PLATFORM POLICY 1. Build a quality product 2. Give people control 3. Protect data 4. Encourage proper use 5. Follow the law 6. Tech Providers 7. Things you should know If you use these features, follow these additional policies: 8. Login 9. Ads 10. Games 11. Payments 12. App Center 13. Open Graph 14. Social Plugins 15. Marketing API 16. Pages API 17. Messenger Platform 18. Messenger Expressions 19. Account Kit 20. Live API 21. Profile Expression Kit 22. Camera Platform 23. CrowdTangle API 24. Jobs Platform 25. PSID API Definitions Last updated May 7, 2018 FACEBOOK PLATFORM POLICY 1. BUILD A QUALITY PRODUCT Develop your app with your personal account. Do not create a fake account to manage your app. If applicable, ensure that your Business Manager account is up to date and accurate. Build an app that is stable and easily navigable. Be sure your app insights reflect a positive experience. Ensure that your app’s content (including ads and user-generated content) meets our Community Standards. Follow our Advertising Policies for your app name, icons, and description. Keep your app or bot’s description and categorization up-to-date. Don’t include promotional content in your app’s icon (ex: don’t overlay your icon image with “new”, “sale”, “update” or any type of notification jewel). Don’t confuse, deceive, defraud, mislead, spam or surprise anyone. Keep your app’s negative feedback below our thresholds. Follow any instructions we include in our technical documentation. 2. GIVE PEOPLE CONTROL Obtain consent from people before publishing content on their behalf. Use publishing permissions to help people share on Facebook, not to send people messages from your app. Don’t prefill any content in captions, comments, messages or the user message parameter of posts unless (a) it is a single hashtag in a post shared through our Share Dialog (but not via our APIs), (b) it was created by the person using your app, or (c) it was created by a business whose employees use your app to administer the business’s presence on Facebook. Privacy Policy a. Provide a publicly available and easily accessible privacy policy that explains what data you are collecting and how you will use that data. b. Your privacy policy must not modify, supersede, or be inconsistent with Facebook policies. For example, user data obtained from us cannot be transferred to a data broker or sold, even if you disclose this in your privacy policy. c. Include your privacy policy URL in the App Dashboard. d. Link to your privacy policy in any app store that allows you to. e. Comply with your privacy policy. You may use Account Information in accordance with your privacy policy and other Facebook policies. All other data may not be transferred outside your app, except to your service provider (per, Section 3.7) who needs that information to provide services to your app. With the exception of Account Information, you may only maintain user data obtained from us for as long as necessary for your business purpose. Delete all of a person’s data you have received from us (including friend data) if that person asks you to, unless you are required to keep it by law, regulation, or separate agreement with us. You may keep aggregated data only if no information identifying a specific person could be inferred or created from it. Obtain consent from people before using their data in any ad. Obtain adequate consent from people before using any Facebook technology that allows us to collect and process data about them, including for example, our SDKs and browser pixels. When you use such technology, provide an appropriate disclosure: a. That third parties, including Facebook, may use cookies, web beacons, and other storage technologies to collect or receive information from your websites, apps and elsewhere on the internet and use that information to provide measurement services, target ads and as described in our Data Policy; and b. How users can opt-out of the collection and use of information for ad targeting and where a user can access a mechanism for exercising such choice. In jurisdictions that require informed consent for the storing and accessing of cookies or other information on an end user’s device (such as the European Union), ensure, in a verifiable manner, that an end user provides the necessary consent before you use Facebook technologies that enable us to store and access cookies or other information on the end user’s device. For suggestions on implementing consent mechanisms, visit Facebook’s Cookie Consent Guide for Sites and Apps. Obtain consent from people before you give us information that you independently collected from them. Provide meaningful customer support for your app, and make it easy for people to contact you. If people come to your app from the Facebook app on iOS, give them an option to go back to the Facebook app by using the Back to Facebook banner provided in our SDK. If people come to your app from the Facebook app on Android, don’t prevent them from going back to Facebook when they press the system back button. 