The FTC charged that during 2009 and 2010 Myspace allowed advertising servers Fox Audience Network and Rubicon Project Inc. to decrypt Myspace users’ Friend ID, age and gender to target ads. The FTC said advertisers could use this information to access users’ personal profile which included their full names and other personal information which could be used to link broader web-browsing activity to individual users.
The FTC also charged that Myspace was not in compliance with the U.S.-EU Safe Harbor Framework for the transfer of personal data from the European Union to the U.S. as the company had claimed.
Under the framework MySpace was obligated to tell consumers how their data would be used the choice to opt out, which the FTC said it did not do.
If the FTC decides Myspace has violated the settlement agreement it can immediately impose fines on the company.
The public has until June 8 to comment on proposed settlement order.