What does this mean?
Among other things, Meta is going to use texts, images and videos that users have shared publicly, or for which they themselves have given permission. This includes older content that was available before this date, as long as that content has been publicly visible at some point.
For WhatsApp, messages are explicitly excluded from AI training. However, profile photos, statuses or other public data can be included if they are set as “public.
What are the risks to your organization?
The increase in publicly available data increases the likelihood of advanced forms of cybercrime, including:
- Identity fraud of employees or directors;
- Social engineering, such as deepfakes or fake requests on behalf of colleagues or suppliers;
- Reputational damage from inadvertent reuse of content featuring your organization;
- Targeted phishing attacks based on corporate and personal information available online.
AI makes it easier to make connections between isolated data and build realistic profiles from it – a technique that cybercriminals love to exploit.
Recommended action:
- Map out what content about your organization or employees is publicly visible on social media;
- Limit the visibility of sensitive information in (personal) profiles;
- Inform employees how to object through Meta’s Privacy Center;
- Include this topic structurally in your security-awareness policy.
Appropriate insurance as a safety net
While prevention is essential, the risk of digital incidents remains. Good cyber insurance or fraud insurance then provides an important safety net. These cover such things as:
- Financial losses from social engineering or digital scams;
- Cost of forensic IT investigation;
- Legal assistance for data breaches and privacy violations;
- Damage from identity fraud or system intrusion.
Want to know how to best protect your organization?
We are happy to advise you on appropriate insurance and additional security measures to suit your digital risks.
