Meta Tells Court Section 230 Shouldn’t Empower Users And Third Party Apps
from the why-oh-why-are-we-doing-this? dept
Meta has a long history of making sure no one but Meta, or Meta-approved apps, can operate on top of its services. And now, in a new court filing, it’s going to somewhat ridiculous lengths to try to stop one developer from making sure he won’t get sued for creating a tool that automates clicking some buttons in the Facebook UI.
In early May, I had a long post about a kinda wacky lawsuit filed by Ethan Zuckerman against Meta, in which he argued that (among other things) a mostly-ignored clause in Section 230 gave him (and anyone else) immunity for building middleware level products that operated on larger social media sites.
I won’t go over all the background again, but the key part is that Section (c)(2)(B) of 230 says:
No provider or user of an interactive computer service shall be held liable on account of any action taken to enable or make available to information content providers or others the technical means to restrict access to material described in paragraph (1)
With “paragraph (1)” being the lack of liability for any action taken in good faith to restrict access to content deemed to be “obscene, lewd, lascivious, filthy, excessively violent, harassing, or otherwise objectionable.”
While Section 230 is often (misleadingly) discussed as providing social media platforms some sort of unwarranted liability shield, the argument Zuckerman is making is that this clause means that he couldn’t face legal liability if he were to create a tool that would (in this particular example) allow Facebook users to go in and unfollow everything and everyone they follow with the click of a button and allow those users to then share some data with academic researchers.
This lawsuit caused way more chatter among tech policy and law watchers than I’m used to. It was a really novel approach. Some definitely worried that if the lawsuit succeeded, it might make certain bad actors immune from certain lawsuits. But, frankly, I still don’t see that. As I explained, the claims here don’t prevent sites from taking technical measures (blocking, rate limiting, etc.). They only seek to stop Meta from using questionable legal theories, such as CFAA claims of “unauthorized access” to bully developers with threats of huge fines (or even criminal charges).
So, while I wasn’t sure the litigation strategy would work, I am hopeful that it succeeds. It could help establish a more vibrant market for middleware, giving users more control over their own data, as well as the apps and services that they use. In fact, it would bring us back a bit towards the earlier internet world, where building on top of other services was considered normal.
Meta has now filed its motion to dismiss in the case. I’m a little surprised not just by the argument, but by how weak it is. That’s not to say it won’t succeed, as it gives plenty of opportunities for a judge to just toss out the case (judges, especially in the 9th Circuit, seem to really hate declaratory judgment, especially in non-IP cases).
The crux of the argument is this: Zuckerman hasn’t yet created his “Unfollow Everything 2.0” app, and therefore there is no actual controversy, so the case should be dismissed.
The Court should decline Plaintiff’s request to invoke this Court’s limited jurisdiction to issue an advisory opinion about a non-existent tool. Plaintiff’s claims—which are contingent on facts that cannot be known until after he has created and released Unfollow Everything 2.0 and Meta has had an opportunity to evaluate how the tool actually works—are not ripe for review under either Article III of the Constitution or the Declaratory Judgment Act, 28 U.S.C. § 2201. Even if the claims were ripe, jurisdiction under the Act remains discretionary, and there are a host of prudential reasons why exercising jurisdiction would not make sense here. Adjudicating Plaintiff’s claims would require needless rulings on hypothetical applications of California law, would likely result in duplicative litigation, and would encourage forum shopping. Nor is it clear that Plaintiff has a bona fide plan to launch this tool. He has widely spoken about this case in the media, going so far as to characterize it as an opportunity for courts to “shap[e] policy.”1 The Court should reject Plaintiff’s invitation to issue such an advisory opinion and follow the more prudent course of declining jurisdiction.
But, of course, that ignores the very clear chilling effects issue related to this case. Yes, Zuckerman has not released such an app because he saw the legal threats that the creator of Unfollow Everything 1.0 received, as well as Meta’s past legal actions going after companies like Power Ventures. This isn’t a theoretical issue. Meta has shown that it will absolutely engage in lawfare to go after third-party app builders, and thus there is a real controversy and concern here.
Within this, there are some other odd mini-arguments, including the fact that since Meta can change how the “unfollow” button works, the eventual app might work differently, and thus the case is not yet ripe for court.
But, that seems to be a weird way of admitting that Meta has the technical ability to break the app, which no one denies, and no one is challenging. But if the ability to technically break a middleware product means you can never challenge the threat of legal liability… well… that wouldn’t make any sense at all.
