Evidence that Facebook can read the contents of your private emails
Thursday, September 01, 2016
Yesterday I received an email - to my Gmail account, which I opened in Outlook 2016 - from a friend who has just returned from a cycling holiday in the Netherlands. He reported on various "amazing child carrying bicycle options in Netherlands" such as "a giant wooden box on the front of a bike where you just pile up the kids / shopping / dog." Imagine my surprise when later that evening I logged onto my Android Facebook app and saw the following in my timeline as a recommended video:
Uncanny, huh? I can assure you that the number of times I have searched for Dutch bicycle baskets and cycling behaviour is pretty minimal. Zero in fact. There's nothing related in my browsing history. And as I don't ever post to Facebook, just read it passively, I haven't added any photos or other content that might relate to this. Neither have I watched videos like this before. The only 'content' on my devices that could inspire Facebook to serve up this as a video I may like is that single, private email.
While Facebook requests extensive and invasive permissions when installing the Android app, none of these should allow it to read the contents of private emails. We know Google reads the contents of emails for its own advertising purposes. But Facebook and Google are two separate entities, and there's no way Facebook should be able to access emails stored on the latter's servers.
If it can have access, that is deeply concerning. In this case, the content is very innocuous, but it's easy to imagine other examples that would be less so. For instance, imagine an email from a daughter to her mother announcing her pregnancy, which she wants to keep private for now, only to find her Facebook feed populated with adverts for pink fluffy bunnies and Pampers.
So does Facebook 'know' about the contents of private email? If so how? Any thoughts welcome.