Facebook has banned developers from gathering and passing on any data to third parties, after it revealed some developers had been discovered selling user information to data brokers.
Mike Vernal, a Facebook engineer, explained in a blog post that Facebook will change its policies to prevent the situation occurring again.
"While we determined that no private user data was sold, and that the transfer of these user IDs did not give access to any private data, this violation of our policy is something we take seriously," he said.
"To restate our policy: developers may not pass any data from Facebook to data brokers, and we are now including anonymous identifiers in this protected category of Facebook data."
Vernal added that Facebook has also imposed a six-month moratorium on the developers who had broken the rules, and will require further evidence from them for the submission of new applications.
"We will require these developers to submit their data practices to an audit in the future to confirm that they are in compliance with our policies," he said.
"This impacts fewer than a dozen, mostly small, developers, none of [whose applications] are in the top 10 on Facebook Platform."
Vernal confirmed that Rapleaf, the data broker that "came forward to work with us on this situation", had agreed to delete all user IDs in its possession and not to work on the Facebook Platform again.
The move complements an earlier change made by Facebook to use encryption tools for user ID information within third-party applications.
BT wants to make the public switched telephone network history within eight years
Personal data being purloined by third parties via Facebook Login API
MacOS and iOS are better off apart, says CEO Tim Cook
Or they'll no longer be entitled to updates and bug patches