3. PROTECT DATA Protect the information you receive from us against unauthorized access, use, or disclosure. For example, don't use data obtained from us to provide tools that are used for surveillance. Only show data obtained from a user access token on the devices associated with that token. Only use friend data (including friends list) in the person’s experience in your app. If you cache data you receive from us, use it to improve your app’s user experience and keep it up to date. Don’t proxy, request or collect Facebook usernames or passwords. Keep private your secret key and access tokens. You can share them with an agent acting to operate your app if they sign a confidentiality agreement. Don't use a service provider in connection with your use of Platform unless you make them sign a contract to: (a) protect any user data you obtained from us (that is at least as protective as our terms and policies), (b) limit their use of that user data solely to using it on your behalf to provide services to your app (and not for their own purposes or any other purposes), and (c) keep it secure and confidential. You must ensure they comply with our terms and policies (and are responsible for their non-compliance). Keep Facebook user IDs within your control. You can only share them with service providers who help you build or run your app. Ensure that they keep the user IDs secure and confidential and comply with our policies (ex: see, 3.7). If you need an anonymous unique identifier to share with service providers, use our mechanism. Don't sell, license, or purchase any data obtained from us or our services. Don't directly or indirectly transfer any data that you receive from us (including anonymous, aggregate, or derived data) to any ad network, data broker or other advertising or monetization-related service. By “indirectly” we mean you aren’t allowed to, for example, transfer data to a third party who then transfers the data to an ad network. Don't put Facebook data in a search engine or directory, or include web search functionality on Facebook. If you are acquired by or merge with a third party, you can continue to use our data only within your app. If you stop using Platform, promptly delete all user data you have received from us (absent explicit consent from people). You can keep Account Information if you have presented your privacy policy within your app. If you use friend data from Facebook to establish social connections in your app, only do so if each person in that connection has granted you access to that information. Don't use data obtained from Facebook to make decisions about eligibility, including whether to approve or reject an application or how much interest to charge on a loan. If you implement or have previously implemented (on your own behalf or on behalf of a third party) any Facebook Tools / Facebook Business Tools (as defined in our standard terms for such Facebook Tools /Facebook Business Tools (“Facebook Business Tools Terms”), currently available at: https://www.facebook.com/customaudiences/app/tos, or any successor terms we may make available, including at: https://www.facebook.com/legal/terms/businesstools, you acknowledge that the Facebook Business Tools Terms apply in connection with your usage of Platform, including for optimization of Platform and/or the related Facebook Company Product. 4. ENCOURAGE PROPER USE Add something unique to the community. Don’t replicate core functionality that Facebook already provides. Respect the way Facebook looks and functions. Don't offer experiences that change it. If you’re building an app with a personalized or social experience, enable people to easily share on Facebook content they've created. Respect the limits we've placed on Facebook functionality. Only incentivize a person to log into your app, enter a promotion on your app’s Page, check-in at a place, or to use Messenger to communicate with your business. Don’t incentivize other actions. Encourage people to accurately tag and share content. If your service integrates a person’s data into a physical product, only create a physical product for that person’s personal and non-commercial use. Don’t build an app whose primary purpose is to redirect people off of Facebook. If you want to use our logos or brand, follow the guidelines in the Facebook Brand Resource and Permissions Center and Brand Guidelines for Facebook Developers. Ad networks and data brokers must get our written permission before using our Platform, logos, or trademarks. Don't sell, transfer or sublicense our code, APIs, or tools to anyone. Only use our SDKs to develop and distribute apps or content for use with the Facebook Platform. You may also distribute any object code or sample source code included in the SDKs for inclusion in such apps. Don’t modify, translate, create derivative works of, or reverse engineer any SDK or its components. Be honest about your relationship with Facebook when talking to the press or users. Comply with our Developer PR Guidelines and get approval from us before issuing any formal press release or blog post mentioning Facebook. If you use the Like button on iOS or Android, don’t collect or use any information from it. Sharing to Stories: a. Stories must not include any logos, watermarks, calls-to-action, or other promotional content. b. Additional policies for Stories with Attribution: (1) Stories must not be generic (i.e., only enable people to share unique and personal content). (2) If a person clicks on your Story, ensure you direct them to an experience that enhances the Story and/or enables them to create their own Story. 