potentially embarrassing social situations. Hence FB must work hard to de-emphasize the way FB actually works to make people consent to many of the default permissions. That is in my opinion the definition of a dark pattern.

It is the gray area enabled by these practices that makes FB's content interesting... because accidentally over-shared content is interesting to us about a small percentage of the people we are friends with. It's nearly a law of human nature that we are fascinated by obscure details of a small percentage of people for all sorts of reasons (sexual interest, jealousy/aspiration, schadenfreude, stalking, etc.) and we all have some small group of people who are interested in our obscure likes/posts for the same reasons. Rarely do we overtly interact with such people (in either direction) because it is socially awkward, but FB generates revenue/engagement off of the lurking that we all do and the blindness people have that they too are the target of such lurking by others (which is why the dark pattern works)... it's what makes FB scratch a particular voyeuristic itch for people and why it's been so successful. LinkedIn works the same way but for things like job changes, promotions, etc.

[ramblenode]

> Sure, it's a little bothersome when the information that you've given them goes farther than your personal preference, but it's not a 'dark pattern', it's just a feature that you don't like.

Convincing users to accept a feature they would otherwise opt out of if they had a reasonable choice and/or fully understood the feature seems like a textbook dark pattern to me. Hiding the data collection policy inside a giant EULA or using a carrot feature as a lure is indeed intended to trick the user. The fact that many services have adopted these tactics does not change their being dark patterns; it just means dark patterns have proliferated and become the norm.

[dmix]

Indeed, I don't believe the problem here was that Facebook was tricking their users here into handing over their phones/emails contact information (aka this persons client lists). FB is explicit about permissions in this sense, although most users agree to everything without thinking twice.

The real problem is how the information was utilized by the recommendation engine, which is known to be creepily effective at matching people (people who just met for the first time, for example). FB is investing heavily in AI here so this is the natural outcome - where the results are very effective but has some unintended side effects. The side effects are largely due to the fact this connectivity happens in the background, outside of a place where the user can control privacy settings on particular contacts.

So I'm not sure there is an easy solution here. Mining contacts and social information is Facebook's business. It's what you hand over to use the service and why many people stop using Facebook voluntarily - or carefully limit what information they allow access to. I never allow FB to access my phones contacts, for instance, and their mobile app still works fine.

[taurath]

Fundamentally though that's the problem with the modern web - the services that users get is not a transaction in the sense that the user knows what they're giving up for the service - it's all hidden under an innocent permissions check (if it's Facebook) or not said at all (if its LinkedIn). The user provides permission for a small pittance like their email address or phone number and it snowballs into having every want need and action tracked and catalogued to make the service owner money. A product not intent on tricking the user into giving up every bit of the data on their life would ask if it could use individual bits of information to serve them ads and sell their information.

It takes more than it asks, and the fine print is there to cover its ass, when in reality if users were asked about what information they were willing to share they would be much more uptight. The users's have no real idea what is happening with their data, what they've given up or how its used to make the company money. It may be true that most user's don't care, and some might even prefer the outcome to them in the form of "relevant" ads (if the choice is made over "irrelevant" ads or paying for the service). It certainly is transforming what is in the public sphere about people, and the lessening of privacy can certainly be used as a weapon (and it is, to the extent that it is a big powerful force arrayed against a person independently figuring out what they want to spend their resources on).

[grandalf]

> I know it's seems like it's 'dark pattern' week on HN

OK, what is a dark pattern by your definition?

Dark patterns are a relevant topic on HN because many startups are measured in terms of user engagement and the growth of their user-base.

What is the difference between advertising and information? Growth hacking techniques and clickbait? Nudges and dark patterns?

These things are interesting because the line is blurry, and many patterns (dark or otherwise) that used to work suddenly stop working. This is why banner ads worked for a while and why interruption ads are becoming more and more common, and why adblock is becoming more and more common.

The world is not static, and so there is not ever going to be a consistent definition of what constitutes a dark pattern... it depends on the audience. In the first world, most 70 year olds are now on Facebook, and they are vulnerable to many patterns that the younger generations are not.

Just as scammers send senior citizens envelopes that look like social security checks but are actually ads, Facebook offers something that looks like a way to voluntarily share information but is actually often involuntary.

I think FB should take a hard line against dark patterns and be content to grow based on the massive network effect it can get without them.

[BariumBlue]

Pretty sure we need a new term if a term is being co-opted to mean something it's not.

Something like "malign algorithm", or "encroaching design" might do.

[wonkaWonka]

Dark patterns ask you to sit in a chair, without telling you that you can get paid to stand. (masking benefit without restricting access to the benefit; misdirection but without total erosion of trust)

This is about exploiting the exposure of unique identifiers (phone number mapped to email), and an interloping tattle-tale ratting out their correlation to the same owner.

It's something more akin to a Prisoner's Dilema, except people aren't cognizant that "They Are The Product" so no one thinks of themselves as prisoners ratting out conspirators.

[giancarlostoro]

LinkedIn is pretty bad at trying though. I got a new job not long ago, they congratulated me on it, two days later or so, and even now still they keep sending me emails about my next future job. I barely have gotten my feet wet at this one... What in the world?

[_asummers]

I had a recruiter on LinkedIn do that to me. They literally said "I know that you're starting a new job next week, but are you interested in hearing about other job opportunities?" No, but now your recruitment company is on my blacklist, thanks for the heads up.

[talmand]

What's their benefit to putting in the extra work to delay such emails based on your start time? What if some people actually wanted the emails regardless of a recent new job? What if they don't trust the start times that people claim?

[scottydelta]

This is exactly like this case: https://mako.cc/copyrighteous/google-has-most-of-my-email-be...

I used to freelance and FB started showing me one of my client as suggestion even though I use a work email for that, how? My client must have installed the FB app on the phone and his email client must have synced my email on the phone and now even FB had my email.

[55555]

> Want to delete some pictures you uploaded to Facebook? It's extremely difficult and they must be deleted one by one.

THIS is a huge pain point for me. I would ideally like to delete all my Facebook photos and timeline/wall posts from all of history. However, I cannot find a greasemonkey or tampermonkey script which will actually accomplish this. There are a few that claim to, but none actually worked for me (outdated).

Has anyone figured this out?

[njbooher]

http://casperjs.org

[fma]

I have coworkers' phone numbers on my phone so I assume that's how Facebook is recommending them to me. I like my coworkers but this is kind of creepy. Wish there was a way to turn it off, both directions.

[cLeEOGPw]

Even if you would "turn it off" and fb would not recommend it to you, they would still know the connection, and those same people would get you as a recommendation. So "turn it off" only would mean "hide the underlying connection".

Only way to prevent this is to hide/obfuscate/limit information that fb is accessing about you. And that would be a huge feat in an of itself.

[userbinator]

The whole premise of FB is to "connect people", whether or not you like it, so it's not an entirely unexpected behaviour from them. It's also the reason I don't use FB, and never will.

[cwilkes]

Well it doesn't matter if you use FB or not.

I bet the patients of the Doctor found themselves through each having her phone number. Hey they both are "friends" with this person maybe they should be friends as well.

This doesn't require for the middle man to have an account. You are inadvertently acting as a conduit for people to connect to one another.

FB likely has a "ghost" account for you anyway that they use to do this connection. So it is like you are using FB in some alternate universe.

[white-flame]

and the thing that sucks about us non-FB using people is that Facebook still has a pretty complete profile of our photo likenesses, names, emails, phone numbers, and other website profiles.

[cLeEOGPw]

And if he joined facebook he would be instantly be recommended many of the people he knows.