Facebook Autofill Wants To Store Users' Credit Card Info

cagraham writes "Facebook has teamed up with payment processors PayPal, Braintree, and Stripe, in an attempt to simplify mobile payments. The system allows Facebook members (who have turned over their credit and billing info) to click a 'Autofill with Facebook' button when checking-out on a mobile app. Facebook will then verify the details, and securely transfer a user's info over to the payment processing company. The move is likely aimed at gathering more data on user behavior, which can be used to increase the prices Facebook charges for mobile ads. Whether or not the feature takes off however, will depend almost entirely on how willing users are to trust Facebook with their credit card data."

Facebook and Paypal

[Guru80]

Those two names invoked in the same sentence makes me feel a little ill. Nothing but bad experiences with both, what could possibly go wrong with them teaming up?

Re:Facebook and Paypal

[gander666]

About the same to me as American Airlines merging with US Airways.

Re:Facebook and Paypal

[Dishevel]

Like ... Bitcoin?

I don't even trust them with my real birthdate

[Snowhare]

Why would I trust them with anything else?

Re:I don't even trust them with my real birthdate

[glavenoid]

Not yet anyway.

Re:I don't even trust them with my real birthdate

Why would I trust them with anything else?

That's you and me.

But the mindless hoards out there like the "convenience". And they may be under the erroneous impression that if there's a mistake or theft of their phone, they can just call their bank and do a charge back. It will most likely work with a theft of ones phone - after a police report is filed and then sending copies to your bank. But a mistake or fraud by someone else?

Let's use Roku as example. when I created a Roku account online a year or so ago (have to in order to use the thing - no technical reason, though) they "require" that you put payment information in. Now you can chat with customer service and demand to be exempted - after they give you the BS about "your convenience" - they'll exempt you or you can delete the payment information after signing up - if it's really deleted, I have no idea.

While in their channel store, I see the "Buddhist Channel" and in the description is says it's "Free". The after adding it and going to the channel, this pop-up comes up and says "We are charging you $1 a month to" pay for costs or some reason like that.

They slid that right in there. Now, IF I was stupid enough to have given Roku my payment information, I can just imagine what I would have to go through to stop it. Roku get a 30%+ commission on this shit so they aren't going to be too thrilled about the problem.

Bank backing me up? Ahahahahaha.

Here's what I've seen too aften in situations like this:

Bank calls merchant and tells them that you are disputing the charge.

Merchant: "Nope! He hit the OK button. It's valid!"

Bank to you: 'You owe it."

You" "Funk'in A!"

On the support forums, some folks rationalize it with "iTunes does it!"

And we have all heard the horror stories of $1,000 bills because a kid, who didn't know what they were doing was just buying shit.

tl;dr - Giving payment information up front doesn't give that many protections and opens you up to fraud and other unethical behavior.

Re:I don't even trust them with my real birthdate

[Saethan]

This is one reason why I still use a local bank. I can walk to their headquarters and file a complaint in person and actually get to talk to somebody face-to-face. Though the few charge-backs I've had to do a simple online ticket has resolved my issues.

Re:I don't even trust them with my real birthdate

[Shirogitsune]

Zombie theme park?

wow.

[intermodal]

It's as if they're honestly trying to get everyone to delete their facebook account. I've been considering it almost daily for the past couple years, definitely more in the past several months. The only thing keeping me on there is how much of my family resides far from my current location.

Kind of makes you wonder, "How much do I really like my cousins?" I'm very close to saying, "Not enough to keep this account."

Re:wow.

[Bigbutt]

I'm with you there. I rediscovered my cousins, aunts, and uncles after 40 years through them finding me on Facebook. I keep up on their activities and assume they keep up on what I do based on the comments I've received. While they do have whacky beliefs (which are reflected in the occasional "Obama is declaring Martial Law on Oct 1st!111!11!!!!!!1" posting), it's still good to stay in touch.

But data collection (even though I keep my likes and details to myself), video ads, comment systems that require a Facebook account, and now this might be the tipping point.

I likely won't close the account. Most likely I'll just stop using it just like I've stopped going to several forums I used to frequent due to the number of crazy posts and responses.

[John]

Re:wow.

[TWX]

I'm starting to wonder if they're just trolling us. Facebook's policies and very reason for existence runs contrary to what I was taught as a child, which was anti-narcissism (ie, any sort of notoriety based on achievement, not simple vanity), speaking when one only has something to say and keeping one's personal life personal (as opposed to, "look at me with this drink in my hand! Look at me with this puppy! Look at me with these whores!"), and now, keeping one's finances close to one's chest. The Internet age with the ability to own a domain name and effectively vanity-publish has changed some of that, but "Social Media" has made it extremely simple to talk-at people without necessarily talking-to people.

I never signed up for Facebook in the first place. I'd had my own domain for a time, and ran my own web log, but decided that it wasn't worth the effort and that what I was willing to share with the rest of humanity wasn't something that the rest of humanity was interested in. When I've seen others using Facebook I continue to get that vibe. I don't know what I'd do in your shoes, but having never had an account and seeing all of the BS makes me happy that I never did have an account in the first place.