5. FOLLOW THE LAW You are responsible for restricting access to your content in accordance with all applicable laws and regulations, including geo-filtering or age-gating access where required. Don’t provide or promote content that infringes upon the rights of any third party. Ensure that you own or secure all rights necessary to display, distribute and deliver all content in your app. Satisfy all licensing, reporting and payout obligations to third parties in connection with your app. If your app contains content submitted or provided by third parties: a. In the United States, you must take all steps required to fall within the applicable safe harbors of the Digital Millennium Copyright Act including designating an agent to receive notices of claimed infringement, instituting a repeat infringer termination policy and implementing a notice and takedown process. b. In other countries, you must comply with local copyright laws and implement an appropriate notice and takedown process for when you receive a notice of claimed infringement. Don’t knowingly share information with us that you have collected from children under the age of 13. Web sites or services directed to children under 13: If you use Social Plugins or our JavaScript SDK for Facebook on sites and services that are directed to children under 13, you are responsible for complying with all applicable laws. For example, if your web site or service is directed to children in the United States, or knowingly collects personal information from children in the United States, you must comply with the U.S. Children’s Online Privacy Protection Act. You must also adhere to our usage notes. Comply with all applicable laws and regulations in the jurisdiction where your app is available. Do not expose Facebook or people who use Facebook to harm or legal liability as determined by us in our sole discretion. If applicable, comply with the Video Privacy Protection Act (VPPA) and obtain any opt-in consent necessary to share data on Facebook. You agree to indemnify and hold us harmless from and against all damages, losses, and expenses of any kind (including reasonable legal fees and costs) related to any claim against us related to your service, actions, content or information. 6. TECH PROVIDERS Data Collection and Use: If you are a Tech Provider for an entity, comply with the following: a. Only use an entity's data on behalf of the entity (i.e., only to provide services to that entity and not for your own business purposes or another entity's purposes). b. Don’t use an entity's data to build or augment user profiles. c. Don't use an entity's data to retarget on or off of Facebook, use piggybacking or redirects, or combine an entity's data with data from another entity. d. Don’t let people other than those acting on an entity’s behalf (ex: its employees) access the entity's data. e. Delete all of an entity’s data you have received from us if that entity asks you to or if you stop providing services for that entity, unless you are required to keep it by law, regulation, or separate agreement with us. Features: For all Platform features (ex: APIs) you use as a Tech Provider, comply with the following: a. Don't use Platform to enable an entity to access user data, unless you have entered into a separate agreement with us. b. Don’t charge a fee for using the Platform feature (or related Facebook Services). This policy does not prohibit you from charging for any of your other products and services unrelated to use of the Platform feature (or related Facebook Services). c. Ensure you have the authority to use the Platform feature (or related Facebook Services) on the entity's behalf. d. Don’t combine multiple entities or their Facebook Pages or Groups in the same account. e. Revoke an entity's access to the Platform feature (or related Facebook Services) if we request it. 7. THINGS YOU SHOULD KNOW We can analyze your app, website, content, and data for any purpose, including commercial. We can monitor or collect data related to your use of SDKs. We will use information we receive from you or in connection with your Platform integration in accordance with our Data Policy. You give us all rights necessary to use any API, SDK, or other technology you provide us to enable your app or bot to work, including the right to incorporate information you provide to us into other parts of Facebook, and the right to attribute the source of information using your name or logos. We may share your contact info with people who want to contact you. We may use your name, logos, content, and information, including materials you submit for review, screenshots and video captures of your app and your Facebook Page, for distribution, marketing, and promotional purposes, to demonstrate or feature