Even so, Meta’s lawyers argue that the case should still be dismissed, even if the judge determines that the chilling effects are enough to allow the case to move forward. But they do so by pulling a sleight of hand move to avoid discussing the actual issues:
First, use of Unfollow Everything 2.0’s anticipated automation of Facebook processes would violate Meta’s Terms of Service (“Terms”), which prohibit accessing or collecting data from Facebook “using automated means.”
So what? The whole point of the lawsuit is that in the event that such an app violates such policies, Meta still remains able to use technical measures to stop or block the app, just not legal ones.
Then there’s this very, very strange and legally wrong argument:
Plaintiff’s invocation of section 230(c)(2)(B) of the Communications Decency Act, 47 U.S.C. § 230 et seq., is without merit, as (1) section 230(c)(2)(B) does not immunize Plaintiff from his contractual obligations under Meta’s Terms as a matter of law; (2) it is highly unlikely from Plaintiff’s allegations that he would qualify as an “interactive computer service” provider; and (3) the allegations do not show that Plaintiff’s tool would “restrict access” (rather than “restrict availability”) of content
This paragraph gets so many things wrong, I’m not sure where to begin. We’ll get back to the argument about contractual claims in a minute, but I want to focus on the idea that Zuckerman would not qualify “as an interactive computer service.”
That doesn’t matter.
The law clearly says (and multiple courts have reinforced) that the liability protection applies to “providers or users.” And he is absolutely a user. The fact that he might not be a provider is meaningless. There’s an entire section devoted to this argument, and I don’t understand why Meta thinks it matters, unless they think that the judge (like some amateur Section 230 commentators) will somehow skip over the “or user” part of Section 230.
As for the claim that 230(c)(2) should not bar liability based on contracts liability, I don’t think that’s right and I also don’t think Meta realizes the harm it might be doing in arguing that. Because people in the past have certainly brought “breach of contract” claims against Meta over content moderation decisions, and Meta has relied on 230 to get them dismissed. Be careful what you litigate for, Meta.
Finally, as for the claim that Zuckerman’s app would only “restrict availability” rather than “restrict access,” this seems like a meaningless distinction. What is the actual difference here? How are those different things? It kinda feels like Meta saying “if we call this something different, maybe we can pretend the law doesn’t apply to us.”
Indeed, so much of what Meta is arguing here seems to be about pretending that Zuckerman is saying they can’t use technical means to block his app. But the lawsuit isn’t arguing that at all. It is just focused on making sure that Meta can’t threaten him with a baseless lawsuit for creating an app that is useful to a small group of users, and that simply automates a feature that Meta already makes available to any user directly.
Meta cites some earlier Section 230 cases, such as Alex Berenson’s case against Twitter or the seminal Barnes v. Yahoo. Meta uses these examples to argue that 230(c)(2) liability protections don’t apply to breach of contract claims. However, this twists what actually happened in those cases, which were related to questions around content moderation and whether or not employees of the companies had made additional promises above and beyond the terms of service to do (or, in the Berenson case, not do) certain things.
That is wholly different from what Zuckerman is arguing here: that 230, and its policy of encouraging third-party tools for dealing with content issues online, should make these apps immune from civil liability from the platforms.
One other note on this: in the original lawsuit, Zuckerman and his lawyers from the Knight First Amendment Institute point out (a few times) that he’s hoping to use his Unfollow Everything 2.0 app for academic research. In the Motion to Dismiss, Meta argues that this is meaningless because Meta has policies and offerings in place for researchers to get access to certain data.
Meta supports rigorous and independent research into the potential impact social media services like Facebook may have on the world, and it makes available tools and processes to help researchers gain access to information and analytical capabilities to support their research through a privacy-protective approach. See, e.g., Research Tools and Data Sets, Meta Transparency Center, https://transparency.meta.com/en-gb/researchtools/; Our Approach, Facebook Open Research & Transparency, https://fort.fb.com/approach. Plaintiff does not indicate whether he has considered using these tools or why his research could not be conducted through them.
Who cares? There’s no legal requirement that you use only approved methods of doing research. Why even make this argument?
Anyway, I’m still not convinced Zuckerman will succeed with this legal theory, but Meta’s motion to dismiss seems really off base in multiple ways.
Filed Under: adversarial interoperability, ethan zuckerman, middleware, section 230, unfollow everything
Companies: meta
Comments on “Meta Tells Court Section 230 Shouldn’t Empower Users And Third Party Apps”
Does that mean people aren’t allowed to use web browsers (which automatically download tons of resources as part of rendering the page for the user)? Or does Meta have an approved list of automation that users are allowed? The distinction between a web browser and an “automated tool” is… razor thin. Or what if someones web browser automatically reloads the previously active page(s) when started? Or what about accessibility options that might “automatically” do stuff on behalf of the user.