Re:wow.

[CanHasDIY]

I likely won't close the account. Most likely I'll just stop using it just like I've stopped going to several forums I used to frequent due to the number of crazy posts and responses.

[John]

That's pretty much the route I've taken - leave the account open, check it about once a month for messages, and never, ever put another piece of content or information on there for them to sell.

Re:wow.

[houghi]

OK, so you want to be in contact with other people.

Do they have an email account? Do they have a phone? Do they have an address? In that case you can email, phone or write them.
So you keeping contact with them is not an issue.

What might happen is that they do not write back, do not phone back or come up with reasons why you can't visit.

So the REAL question is: can you handle the chance that THEY have no real interest in you.

Re:wow.

[slashmydots]

What you're saying outlines the "repeating the past" problem that Facebook has. Myspace was invincible and going to last for all eternity and because of that, they pissed off their users daily with awful updates and horrible page layouts. Facebook came out and was slightly better so tada, everyone bailed. Now Facebook put themselves in exactly the same place and the only thing that is necessary is for a slightly less annoying and evil one to come along. So in other words, not Google+. Isn't there some open source style non-profit social networking site out there? Let's all go there.

Re:wow.

[intermodal]

I didn't keep in close touch before Facebook, and I have no reason to suspect that I would in a post-Facebook life. I like knowing what my relatives are up to, but I don't actually care what they are up to. It's a subtle difference, but the difference is definitely there.

This is a good idea...

[ciderbrew]

I look forward to the "300million credit card details stolen" stories posted on here in a few years. And the stories of "Our Son spent 20,000 USD on crap DLC" every 5 months.

Re:This is a good idea...

[LittleBunny]

Personally, I look forward to the "Facebook rolls out incentives for users to supply the PayPal/credit card information of their friends"...

Awfully hard to trust Facebook

[rubmytummy]

Given the deep contempt that Facebook demonstrates toward even the idea of personal privacy, I don't think I would want to trust them with my credit cards.

Re:Awfully hard to trust Facebook

[Greyfox]

I don't even trust those guys with a browser cookie, much less a credit card.

Just so stories

[Impy+the+Impiuos+Imp]

Fair enough. Add in a new user agreement, in large blinking red letters at the top, so the user doesn't even have to scroll past pages of deliberately obfuscating boilerplate, "Facebook will do this for you. In exchange we will gather buying info tied to your purchases through us to sell ads targetted to your buying habits. Truth be told, we don't care if you buy Depends or urine catheters or Justin Bieber tix, it's all done automatically by computer aggregate anyway."

It'll work.

[rodrigoandrade]

Whether or not the feature takes off however, will depend almost entirely on how willing users are to trust Facebook with their credit card data.

What additional harm could a 16-digit string cause when people happily and willingly furnish Facebook with their full name, sex, DOB, address, pictures, employer's name, former employer's name, school, friends' and relatives' names, hobbies, personal preferences, real-time location, etc.?

In other news....

[CimmerianX]

Facebook wants to index your credit card transactions for you..... Please fill in your online banking passwords. You can trust them with your data you know....

Facebook? Paypal? Trust? ARE YOU ON DRUGS!?!?!?

[Chas]

Anyone who willingly opts into this is a friggin moron.

I can understand some cases where having a Facebook account or a Paypal account is a necessary evil (mostly emphasis on "evil").
But both of these services display an almost nonexistent regard for their user bases, with Paypal going so far as to actually steal money from its users (locking out accounts with cash in them for months on end and continuing to profit from the interest, fraudulently attempting to hoover out users' bank accounts, etc).

But hey, if you want these two to potentially ruin your life by bankrupting you and reporting about it online, go ahead!
I'll just sit back and laugh at you derisively.

New Facebook sidebar widget

[cascadingstylesheet]

"Five other Visa holders like this website! Here are thumbnails of their credit cards."

Re:New Facebook sidebar widget

[Shirogitsune]

Syrian Electronic Army likes this

Innovation

[MrKaos]

This will really save the NSA a lot of work!!!

Hi Guys!!!

Multi factor authentication

[wulfhound]

This is part of a bigger play by Facebook. Most mail accounts in use right now are password SMTP over TLS/SSL. Yet most services on the net assume that people are in full control of their primary mailboxes. By going multi-factor on their login system, Facebook wants to establish their messaging system as a more secure, more trusted endpoint (especially for the average user with zero understanding of password hygiene) than good old email. Once they do so, and get their users trained up softly-softly on multi-factor authentication, they then quietly pitch to organizations and service providers (banks, government services, utilities, ...) to request Facebook, rather than email, as the preferred primary mechanism for staying in touch with customers. After all, if Facebook accounts are harder to spoof than an email address -- and with the continual life history & social graph data they contain, they surely are -- why wouldn't an organization want to stay in touch with its customers that way? From the point of view of a big org concerned with identity theft and fraud prevention, it's surely a tempting way to arrange things. Facebook owns your digital identity and theirs, phishing becomes much more difficult to execute as senders are authenticated & easily verified.