your use of Facebook, worldwide and royalty-free in all formats and media. You also represent that you have the right to grant this permission. You give us the right to link to or frame your app, and place content, including ads, around your app. If you use our social plugins, feed dialog or share button, you also give us permission to use and allow others to use such links and content on Facebook. You grant us and our affiliates a non-exclusive, transferable, sublicensable, royalty-free, worldwide license to host, use, distribute, modify, run, copy, publicly perform or display, translate, and create derivative works of, any data, content, and other information made available by you or on your behalf in connection with the Platform feature. This license survives even if you stop using the Platform feature. You are responsible for obtaining the necessary rights from all applicable rights holders to grant this license. Any API made available by you or on your behalf in connection with the Platform feature is deemed part of your App. We or an independent auditor acting on our behalf may audit your app, systems, and records to ensure your use of Platform and data you receive from us is safe and complies with our Terms, and that you've complied with our requests and requests from people who use Facebook to delete user data obtained through our Platform. If requested, you must provide us with proof that your app complies with our terms. We can create apps or products that offer features and services similar to your app. We don’t guarantee that Platform will always be free. If you exceed 5M MAU, 100M API calls per day, or 50M impressions per day, you may be subject to additional terms. Facebook and its licensors reserve all right, title and interest, including all intellectual property and other proprietary rights, in and to all SDKs. Any SDKs you receive from us are provided to you on an "as is" basis, without warranty of any kind. We can issue a press release describing our relationship with you. We may prohibit your use of any service provider in connection with your use of Platform. We may enforce against your app or website if we conclude you have violated our terms or are negatively impacting the Platform, and we may suspend your app or website, with our without advance notice, while we investigate suspected violations of our terms. We may or may not notify you in advance. Enforcement is both automated and manual, and can include disabling your app, restricting you and your app’s access to platform functionality, requiring that you delete data, terminating our agreements with you or any other action that we deem appropriate. We communicate with developers through Developer Alerts and email from the fb.com or facebookmail.com domain. Ensure that the email address associated with your Facebook account and the email address registered to the app are current and that you don’t filter out these messages. We may change these terms at any time without prior notice. Please check them regularly. Your continued use of Platform constitutes acceptance of those changes. Your use of Facebook technology is subject to this Platform Policy, our Statement of Rights and Responsibilities and any other terms that apply to the applicable technology. Instagram. If you use any Facebook Platform feature on the Instagram Service, such use on the Instagram Service is subject to the Facebook Platform Policy, and the Instagram Terms of Use. If you use any Instagram APIs, such use is subject to the Instagram Platform Policy. 8. LOGIN Verify that you have integrated Login correctly. Your app shouldn't crash or hang during the testing process. Native iOS and Android apps that implement Facebook Login must use our official SDKs for login. Use a clearly branded log in button that follows the guidelines in the Facebook Brand Resource Center. Request only the data and publishing permissions your app needs to provide a good user experience. Ask for a write permission only at a point when your app needs the permission (ex: don’t prompt a write permission immediately after a user logs in to your app). You cannot convert user data you receive from us into independent data (ex. by pre-filling data fields with user data you received from us and asking the user to submit or save the data). If a person declines a permission, you can prompt them again after they indicate an intent to grant you the permission. Provide a "Log Out" option that functions properly and is easy to find. 9. ADS If you have ads in your app on Facebook, comply with our Advertising Policies. Avoid excessive ads. Don’t let ads distract from your app’s functionality. Don’t include ads in Page Tab apps. If you use a third party ad provider to include ads in your app on Facebook, only use a provider from this list. Don’t include third-party ads (including for other apps) in posts, comments, notifications, requests, invites or messages. Don’t include or pair Platform Integrations with non-Facebook ads. If you run a promotion, contest, competition, or sweepstake on Facebook, comply with our Promotions Policies. 