Re:
i question that too
Re: Re:
Updated Meta Terms of Service:
User must manually parse the HTML by hand for resources other than the HTML page such as javascript, CSS, pictures, and videos.
User must be proficient in the use of curl.
User must manually use curl to download all other resources mentioned in the webpage, especially the ads.
User must watch the ads.
User must watch the ads.
User must watch the ads.
Ads must watch the user.
Ads must follow the user.
Ads.
Ads.
Ads…
Do you have plans to write an article that takes the swathes of Silicon Valley VCs to task for falling in line behind Trump? I remember years back you wrote an article about how the tech industry needed its act together regarding sexual harassment & discrimination. Have you thought of writing another one in the same vein, but regarding the open support that people in Silicon Valley are providing to Trump?
Re:
If you want Techdirt to write about something, look for their “suggest a story” link, don’t troll random comments.
Re: Re:
Yeah, about that…
The link’s broken, and it’s probably so low on the site’s priorities it’s simply better to either email Mike or use the comments.
Re: Re: Re:
You don’t respond to pedants, you ignore them. They bring nothing meaningful.
Uh, what?
Based on this definition alone, yes, this app, if developed, would qualify. It doesn’t matter that it uses another interactive computer service (Facebook) in the background; the fact that it meets the qualifications in the definition alone make it an interactive computer service. At least, I’m pretty sure.
I don’t think I have to tell you how stupid of a take Meta has other than:
Bruh.
Re:
bruh moment indeed also nice cat
It remidns me of MediaFire's attack against SkipScreen
https://www.eff.org/deeplinks/2009/10/its-my-browser-and-ill-auto-click-if-i-want
In summary, MF wanted to ban an extension that just autoclicks a download button, so they went out of their way to demand firefox to remove SkipScreen because it violates its ToS.
The claim that it violates its ToS is false. ToS only applies to users agree to the terms, users who come to the site to download requires mutual assent, and the tool does not eat up additional bandwidth (it just automates something that a human being would do).
This is one of the earliest attacks on the open internet, when websites want to have control on the user experience on their webpages.
This is the same site that have intrusive ads on their site. If you want to download a file off their site, you must allow them to open a random site on your browser (as a separate browser window or tab), which is potentially dangerous (I’ve experienced tech support scam pages being opened). Thankfully this can be bypassed by right-clicking and “save link as”. News sites have ads and don’t need the user to risk their browser and PC just to use their content.
Re:
As have I. The amount of times I’ve opened a page only to be greeted by a pop-up that claims to have detected a virus that my copy of Norton 360 knew nothing about. The only thing I ever clicked when that happened was the back button.
Breaking news, alien asshole (zuck) continues to be a asshole.
Re:
“Breaking news, alien asshole (zuck) continues to be a asshole.”
I thought it was Elon who thought he was an alien.
Re: Re:
Technically, Elon would be the “alien”, considering he’s a (legal) immigrant.
Re: Re: Re: Elmo
I’m an alien, I’m an illegal alien
I boarded a small boat to New York
Re: Re: Re:2 LOL - EM phone home
“Billionaire Elon Musk recently said that he was an “alien” and “nobody believes” him during a recent appearance at the Viva Tech event in Paris.”
https://www.ndtv.com/feature/elon-musk-says-he-is-an-alien-claims-nobody-believes-him-5747577
I mean, stopping Meta from making things like CFAA claims would make them immune from certain lawsuits. Technical measures are not lawsuits.
Re:
Meta wouldn’t be stopped from making CFAA claims. They could certainly still make the claim against someone that hacked their system. It’s just that BS claims like “a middleware tool is ‘unauthorized access’” would be quickly dismissed.
Meta wouldn’t be stopped from making CFAA claims. They could certainly still make the claim against someone that hacked their system. It’s just that BS claims like “a middleware tool is ‘unauthorized access'” would be quickly dismissed.
Here’s the thing: the way Unfollow Everything 1.0 worked (simply allowing people to unfollow all acoounts), it absolutely was not in violation of the above term since it accessed no data whatsoever, so Unfollow Everything 2.0 is hardly going to violate it either. This is just Meta saying, “If you create any tool that allows users improved access to what they really want to see, we will do whatever we can to censor such attempts.” Basically, Meta is being a bully, so I hope the court does rule on this, and makes that ruling in Zuckerman’s favor.