Social Media Privacy Impact Assessment
5.2.8 What other risks to privacy exist and how do you manage these risks?
Geotagging on Instagram and Flickr:
Geotagging is the process of including geographical information into or with any of a variety of media such as
photographs, videos, blogs, websites and others. This process can happen automatically or manually and is the act
of encoding geographical information such as latitude and longitude into common media, generally photographs and
video. Web sites, blogs and the like don’t encode the geographical information into the object but they can associate
this information with a post or blog, for example.
Geotagging can pose significant privacy or even life threatening risks. Can allow others to identify the location
where a picture was taken (e.g., using free browser plug-
ins), to track an individual’s location, or to correlate such
data with other information. The use of locational data to report an individual’s movements, whereabouts or actions
online in real time (e.g., on social networking sites or other public platforms, to track where an individual may be
shopping, eating, sleeping, etc.) can enable “cyberstalking” or “cybercasing” (i.e., use of such information to
commit real-world crimes).
Geotagging can reveal details specific details such as location and identification of people and places; collateral
(non-
subject of a post or photograph) location of people and places, location of children or other family members at
school, hangouts, home, and work; and location of personal property. Moreover, geotagging can reveal the daily
commute, shopping habits, and office and home addresses of individuals, as well as such information about their
family members, friends, and business associates. Geotagging enables tracking of individuals and assets by
criminals, foreign intelligence services, and terrorists.
In addition, some web sites now will search themselves and other sites to see if any individuals were tagged by name
and through facial recognition functions and then will automatically tag the individuals it recognize
photograph. In conjunction with geotagging, name and facial recognition tagging can produce an image that has the
names of individuals in photos along with their location at a specific time and date. This is a relatively new
technology, but it is rapidly becoming more common.
Because photos may be uploaded directly to Instagram and then shared through Instagram's mobile applications or
the integrated social media sites, the use of Instagram may present location-based privacy concerns when uploaded
photos can be used to identify a user's location at a given point in time. Location-based privacy issues are a
particular issue for users who select the option to automatically create a posting in Foursquare when an Instagram
photo is uploaded. Location-based privacy concerns are endemic to many mobile applications, and users must
exercise discretion with mobile applications.
The best option for managing the privacy risks of geotagging is to not use it; that is, to disable the functions on all
devices, including smart phones, tablets, and cameras, and in all social media platforms, including Instagram,
Facebook, Twitter, Gowalla, Foursquare, and Flickr. However, it is not always possible to discover all of the
settings and ways that systems use geotagging and GPS tools. Therefore, when using social media, there is always a
certain amount of privacy risk.
RISK MITIGATION: The Agency has decided not to implement geotagging at this time. The Agency will make a
risk and privacy determination on if and when geo-tagging will be enabled. In this circumstance the Deputy
Assistant Administrator for Public Affairs in LPA will make the determination, after working with the Privacy
Office to update the PIA, pursuant to ADS 508 Privacy Program Section 3.5.2, Privacy Impact Assessments.
Mobile Hardware Devices:
Individuals who use their mobile and non-mobile devices and equipment to create digital content (e.g., word
processing documents, photos) may be unaware of the extent or nature of metadata that is automatically generated
with such content, and may not be able (or know how) to prevent the creation of such metadata or its transmission to
or collection by others with their digital content. For example, digital photos may be encoded in Exchangeable
Image File Format (EXIF) with time, date, location or other photo-
related data that can be traced to the individual.
No centralized technical measure can be implemented, because Instagram is a mobile application.
Also, Mobile hardware devices can capture and
record audio, video, or other data, including the generation of
metadata about the user (e.g., digital photos may also contain metadata such as name, location, device ID, etc.).
Could be hijacked, turned on or off, and otherwise controlled remotely to spy on the user or others.
May 6, 2014 19