10. GAMES Games on Facebook.com: a. Don’t share the same app ID with a desktop web game off of Facebook.com. b. Don’t use your Facebook.com game or email addresses you’ve obtained from us to promote or link to a desktop web game off of Facebook. c. Use Facebook Payments as your only payment method for all in-game purchases. d. Use Facebook Payments offers if you reward people for actions involving third parties. Desktop web games off Facebook.com: a. Only use Facebook Login, social plugins, and publishing channels. Don’t use connections such as friends lists. b. During authentication, only request age, email, and publishing permissions. Games on mobile: a. Don’t share the same app ID with a desktop web game off of Facebook.com. b. Don’t use your mobile game or email addresses you’ve obtained from us to promote or link to a web game off of Facebook. Instant Games: a. Don't charge for any items within iOS games (i.e., iOS games must be free to play). For all other games, you may only charge for items in your game if you have entered into a separate agreement with us. b. If you want to include ads within your game, only use the Games Ads API. Don’t use a third party ad provider or include any other links to content off your game. c. Don't build, append to, edit, influence, or augment user profiles, including profiles associated with any mobile device identifier or other unique identifier that identifies any particular user, browser, computer or device. d. Don't post more than one Context Update per gameplay, without our prior permission. If you want to facilitate or promote online gambling, online real money games of skill, or online lotteries, get our written permission before using any of our products. If your game includes mandatory or optional in-app charges, explain this in your app’s description. 11. PAYMENTS If you use Facebook Payments, comply with the Facebook Developer Payments Terms. Don’t use Facebook Payments to solicit, collect or transfer funds for charitable causes without our prior permission. If you’re using iOS to run your app, use an iOS approved payment method. If you accept payments on Facebook, only do so in your app. 12. APP CENTER Apps eligible for Facebook App Center must be games that use Facebook Login or games on Facebook.com. App Detail and Description: a. Ensure the app’s name and information are grammatically correct. b. Ensure the app’s language matches the App Center locale. c. Don't include URLs or use the Facebook brand. d. Don’t include keyword lists, excessive punctuation, or non-standard symbols. All Images: a. Use high quality, relevant images that reflect the app experience. b. Keep any image text concise. Don't obstruct images with text. c. Don’t include ads, URLs or gimmicks such as Play buttons. Icons: a. Use a transparent or colored background. If your icon requires a white background, use a colored border. b. If your logo has a drop shadow, use a colored background. Banners: a. Don’t include rounded edges or borders. b. Don’t include third party logos. Videos: a. Display the app's name. b. Clearly represent the purpose of the app and show accurate, relevant in-app experiences. c. Keep your video high-quality and high-resolution. d. Your video and its video cover image should be clear and recognizable. Don't include ads. 13. OPEN GRAPH Open Graph Custom Actions: a. Don’t recreate actions that are already supported. b. Write the action and object in a clear and simple way. c. Make sure the story is grammatically correct. d. Use English for your submission. e. Don’t indicate a person’s consumption, browsing, discovering, or viewing of content. f. Don’t indicate a person has installed, visited, or connected to your app. Read and Watch Actions: a. Publish actions only after a person has been on a page for more than 10 seconds. b. Allow people to remove stories published to Facebook on the same page where the content is hosted. 14. SOCIAL PLUGINS Don’t include or pair Platform Integrations with non-Facebook advertisements. Don’t sell or purchase placement of social plugins or sharer.php. Don’t participate in any “like” or “share” exchange programs. Don’t obscure or cover elements of social plugins. Additional policies for the Quotes Plugin: a. Don't prefill quotes with content a person didn’t select, even if the person can edit or remove the content before sharing. b. The quotes plugin is intended to help people select their own quote to share. Use the app-defined quotes parameter if you want to suggest quotes for people to share. c. If you use the app-defined quotes parameter, the suggested quote must not contain URLs, ads, third party branded content or any other promotional content of any kind. d. Game apps must not use the quotes plugin. 