Did you know that no one reviews applications before they are made available on Facebook?  Most people think that if an application runs on Facebook that it was vetted somewhat or that it is, at least,  reliable.  That is not true, unfortunately.  Anyone can write an application with any mission in mind.  Once you give them access to your data, they unfortunately have your data and can do with it what they want.

Clearly there are multiple kinds of applications developed.  Some are developed by people who enjoy programming and want to develop something to show that they can program (many of these people are looking for jobs and putting it on their resumes).  Others have developed applications for themselves, and share it out of kindness.  These seem like harmless enough purposes, and they may well be.  However, if they are not good at programming they may inadvertently cause negative things to occur.    Then there are the people who just want to cause problems, or who want to collect information for nefarious purposes, or who are trying to scam users.

Does that mean you should never use Facebook Applications?  Certainly not.   Some of them are quite useful, or quite fun and should be used.  But, you need to protect yourself.  You could adopt what has been identified as “Sauter’s First Law of Computing” — never be the first to adopt new computing (hardware or software).  Let someone figure out how to solve the problems first!  (An associated lemma says not to adopt new computing alone … always have a friend who can help you solve unanticipated problems.)  Sometimes that is not possible, or sometimes you just don’t want to make your friends into guinea pigs.

You could first search Google for the name of the application and see what it says about the application.  Or, go to Facecrooks to see if they have a notice about problems with the application.  Or check the Facebook Security .  You can also go to the application’s Facebook page and look for information.  Click on the “information tag” … is there a description and does it tell you who developed it?  If so, check out the developers for their reputation.  Check the number of users — you do not get extra points for being the first.  Read the reviews of the application, to determine the experiences of other users.  Think about the information to which they want to give access — does it make sense, or are they looking at more than they should really need to see?  Think about the benefit of the application — is there enough advantage to make it seem reasonable?

As I have said before, use the same “common sense” in the Facebook world that you would use in real life.  Do not assume anyone else will protect you, but rather be a wise consumer of computing.