15. MARKETING API Basic and Standard Ads API access may be downgraded to Development access after 30 days of non-use. Don't use the Ads API if you're an ad network or data broker. Don't promote content, services, or activities contrary to our competitive position, interests, or advertising philosophy. Don't provide Partner Category targeting options that differ from those offered by Facebook. Don’t combine multiple end-advertisers or their Facebook connections (i.e. Pages) in the same ad account. Free or trial versions of an ads API app: a. Don’t allow more than 50 ad creations a day per customer. b. Require phone or email verification on new accounts. c. Don’t allow affiliate networks to use your technology. Pricing transparency: a. Only charge fees for the use of your tools and managed services with a fixed fee or variable percentage of ad spend. b. Proactively disclose to end advertisers the amount that you spent on Facebook advertising, using Facebook metrics (e.g., CPC, CPM rate), separate from your fees. c. Disclose the amount you charged as fees on Facebook advertising. d. We may disclose fees or the amount you spent on Facebook advertising to your clients if they request it. e. We may require documentation from you to ensure your compliance with these terms. f. Don’t sell ads on a fixed CPM or CPC basis when using the Facebook advertising auction. Data Collection and Use: a. If you have Standard Ads API access and our prior written permission, you can place 1x1 pixel view tags on advertisements. b. Ensure that any data that is collected is anonymous. c. Only use data from an end-advertiser’s campaign to optimize or measure the performance of that end-advertiser’s Facebook campaign. d. Don’t use data to retarget on or off of Facebook. e. Don’t mix data obtained from us with advertising campaigns on different platforms (without our written permission). f. Don’t use data to build or augment any user profiles. g. Don’t use piggybacking or redirects. h. Don’t let people other than those acting on an end-advertiser’s behalf access Facebook ad statistics. Implement all bidding types including Optimized CPM. Custom Audiences: a. If you use custom audiences, comply with the Custom Audience Terms. b. Only use a client’s data when creating custom audiences on their behalf. c. Only use a Facebook User ID to create custom audiences when the person whose User ID is being used has logged into the client’s app and has given the necessary consent. d. Don’t sell or transfer custom audiences. Revoke an end-advertiser’s access to your app if we request it. Lead Ads: a. Only use a client's Lead Ads Data on behalf of that client. b. Don't combine Lead Ads Data from one client with Lead Ads Data from another client. Ensure that people agree to Facebook’s Statement of Rights and Responsibilities, including the Advertising Policies. 16. PAGES API Don't charge a fee for creating, claiming, or managing a Page. Before enabling people to create a Page, first provide a means for them to claim an existing Place to prevent Page duplication. Ensure that people agree to Facebook’s Statement of Rights and Responsibilities, including the Advertising Policies. Don't create or claim a Page on behalf of people without their consent. Don't prevent people from gaining access to any Page you create or manage on their behalf. Don't disclose administrators of a Page to third parties without the administrator's consent. 17. MESSENGER PLATFORM Follow any instructions we include in our technical documentation. Ensure your bot is stable and functions properly. User authentication and opt-out: a. Place any user authentication method in a clear and conspicuous location to ensure people consent to initiating message threads. b. Don’t contact people in Messenger unless you, or the party to whom you are operating as a service provider, have the necessary consent to do so. c. Messenger Opt-out: respect all requests (either on Messenger or off) by people to block, discontinue, or otherwise opt-out of your using Messenger to communicate with them. Messenger Plugins: a. Don't obscure, cover or hide elements of our plugins. b. Ensure the Checkbox plugin is placed in close proximity to the button (ex: “purchase”, “submit”, “confirm”) that a person must click on prior to you sending a MessengerCheckboxUserConfirmation event (i.e., don’t send the event until after a person clicks on the button or takes an equivalent affirmative action (ex: submit form)). Service Providers: a. Ensure your agreements with businesses do not conflict with, and that businesses agree to, Facebook’s Statement of Rights and Responsibilities, including these Platform Policies. b. Ensure you have the authority to act as agent for the business to which you're providing a service, and that your use of our Platform is strictly for the benefit of that business. c. Don't facilitate or encourage any violations of our policies. For example, if you have permission to support businesses that are eligible for Subscriptions, ensure you don't provide Subscriptions to ineligible services (see details below). Your app should not receive excessive negative feedback. Be sure your app insights reflect a positive experience. Maintain a Facebook Page that provides customer support contact information, including your mailing address and one or more of the following: email address, web address, or telephone number. Messages and Data: Acceptable message types: a. After people interact with your business or Bot: You may message people within 24 hours of a person's interaction with your business or Bot (ex: messaging your Bot or interacting with a Messenger plugin on your website). Except as permitted below, and until the next interaction, you may send one additional message after this 24 hour period in order to follow up on your conversation. b. Message Templates and Tags: Only approved message templates and tags may be sent outside of the 24 hour period. Don’t use a message template or tag for a purpose other than its intended purpose. c. Subscription-based messaging: i. Bots that primarily support the following use cases are eligible for subscription-based messaging, and these messages may be sent at any time provided people opt-in to receiving this content: News: Bots that inform people about recent or important events or information in categories such as sports, finance, business, real estate, weather, traffic, politics, government, non-profit organizations, religion, celebrities and entertainment. Personal trackers: Bots that enable people to receive and monitor information about themselves in categories such as fitness, health, wellness, and finance. Productivity: Bots that enable people to manage their personal productivity with tasks such as managing calendar events, receiving reminders, and paying bills. ii. Subscriptions messages may not be used for sending advertising, marketing, solicitations, or promotional content, even if a person opts-in to receiving this content (ex: daily deals, coupons and discount or sale announcements are not permitted). Data: Don't use any data obtained from us about the people you reach in Messenger, other than the content of message threads, for any purpose other than as reasonably necessary to support the message types you elect to use. Healthcare: Don't use Messenger to facilitate direct conversations between people and healthcare providers or to send or collect any patient data obtained from healthcare providers. Disclosures: Ensure that you provide all necessary disclosures to people using Messenger, such as any disclosures needed to indicate the sponsored or advertising nature of content you send. Offers and Payments: a. Don't share or ask people to share individual payment card, financial account numbers or other cardholder data within messages. b. Don't include links to sites off Messenger where payment information is collected, without our prior permission. c. If you have permission to offer or complete sales of goods or services within Messenger, adhere to the Facebook Commerce Product Merchant Agreement. d. Don't use Messenger Platform to sell digital goods. Things You Should Know: a. We may limit or remove your access to Messenger if you receive large amounts of negative feedback or violate our policies, as determined by us in our sole discretion. 18. MESSENGER EXPRESSION General Policies Ensure you comply with all applicable Platform Policies. Follow our technical documentation. Follow our Brand Guidelines if you want to use our logos or brand. Don't obscure or cover selected content in the share sheet. Allow people to immediately select or create content without interruption. Don't disrupt them with other information before they share. Notify people up front before allowing them to engage with paid content. Don't include ads in content you send to Messenger. Your logo and app name may only appear in the space we provide. Don't use Messenger as an app invite channel. Facilitate real time conversations that inspire people to respond with content from your app. Don't charge for most of the content in your app. Ensure your app contains free shareable content. If you exceed 400K impressions per day, you may be subject to additional terms. Additional Policies for Optimized and Featured Apps Your app must not replicate core Facebook features or functionality, and must not promote your other apps that do so. Your app must be free to install. If your paid content is available in multiple apps, ensure it is offered for Messenger at the lowest price available. If people come to your app from Messenger, ensure your app's primary share experience is to Messenger. Don't send unengaging or long form content. Ensure your app only sends unique user generated content or engaging aggregated content to Messenger. Facilitate real time conversations that inspire people to respond to Messenger with content from your app. Ensure your call-to-action links to the same app that generated the content. When linking to your app from Messenger, you can present people with paid content so long as free shareable content is clearly available on the landing page. Implement App Events in your app, including activateApp and purchase events if your app offers in-app purchases. Optimized and featured functionality, including the availability of calls-to-action on content and in-Messenger discovery, is made available within our sole discretion and can be removed at any time. 19. ACCOUNT KIT Don't obscure any elements of the Account Kit user interface, and don't modify any element except where expressly permitted by our technical documentation. If people log in with email addresses or phone numbers, your use of that data is subject to your privacy policy and any applicable law or regulation. If you exceed 100K SMSs per month, you may be subject to additional terms. If a person that logged in with an email address or phone number deletes their account or requests that such account be deleted, ensure that you notify us via the delete API. If we remove your access to the Account Kit service, you have 30 days to request any account data that people provided through the Account Kit service as well as any data you've stored with us through the Preferences API. We will provide you with this information unless otherwise prohibited by law. 20. LIVE API Don’t build apps that enable publishers to simultaneously stream to Facebook and other online streaming services. Don’t use the API to stream directly from a mobile phone or tablet camera to Facebook. Ensure any pre-recorded content is clearly distinguishable from live content. Don't use the API to publish looping videos; static, animated, or looping images; or to live-stream polls associated with unmoving or ambient broadcasts. If you enable people to publish Live Video to Facebook, remind them of their obligation to not include third party ads in their video content and to clearly distinguish any pre-recorded content from live content. 21. PROFILE EXPRESSION KIT Don’t include ads or commercial content, such as logos and watermarks, in profile photos or videos. Don’t include slideshows in profile photos or videos. Don’t encourage people to upload profile photos or videos that they aren’t depicted in. Only apps that have a primary purpose of creating and editing photos or videos may use the Profile Expression Kit. 22. CAMERA PLATFORM Don't make any changes to your effect after it has been approved. If you want to make any changes to your effect you must submit a new or improved effect for our review. Ensure you comply with the Camera Effects Platform Terms and Camera Effects Platform Policies. 23. CROWDTANGLE API Don't share your access credentials outside of your organization. We may limit or remove your access to the API if your memory, data, or CPU usage is excessive, as determined by us in our sole discretion. Don't have front-end widgets call our API directly. Front-end widgets should use cached data collected through the API. Don't use data to build or augment any user profiles. Display the CrowdTangle logo in any integration and note CrowdTangle in any public facing description or announcement of the integration. 24. JOBS PLATFORM Follow any instructions we include in our Jobs API and Jobs XML Feed technical documentation. Comply with these Platform Policy, with particular attention to the Tech Provider section of these policies. Ensure that job listings and your use of the Jobs Platform (including your use of data received via a job listing) comply with our Pages Terms. If your App displays job applications obtained from Facebook, ensure you display “Applied on Facebook” in connection with such job applications. 25. PSID API Follow any instructions we include in our technical documentation. Only use the PSID API to map your ASIDs to the applicable PSIDs for each Page that has granted your app page permissions. Maintain each Page's PSIDs separately. Map all of your ASIDs to PSIDs within 180 days after you complete App Review. Stop using and delete your ASIDs after mapping (and no later than the 180 days). Don't map or use PSIDs across multiple Pages. Don't disclose a Page's PSIDs to another Page. DEFINITIONS “App” means any technical integration we have assigned an app identification number. "Account Information" consists of: name, email, gender, birthday, current city and profile picture URL. "Marketing API" includes all Graph APIs related to advertising, and all Real Time APIs related to advertising, including but not limited to: all Lead Ads Data coming through the Graph API or Real Time Updates. “User data” means any data, including a person's content or information (whether personally identifiable or anonymous) that you or third parties obtain from or through Facebook. "SDK" means any object code, source code, or documentation you receive from us that helps you create apps or content for use with the Facebook Platform. "Tech Provider" means an entity accessing or using any aspect of Platform to enable the entity's customers to access and use Platform functionality and/or user data. By "Facebook" or "Facebook Services" we mean the features and services we make available, including through (a) our website at www.facebook.com and any other Facebook branded or co-branded websites (including sub-domains, international versions, widgets, and mobile versions); (b) our Platform; (c) social plugins such as the Like button, the Share button and other similar offerings; and (d) other media, brands, products, services, software (such as a toolbar), devices, or networks now existing or later developed. Facebook reserves the right to designate, in its sole discretion, that certain of our brands, products, or services are governed by separate terms and not our SRR.
If you'd like to be notified when Facebook.com makes updates to documents like this, choose which ones you'd like to subscribe to today (it's free!).
